Описание
Security update for python-xmltodict
This update for python-xmltodict fixes the following issues:
- CVE-2025-9375: XML injection vulnerability in
xmltodictallows input data manipulation (bsc#1249036).
Список пакетов
SUSE Linux Enterprise Module for Public Cloud 15 SP6
python311-xmltodict-0.13.0-150600.3.5.1
SUSE Linux Enterprise Module for Public Cloud 15 SP7
python311-xmltodict-0.13.0-150600.3.5.1
openSUSE Leap 15.6
python311-xmltodict-0.13.0-150600.3.5.1
Ссылки
- Link for SUSE-SU-2025:03511-1
- E-Mail link for SUSE-SU-2025:03511-1
- SUSE Security Ratings
- SUSE Bug 1249036
- SUSE CVE CVE-2025-9375 page
Описание
XML Injection vulnerability in xmltodict allows Input Data Manipulation. This issue affects xmltodict: from 0.14.2 before 0.15.1.
Затронутые продукты
SUSE Linux Enterprise Module for Public Cloud 15 SP6:python311-xmltodict-0.13.0-150600.3.5.1
SUSE Linux Enterprise Module for Public Cloud 15 SP7:python311-xmltodict-0.13.0-150600.3.5.1
openSUSE Leap 15.6:python311-xmltodict-0.13.0-150600.3.5.1
Ссылки
- CVE-2025-9375
- SUSE Bug 1249036