Описание
Security update for python311
This update for python311 fixes the following issues:
- CVE-2025-12084: prevent quadratic behavior in node ID cache clearing (bsc#1254997).
- CVE-2025-13836: prevent reading an HTTP response from a server, if no read amount is specified, with using Content-Length per default as the length (bsc#1254400).
- CVE-2025-13837: protect against OOM when loading malicious content (bsc#1254401).
Список пакетов
Image SLES15-SP4-Hardened-BYOS
libpython3_11-1_0-3.11.14-150400.9.72.1
python311-3.11.14-150400.9.72.1
python311-base-3.11.14-150400.9.72.1
Image SLES15-SP4-Hardened-BYOS-EC2
libpython3_11-1_0-3.11.14-150400.9.72.1
python311-3.11.14-150400.9.72.1
python311-base-3.11.14-150400.9.72.1
Image SLES15-SP4-SAP
libpython3_11-1_0-3.11.14-150400.9.72.1
python311-3.11.14-150400.9.72.1
python311-base-3.11.14-150400.9.72.1
Image SLES15-SP4-SAP-EC2
libpython3_11-1_0-3.11.14-150400.9.72.1
python311-3.11.14-150400.9.72.1
python311-base-3.11.14-150400.9.72.1
Image SLES15-SP4-SAPCAL
libpython3_11-1_0-3.11.14-150400.9.72.1
python311-3.11.14-150400.9.72.1
python311-base-3.11.14-150400.9.72.1
Image SLES15-SP4-SAPCAL-EC2
libpython3_11-1_0-3.11.14-150400.9.72.1
python311-3.11.14-150400.9.72.1
python311-base-3.11.14-150400.9.72.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
libpython3_11-1_0-3.11.14-150400.9.72.1
python311-3.11.14-150400.9.72.1
python311-base-3.11.14-150400.9.72.1
python311-curses-3.11.14-150400.9.72.1
python311-dbm-3.11.14-150400.9.72.1
python311-devel-3.11.14-150400.9.72.1
python311-doc-3.11.14-150400.9.72.1
python311-doc-devhelp-3.11.14-150400.9.72.1
python311-idle-3.11.14-150400.9.72.1
python311-tk-3.11.14-150400.9.72.1
python311-tools-3.11.14-150400.9.72.1
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
libpython3_11-1_0-3.11.14-150400.9.72.1
python311-3.11.14-150400.9.72.1
python311-base-3.11.14-150400.9.72.1
python311-curses-3.11.14-150400.9.72.1
python311-dbm-3.11.14-150400.9.72.1
python311-devel-3.11.14-150400.9.72.1
python311-doc-3.11.14-150400.9.72.1
python311-doc-devhelp-3.11.14-150400.9.72.1
python311-idle-3.11.14-150400.9.72.1
python311-tk-3.11.14-150400.9.72.1
python311-tools-3.11.14-150400.9.72.1
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS
libpython3_11-1_0-3.11.14-150400.9.72.1
python311-3.11.14-150400.9.72.1
python311-base-3.11.14-150400.9.72.1
python311-curses-3.11.14-150400.9.72.1
python311-dbm-3.11.14-150400.9.72.1
python311-devel-3.11.14-150400.9.72.1
python311-doc-3.11.14-150400.9.72.1
python311-doc-devhelp-3.11.14-150400.9.72.1
python311-idle-3.11.14-150400.9.72.1
python311-tk-3.11.14-150400.9.72.1
python311-tools-3.11.14-150400.9.72.1
SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS
libpython3_11-1_0-3.11.14-150400.9.72.1
python311-3.11.14-150400.9.72.1
python311-base-3.11.14-150400.9.72.1
python311-curses-3.11.14-150400.9.72.1
python311-dbm-3.11.14-150400.9.72.1
python311-devel-3.11.14-150400.9.72.1
python311-doc-3.11.14-150400.9.72.1
python311-doc-devhelp-3.11.14-150400.9.72.1
python311-idle-3.11.14-150400.9.72.1
python311-tk-3.11.14-150400.9.72.1
python311-tools-3.11.14-150400.9.72.1
SUSE Linux Enterprise Module for Public Cloud 15 SP4
libpython3_11-1_0-3.11.14-150400.9.72.1
python311-3.11.14-150400.9.72.1
python311-base-3.11.14-150400.9.72.1
SUSE Linux Enterprise Server 15 SP4-LTSS
libpython3_11-1_0-3.11.14-150400.9.72.1
python311-3.11.14-150400.9.72.1
python311-base-3.11.14-150400.9.72.1
python311-curses-3.11.14-150400.9.72.1
python311-dbm-3.11.14-150400.9.72.1
python311-devel-3.11.14-150400.9.72.1
python311-doc-3.11.14-150400.9.72.1
python311-doc-devhelp-3.11.14-150400.9.72.1
python311-idle-3.11.14-150400.9.72.1
python311-tk-3.11.14-150400.9.72.1
python311-tools-3.11.14-150400.9.72.1
SUSE Linux Enterprise Server 15 SP5-LTSS
libpython3_11-1_0-3.11.14-150400.9.72.1
python311-3.11.14-150400.9.72.1
python311-base-3.11.14-150400.9.72.1
python311-curses-3.11.14-150400.9.72.1
python311-dbm-3.11.14-150400.9.72.1
python311-devel-3.11.14-150400.9.72.1
python311-doc-3.11.14-150400.9.72.1
python311-doc-devhelp-3.11.14-150400.9.72.1
python311-idle-3.11.14-150400.9.72.1
python311-tk-3.11.14-150400.9.72.1
python311-tools-3.11.14-150400.9.72.1
SUSE Linux Enterprise Server for SAP Applications 15 SP4
libpython3_11-1_0-3.11.14-150400.9.72.1
python311-3.11.14-150400.9.72.1
python311-base-3.11.14-150400.9.72.1
python311-curses-3.11.14-150400.9.72.1
python311-dbm-3.11.14-150400.9.72.1
python311-devel-3.11.14-150400.9.72.1
python311-doc-3.11.14-150400.9.72.1
python311-doc-devhelp-3.11.14-150400.9.72.1
python311-idle-3.11.14-150400.9.72.1
python311-tk-3.11.14-150400.9.72.1
python311-tools-3.11.14-150400.9.72.1
SUSE Linux Enterprise Server for SAP Applications 15 SP5
libpython3_11-1_0-3.11.14-150400.9.72.1
python311-3.11.14-150400.9.72.1
python311-base-3.11.14-150400.9.72.1
python311-curses-3.11.14-150400.9.72.1
python311-dbm-3.11.14-150400.9.72.1
python311-devel-3.11.14-150400.9.72.1
python311-doc-3.11.14-150400.9.72.1
python311-doc-devhelp-3.11.14-150400.9.72.1
python311-idle-3.11.14-150400.9.72.1
python311-tk-3.11.14-150400.9.72.1
python311-tools-3.11.14-150400.9.72.1
Ссылки
- Link for SUSE-SU-2026:0299-1
- E-Mail link for SUSE-SU-2026:0299-1
- SUSE Security Ratings
- SUSE Bug 1254400
- SUSE Bug 1254401
- SUSE Bug 1254997
- SUSE CVE CVE-2025-12084 page
- SUSE CVE CVE-2025-13836 page
- SUSE CVE CVE-2025-13837 page
Описание
When building nested elements using xml.dom.minidom methods such as appendChild() that have a dependency on _clear_id_cache() the algorithm is quadratic. Availability can be impacted when building excessively nested documents.
Затронутые продукты
Image SLES15-SP4-Hardened-BYOS-EC2:libpython3_11-1_0-3.11.14-150400.9.72.1
Image SLES15-SP4-Hardened-BYOS-EC2:python311-3.11.14-150400.9.72.1
Image SLES15-SP4-Hardened-BYOS-EC2:python311-base-3.11.14-150400.9.72.1
Image SLES15-SP4-Hardened-BYOS:libpython3_11-1_0-3.11.14-150400.9.72.1
Ссылки
- CVE-2025-12084
- SUSE Bug 1254997
Описание
When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.
Затронутые продукты
Image SLES15-SP4-Hardened-BYOS-EC2:libpython3_11-1_0-3.11.14-150400.9.72.1
Image SLES15-SP4-Hardened-BYOS-EC2:python311-3.11.14-150400.9.72.1
Image SLES15-SP4-Hardened-BYOS-EC2:python311-base-3.11.14-150400.9.72.1
Image SLES15-SP4-Hardened-BYOS:libpython3_11-1_0-3.11.14-150400.9.72.1
Ссылки
- CVE-2025-13836
- SUSE Bug 1254400
Описание
When loading a plist file, the plistlib module reads data in size specified by the file itself, meaning a malicious file can cause OOM and DoS issues
Затронутые продукты
Image SLES15-SP4-Hardened-BYOS-EC2:libpython3_11-1_0-3.11.14-150400.9.72.1
Image SLES15-SP4-Hardened-BYOS-EC2:python311-3.11.14-150400.9.72.1
Image SLES15-SP4-Hardened-BYOS-EC2:python311-base-3.11.14-150400.9.72.1
Image SLES15-SP4-Hardened-BYOS:libpython3_11-1_0-3.11.14-150400.9.72.1
Ссылки
- CVE-2025-13837
- SUSE Bug 1254401