openSUSE-SU-2022:10043-1

Опубликовано: 07 июл. 2022

Источник: suse-cvrf

Описание

Security update for python-ipython

This update for python-ipython fixes the following issues:

CVE-2022-21699: Confining executed process to have limited privileges. (boo#1194936).

Список пакетов

SUSE Package Hub 15 SP3

python3-ipython-7.13.0-bp153.2.6.1

python3-ipython-iptest-7.13.0-bp153.2.6.1

openSUSE Leap 15.3

python3-ipython-7.13.0-bp153.2.6.1

python3-ipython-iptest-7.13.0-bp153.2.6.1

Ссылки

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/NTGOGG2ZEI7KLN4MVBRDQQ4FSIXPEKNL/
E-Mail link for openSUSE-SU-2022:10043-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1194936
SUSE Bug 1194936
https://www.suse.com/security/cve/CVE-2022-21699/
SUSE CVE CVE-2022-21699 page

Описание

IPython (Interactive Python) is a command shell for interactive computing in multiple programming languages, originally developed for the Python programming language. Affected versions are subject to an arbitrary code execution vulnerability achieved by not properly managing cross user temporary files. This vulnerability allows one user to run code as another on the same machine. All users are advised to upgrade.

Затронутые продукты

SUSE Package Hub 15 SP3:python3-ipython-7.13.0-bp153.2.6.1

SUSE Package Hub 15 SP3:python3-ipython-iptest-7.13.0-bp153.2.6.1

openSUSE Leap 15.3:python3-ipython-7.13.0-bp153.2.6.1

openSUSE Leap 15.3:python3-ipython-iptest-7.13.0-bp153.2.6.1

Ссылки

https://www.suse.com/security/cve/CVE-2022-21699.html
CVE-2022-21699
https://bugzilla.suse.com/1194936
SUSE Bug 1194936

openSUSE-SU-2022:10043-1

Описание

Список пакетов

SUSE Package Hub 15 SP3

openSUSE Leap 15.3

Ссылки

Уязвимость: CVE-2022-21699

Описание

Затронутые продукты

Ссылки