SUSE-SU-2021:2008-1

UNKNOWN

Security update for python-rsa

Published Jun 17, 2021

Modified 4 years ago

Fix available

Details

This update for python-rsa fixes the following issues:

CVE-2020-13757: Proper handling of leading '\0' bytes during decryption of ciphertext (bsc#1172389)

Affected Packages

python-rsa

SUSE Enterprise Storage 6SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP1-LTSSSUSE Linux Enterprise Module for Basesystem 15 SP2SUSE Linux Enterprise Module for Basesystem 15 SP3

Fixed in:

3.4.2-3.4.1

python3-rsa

Fixed in:

3.4.2-3.4.1

python2-rsa

SUSE Linux Enterprise Module for Package Hub 15 SP2SUSE Linux Enterprise Module for Package Hub 15 SP3

Fixed in:

3.4.2-3.4.1

References

REPORT

https://bugzilla.suse.com/1172389

WEB

https://www.suse.com/security/cve/CVE-2020-13757

ADVISORY

https://www.suse.com/support/update/announcement/2021/suse-su-20212008-1/

Upstream

CVE-2020-13757

Ecosystems(14)

SUSE Enterprise Storage 6 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP3

Timeline

PublishedJun 17, 2021

ModifiedJun 17, 2021

SUSE-SU-2021:2008-1 | Mondoo Vulnerability Intelligence