SUSE-SU-2022:1446-1

UNKNOWN

Security update for python-paramiko

Published Apr 28, 2022

Modified 3 years ago

Fix available

Details

This update for python-paramiko fixes the following issues:

CVE-2022-24302: Fixed a race condition between creation and chmod when writing private keys. (bsc#1197279)

Affected Packages

python-paramiko

SUSE Linux Enterprise Module for Basesystem 15 SP3SUSE Linux Enterprise Module for Python 2 15 SP3SUSE Linux Enterprise Real Time 15 SP2openSUSE Leap 15.3openSUSE Leap 15.4

Fixed in:

2.4.2-150100.6.12.1

python3-paramiko

SUSE Linux Enterprise Module for Basesystem 15 SP3SUSE Linux Enterprise Real Time 15 SP2openSUSE Leap 15.3openSUSE Leap 15.4

Fixed in:

2.4.2-150100.6.12.1

python2-paramiko

SUSE Linux Enterprise Module for Python 2 15 SP3openSUSE Leap 15.3openSUSE Leap 15.4

Fixed in:

2.4.2-150100.6.12.1

python-paramiko-doc

openSUSE Leap 15.3openSUSE Leap 15.4

Fixed in:

2.4.2-150100.6.12.1

References

REPORT

https://bugzilla.suse.com/1197279

WEB

https://www.suse.com/security/cve/CVE-2022-24302

ADVISORY

https://www.suse.com/support/update/announcement/2022/suse-su-20221446-1/

Upstream

CVE-2022-24302

Ecosystems

SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Python 2 15 SP3 SUSE Linux Enterprise Real Time 15 SP2 openSUSE Leap 15.3 openSUSE Leap 15.4

Timeline

PublishedApr 28, 2022

ModifiedApr 28, 2022