Early Access — Mondoo Vulnerability Intelligence is currently in preview.

SUSE-SU-2022:4251-1 | Mondoo Vulnerability Intelligence

SUSE-SU-2022:4251-1

UNKNOWN

Security update for python3

Published Nov 28, 2022

Modified 3 years ago

Fix available

Details

This update for python3 fixes the following issues:

CVE-2020-10735: Fixed possible DoS when converting text to int and vice versa (bsc#1203125).
CVE-2022-45061: Fixed possible DoS when IDNA decoding extremely long domain names (bsc#1205244).

Affected Packages

SUSE:Linux Enterprise Module for Web and Scripting 12libpython3_4m1_0

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Module for Web and Scripting 12python3

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Module for Web and Scripting 12python3-base

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Module for Web and Scripting 12python3-curses

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server 12 SP2-BCLlibpython3_4m1_0

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server 12 SP2-BCLpython3

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server 12 SP2-BCLpython3-base

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server 12 SP2-BCLpython3-curses

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server 12 SP3-BCLlibpython3_4m1_0

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server 12 SP3-BCLpython3

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server 12 SP3-BCLpython3-base

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server 12 SP3-BCLpython3-curses

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server 12 SP4-LTSSlibpython3_4m1_0

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server 12 SP4-LTSSpython3

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server 12 SP4-LTSSpython3-base

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server 12 SP4-LTSSpython3-curses

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server 12 SP4-LTSSpython3-devel

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server 12 SP5libpython3_4m1_0

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server 12 SP5libpython3_4m1_0-32bit

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server 12 SP5python3

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server 12 SP5python3-base

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server 12 SP5python3-curses

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server 12 SP5python3-devel

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server 12 SP5python3-tk

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server for SAP Applications 12 SP4libpython3_4m1_0

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server for SAP Applications 12 SP4python3

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server for SAP Applications 12 SP4python3-base

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server for SAP Applications 12 SP4python3-curses

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server for SAP Applications 12 SP4python3-devel

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server for SAP Applications 12 SP5libpython3_4m1_0

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server for SAP Applications 12 SP5libpython3_4m1_0-32bit

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server for SAP Applications 12 SP5python3

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server for SAP Applications 12 SP5python3-base

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server for SAP Applications 12 SP5python3-curses

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server for SAP Applications 12 SP5python3-devel

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Server for SAP Applications 12 SP5python3-tk

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Software Development Kit 12 SP5python3

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Software Development Kit 12 SP5python3-base

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Software Development Kit 12 SP5python3-dbm

Fixed in:

3.4.10-25.102.2

SUSE:Linux Enterprise Software Development Kit 12 SP5python3-devel

Fixed in:

3.4.10-25.102.2

SUSE:OpenStack Cloud 9libpython3_4m1_0

Fixed in:

3.4.10-25.102.2

SUSE:OpenStack Cloud 9python3

Fixed in:

3.4.10-25.102.2

SUSE:OpenStack Cloud 9python3-base

Fixed in:

3.4.10-25.102.2

SUSE:OpenStack Cloud 9python3-curses

Fixed in:

3.4.10-25.102.2

SUSE:OpenStack Cloud 9python3-devel

Fixed in:

3.4.10-25.102.2

SUSE:OpenStack Cloud Crowbar 9libpython3_4m1_0

Fixed in:

3.4.10-25.102.2

SUSE:OpenStack Cloud Crowbar 9python3

Fixed in:

3.4.10-25.102.2

SUSE:OpenStack Cloud Crowbar 9python3-base

Fixed in:

3.4.10-25.102.2

SUSE:OpenStack Cloud Crowbar 9python3-curses

Fixed in:

3.4.10-25.102.2

SUSE:OpenStack Cloud Crowbar 9python3-devel

Fixed in:

3.4.10-25.102.2

References

REPORThttps://bugzilla.suse.com/1203125 REPORThttps://bugzilla.suse.com/1205244 WEBhttps://www.suse.com/security/cve/CVE-2020-10735 WEBhttps://www.suse.com/security/cve/CVE-2022-45061 ADVISORYhttps://www.suse.com/support/update/announcement/2022/suse-su-20224251-1/

Upstream

CVE-2020-10735 CVE-2022-45061

Related

CVE-2020-10735 CVE-2022-45061

Ecosystems

SUSE Linux Enterprise Module for Web and Scripting 12 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Software Development Kit 12 SP5 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 9

Timeline

PublishedNov 28, 2022

ModifiedNov 28, 2022