Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

Vulnerability Intelligence

Customers

Vulnerability IntelligenceSUSE-SU-2024:3430-1

SUSE-SU-2024:3430-1

UNKNOWN

Security update for python36

Published Sep 24, 2024

Modified 1 years ago

Fix available

Details

This update for python36 fixes the following issues:

CVE-2024-6232: excessive backtracking when parsing tarfile headers leads to ReDoS. (bsc#1230227)

Affected Packages

libpython3_6m1_0

SUSE Linux Enterprise Server 12 SP5SUSE Linux Enterprise Server for SAP Applications 12 SP5

Fixed in:

3.6.15-67.1

libpython3_6m1_0-32bit

SUSE Linux Enterprise Server 12 SP5SUSE Linux Enterprise Server for SAP Applications 12 SP5

Fixed in:

3.6.15-67.1

python36

SUSE Linux Enterprise Server 12 SP5SUSE Linux Enterprise Server for SAP Applications 12 SP5

Fixed in:

3.6.15-67.1

python36-base

SUSE Linux Enterprise Server 12 SP5SUSE Linux Enterprise Server for SAP Applications 12 SP5

Fixed in:

3.6.15-67.1

python36-core

SUSE Linux Enterprise Server 12 SP5SUSE Linux Enterprise Server for SAP Applications 12 SP5SUSE Linux Enterprise Software Development Kit 12 SP5

Fixed in:

3.6.15-67.1

python36-devel

SUSE Linux Enterprise Software Development Kit 12 SP5

Fixed in:

3.6.15-67.1

References

REPORT

https://bugzilla.suse.com/1230227

WEB

https://www.suse.com/security/cve/CVE-2024-6232

ADVISORY

https://www.suse.com/support/update/announcement/2024/suse-su-20243430-1/

Upstream

CVE-2024-6232

Ecosystems

SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Software Development Kit 12 SP5

Timeline

PublishedSep 24, 2024

ModifiedSep 24, 2024

SUSE-SU-2024:3430-1 | Mondoo Vulnerability Intelligence