VYPR

rpm package

suse/python3&distro=SUSE Linux Enterprise Server 15 SP4-LTSS

pkg:rpm/suse/python3&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS

Vulnerabilities (25)

  • CVE-2024-4032HigJun 17, 2024
    affected < 3.6.15-150300.10.65.2fixed 3.6.15-150300.10.65.2

    The “ipaddress” module contained incorrect information about whether certain IPv4 and IPv6 addresses were designated as “globally reachable” or “private”. This affected the is_private and is_global properties of the ipaddress.IPv4Address, ipaddress.IPv4Network, ipaddress.IPv6Addr

  • CVE-2024-0450MedMar 19, 2024
    affected < 3.6.15-150300.10.65.2fixed 3.6.15-150300.10.65.2

    An issue was found in the CPython `zipfile` module affecting versions 3.12.1, 3.11.7, 3.10.13, 3.9.18, and 3.8.18 and prior. The zipfile module is vulnerable to “quoted-overlap” zip-bombs which exploit the zip format to create a zip-bomb with a high compression ratio. The fixed

  • CVE-2023-6597HigMar 19, 2024
    affected < 3.6.15-150300.10.57.1fixed 3.6.15-150300.10.57.1

    An issue was found in the CPython `tempfile.TemporaryDirectory` class affecting versions 3.12.1, 3.11.7, 3.10.13, 3.9.18, and 3.8.18 and prior. The tempfile.TemporaryDirectory class would dereference symlinks during cleanup of permissions-related errors. This means users which c

  • CVE-2023-52425Feb 4, 2024
    affected < 3.6.15-150300.10.65.2fixed 3.6.15-150300.10.65.2

    libexpat through 2.5.0 allows a denial of service (resource consumption) because many full reparsings are required in the case of a large token for which multiple buffer fills are needed.

  • CVE-2022-48566Aug 22, 2023
    affected < 3.6.15-150300.10.57.1fixed 3.6.15-150300.10.57.1

    An issue was discovered in compare_digest in Lib/hmac.py in Python through 3.9.1. Constant-time-defeating optimisations were possible in the accumulator variable in hmac.compare_digest.

Page 2 of 2