SUSE-SU-2020:1524-1 -- SLES pythonID: oval:org.secpod.oval:def:89000075 | Date: (C)2021-02-19 (M)2023-12-20 |
Class: PATCH | Family: unix |
This update for python to version 2.7.17 fixes the following issues: Syncing with lots of upstream bug fixes and security fixes. Bug fixes: - CVE-2019-9674: Improved the documentation to reflect the dangers of zip-bombs . - CVE-2019-18348: Fixed a CRLF injection via the host part of the url passed to urlopen. Now an InvalidURL exception is raised . - CVE-2020-8492: Fixed a regular expression in urllib that was prone to denial of service via HTTP . - Fixed mismatches between libpython and python-base versions . - Fixed segfault in libpython2.7.so.1 . - Unified packages among openSUSE:Factory and SLE versions . - Added idle.desktop and idle.appdata.xml to provide IDLE in menus . - Excluded tsl_check files from python-base to prevent file conflict with python-strict-tls-checks package . - Changed the name of idle3 icons to idle3.png to avoid collision with Python 2 version . Additionally a new quot;shared-python-startupquot; package is provided containing startup files. python-rpm-macros was updated to fix: - Do not write .pyc files for tests
Platform: |
SUSE Linux Enterprise Server 12 SP3 |
SUSE Linux Enterprise Server 12 SP2 |
SUSE Linux Enterprise Server 12 SP5 |
SUSE Linux Enterprise Server 12 SP4 |
Product: |
python |
libpython2_7-1_0 |