SUSE-SU-2020:3563-1 -- SLES python36ID: oval:org.secpod.oval:def:89000166 | Date: (C)2021-02-23 (M)2024-04-17 |
Class: PATCH | Family: unix |
This update for python36 fixes the following issues: Update to 3.6.12, including the following fixes: - Fixed a directory traversal in _download_http_url - Fixed CRLF injection via HTTP request method in httplib/http.client - Fixed possible infinite loop in specifically crafted tarball - Fixed a CRLF injection via the host part of the url passed to urlopen - Reamed idle icons to idle3 in order to avoid conflicts with python2 - Handful of compatibility changes between SLE15 and SLE12
Platform: |
SUSE Linux Enterprise Server 12 SP5 |