SUSE-SU-2020:0854-1 -- SLES python3ID: oval:org.secpod.oval:def:89000307 | Date: (C)2021-02-19 (M)2023-12-20 |
Class: PATCH | Family: unix |
This update for python3 fixes the following issue: - CVE-2019-18348: Fixed a CRLF injection via the host part of the url passed to urlopen. Now an InvalidURL exception is raised . - CVE-2019-9674: Improved the documentation to reflect the dangers of zip-bombs . - CVE-2020-8492: Fixed a regular expression in urllib that was prone to denial of service via HTTP . - Fixed an issue with version missmatch . - Rename idle icons to idle3 in order to not conflict with python2 variant of the package
Platform: |
SUSE Linux Enterprise Server 12 SP3 |
SUSE Linux Enterprise Server 12 SP2 |
SUSE Linux Enterprise Server 12 SP5 |
SUSE Linux Enterprise Server 12 SP4 |