SUSE-SU-2018:2696-1 -- SLES python3ID: oval:org.secpod.oval:def:89002180 | Date: (C)2021-02-26 (M)2024-04-17 |
Class: PATCH | Family: unix |
This update for python3 provides the following fixes: These security issues were fixed: - CVE-2018-1061: Prevent catastrophic backtracking in the difflib.IS_LINE_JUNK method. An attacker could have used this flaw to cause denial of service . - CVE-2018-1060: Prevent catastrophic backtracking in pop3lib"s apop method. An attacker could have used this flaw to cause denial of service . These non-security issues were fixed: - Sort files and directories when creating tarfile archives so that they are created in a more predictable way. - Add -fwrapv to OPTS
Platform: |
SUSE Linux Enterprise Server 12 SP3 |