SUSE-SU-2018:3554-2 -- SLES pythonID: oval:org.secpod.oval:def:89002340 | Date: (C)2021-02-26 (M)2024-04-17 |
Class: PATCH | Family: unix |
This update for python, python-base fixes the following issues: Security issues fixed: - CVE-2018-1000802: Prevent command injection in shutil module via passage of unfiltered user input . - CVE-2018-1061: Fixed DoS via regular expression backtracking in difflib.IS_LINE_JUNK method in difflib . - CVE-2018-1060: Fixed DoS via regular expression catastrophic backtracking in apop method in pop3lib . Bug fixes: - bsc#1086001: python tarfile uses random order.
Platform: |
SUSE Linux Enterprise Server 12 SP4 |
Product: |
python |
libpython2_7-1_0 |