Lucene search
OracleLinuxELSA-2024-4078HistoryJun 25, 2024 - 12:00 a.m.
python3.9 security update
2024-06-2500:00:00
linux.oracle.com
1
python
security update
cve-2023-6597
cve-2024-0450
xmlpullparser
expat
rhel-33887
rhel-34287
unix
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N
7.8 High
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
17.2%
[3.9.18-3.1]
- Security fixes for CVE-2023-6597 and CVE-2024-0450
- Fix tests for XMLPullParser with Expat with fixed CVE
Resolves: RHEL-33887, RHEL-34287
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 9 | src | python3.9 | < 3.9.18-3.el9_4.1 | python3.9-3.9.18-3.el9_4.1.src.rpm |
| oracle linux | 9 | src | python3.9 | < 3.9.18-3.el9_4.1 | python3.9-3.9.18-3.el9_4.1.src.rpm |
| oracle linux | 9 | src | python3.9 | < 3.9.18-3.el9_4.1 | python3.9-3.9.18-3.el9_4.1.src.rpm |
| oracle linux | 9 | src | python3.9 | < 3.9.18-3.el9_4.1 | python3.9-3.9.18-3.el9_4.1.src.rpm |
| oracle linux | 9 | noarch | python-unversioned-command | < 3.9.18-3.el9_4.1 | python-unversioned-command-3.9.18-3.el9_4.1.noarch.rpm |
| oracle linux | 9 | aarch64 | python3 | < 3.9.18-3.el9_4.1 | python3-3.9.18-3.el9_4.1.aarch64.rpm |
| oracle linux | 9 | aarch64 | python3 | < 3.9.18-3.el9_4.1 | python3-3.9.18-3.el9_4.1.aarch64.rpm |
| oracle linux | 9 | aarch64 | python3-debug | < 3.9.18-3.el9_4.1 | python3-debug-3.9.18-3.el9_4.1.aarch64.rpm |
| oracle linux | 9 | aarch64 | python3-devel | < 3.9.18-3.el9_4.1 | python3-devel-3.9.18-3.el9_4.1.aarch64.rpm |
| oracle linux | 9 | aarch64 | python3-idle | < 3.9.18-3.el9_4.1 | python3-idle-3.9.18-3.el9_4.1.aarch64.rpm |
Related
mageia
mageia
Updated python3, python packages fix security vulnerabilities
2024-03-28 06:52:55
osv
osv
Important: python3 security update
2024-06-14 13:59:16
Important: python3.11 security update
2024-06-24 00:00:00
python3.7 - security update
2024-03-24 00:00:00
almalinux
almalinux
Important: python3 security update
2024-05-23 00:00:00
Important: python3.9 security update
2024-06-25 00:00:00
Important: python3.11 security update
2024-06-24 00:00:00
nessus
nessus
RHEL 8 : python3 (RHSA-2024:3391)
2024-05-28 00:00:00
AlmaLinux 9 : python3.9 (ALSA-2024:4078)
2024-06-25 00:00:00
Fedora 39 : python3.6 (2024-18b9c9b9cf)
2024-06-01 00:00:00
redhat
redhat
(RHSA-2024:3347) Important: python3 security update
2024-05-23 14:21:45
(RHSA-2024:3391) Important: python3 security update
2024-05-28 12:22:33
debian
debian
[SECURITY] [DLA 3772-1] python3.7 security update
2024-03-24 21:51:46
[SECURITY] [DLA 3771-1] python2.7 security update
2024-03-24 21:44:29
fedora
fedora
[SECURITY] Fedora 40 Update: python3.6-3.6.15-30.fc40
2024-05-31 01:17:14
[SECURITY] Fedora 39 Update: python3.6-3.6.15-28.fc39
2024-06-01 01:12:49
openvas
openvas
Huawei EulerOS: Security Advisory for python3 (EulerOS-SA-2024-1822)
2024-06-25 00:00:00
Mageia: Security Advisory (MGASA-2024-0096)
2024-04-05 00:00:00
Fedora: Security Advisory for python3.6 (FEDORA-2024-18b9c9b9cf)
2024-06-07 00:00:00
rocky
rocky
python3 security update
2024-06-14 13:59:16
python39:3.9 and python39-devel:3.9 security update
2024-06-14 13:59:30
oraclelinux
oraclelinux
python3.11 security update
2024-06-24 00:00:00
python3 security update
2024-05-29 00:00:00
python39:3.9 and python39-devel:3.9 security update
2024-05-31 00:00:00
slackware
slackware
[slackware-security] python3
2024-03-20 21:14:26
cgr
cgr
CVE-2023-6597 vulnerabilities
2024-05-19 03:07:16
CVE-2024-0450 vulnerabilities
2024-05-19 03:07:16
cve
cve
CVE-2023-6597
2024-03-19 16:15:08
CVE-2024-0450
2024-03-19 16:15:09
amazon
amazon
Important: python3
2024-05-09 19:16:00
Important: python38
2024-05-09 17:43:00
Medium: python3
2024-04-11 01:07:00
ubuntucve
ubuntucve
CVE-2024-0450
2024-03-19 00:00:00
CVE-2023-6597
2024-03-19 00:00:00
cbl_mariner
cbl_mariner
CVE-2024-0450 affecting package python3 for versions less than 3.9.19-1
2024-03-29 17:23:41
CVE-2023-6597 affecting package python3 for versions less than 3.9.19-1
2024-03-29 17:23:41
debiancve
debiancve
CVE-2024-0450
2024-03-19 16:15:09
CVE-2023-6597
2024-03-19 16:15:08
ibm
ibm
wolfi
wolfi
CVE-2023-6597 vulnerabilities
2024-06-28 15:21:31
CVE-2024-0450 vulnerabilities
2024-06-28 15:21:31
cvelist
cvelist
CVE-2023-6597
2024-03-19 15:44:28
CVE-2024-0450 Quoted zip-bomb protection for zipfile
2024-03-19 15:12:07
veracode
veracode
Improper Authorization
2024-03-26 21:20:32
Asymmetric Resource Consumption
2024-03-26 20:39:01
alpinelinux
alpinelinux
CVE-2023-6597
2024-03-19 16:15:08
CVE-2024-0450
2024-03-19 16:15:09
redhatcve
redhatcve
CVE-2023-6597
2024-04-22 20:34:25
CVE-2024-0450
2024-04-22 21:04:48
nvd
nvd
CVE-2023-6597
2024-03-19 16:15:08
CVE-2024-0450
2024-03-19 16:15:09
aix
aix
gentoo
gentoo
Python, PyPy3: Multiple Vulnerabilities
2024-05-04 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N
7.8 High
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
17.2%
Related for ELSA-2024-4078