Amazon Linux 2023 : python3-dns, python3-dns+dnssec, python3-dns+idna (ALAS2023-2024-739)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-739 advisory. eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port...

Amazon Linux 2023 : python3-unbound, unbound, unbound-anchor (ALAS2023-2024-719)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-719 advisory. NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling replies with very large RRsets that it needs to perform name compression for. Malicious upstreams responses...

Oracle Linux 7 : python3-setuptools (ELSA-2024-6661)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-6661 advisory. 39.2.0-10.0.3 - Back port fix for CVE-2024-6345 Orabug: 37054771 Tenable has extracted the preceding description block directly from the Oracle Linux security...

python3-setuptools security update

39.2.0-10.0.3 - Back port fix for CVE-2024-6345 Orabug: 37054771...

CBL Mariner 2.0 Security Update: python3 (CVE-2024-4032)

The version of python3 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-4032 advisory. - The ipaddress module contained incorrect information about whether certain IPv4 and IPv6 addresses were...

CVE-2024-4032 affecting package python3 for versions less than 3.9.19-6

CVE-2024-4032 affecting package python3 for versions less than 3.9.19-6. A patched version of the package is available...

RHSA-2024:6975 Red Hat Security Advisory: python3 security update

Bulletin has no description...

RHSA-2024:7417 Red Hat Security Advisory: python3 security update

Bulletin has no description...

RHSA-2024:6030 Red Hat Security Advisory: python3 security update

Bulletin has no description...

RHSA-2024:4779 Red Hat Security Advisory: python3 security update

Bulletin has no description...

RHSA-2024:4766 Red Hat Security Advisory: python3 security update

Bulletin has no description...

RHSA-2024:6661 Red Hat Security Advisory: python3-setuptools security update

Bulletin has no description...

python3 security update

An update is available for python3. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Python is an interpreted, interactive, object-oriented programming language,...

RLSA-2024:6975 Moderate: python3 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

Rocky Linux 8 : python3 (RLSA-2024:6975)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:6975 advisory. python: incorrect IPv4 and IPv6 private ranges CVE-2024-4032 cpython: python: email module doesn't properly quotes newlines in email headers, allowing...

SUSE: Security Advisory (SUSE-SU-2024:3470-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Advisory (SUSE-SU-2024:3470-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : python3 (SUSE-SU-2024:3470-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3470-1 advisory. - CVE-2024-6923: Fixed uncontrolled CPU resource consumption when in http.cookies module...

SUSE-SU-2024:3470-1 Security update for python3

This update for python3 fixes the following issues: - CVE-2024-6923: Fixed uncontrolled CPU resource consumption when in http.cookies module bsc1228780. - CVE-2024-5642: Fixed buffer overread when NPN is used and invalid values are sent to the OpenSSL API bsc1227233. - CVE-2024-7592: Fixed Email...

Updated python3 packages fix security vulnerabilities

A defect was discovered in the Python “ssl” module where there is a memory race condition with the ssl.SSLContext methods “certstorestats” and “getcacerts”. The race condition can be triggered if the methods are called at the same time as certificates are loaded into the SSLContext, such as durin...