CVE-2024-4032 affecting package python3 for versions less than 3.12.9-1

CVE-2024-4032 affecting package python3 for versions less than 3.12.9-1. An upgraded version of the package is available that resolves this issue...

CBL Mariner 2.0 Security Update: python3 (CVE-2024-9287)

The version of python3 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-9287 advisory. - A vulnerability has been found in the CPython venv module and CLI where path names provided when creating a...

SUSE SLES15 : Recommended update for python3-M2Crypto (SUSE-SU-SUSE-RU-2025:0800-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-SUSE-RU-2025:0800-1 advisory. - Fix spelling of BSD-2-Clause license. - Update to 0.44.0: - The real license is BSD 2-Clause, not MIT. - Remove...

SUSE SLED15 / SLES15 / openSUSE 15 : Recommended update for python3-M2Crypto (SUSE-SU-SUSE-RU-2025:0796-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-SUSE-RU-2025:0796-1 advisory. - Fix spelling of BSD-2-Clause license. - Update to 0.44.0: - The real license is BSD 2-Clause, n...

CVE-2024-9287 affecting package python3 for versions less than 3.9.19-11

CVE-2024-9287 affecting package python3 for versions less than 3.9.19-11. A patched version of the package is available...

SUSE-RU-2025:0796-1 Recommended update for python3-M2Crypto

This update for python3-M2Crypto fixes the following issues: - Fix spelling of BSD-2-Clause license. - Update to 0.44.0: - The real license is BSD 2-Clause, not MIT. - Remove python-M2Crypto.keyring, because PyPI broke GPG support - Build for modern python stack on SLE/Leap - require setuptools -...

Important: python3-jinja2

Issue Overview: Jinja is an extensible templating engine. Prior to 3.1.6, an oversight in how the Jinja sandboxed environment interacts with the |attr filter allows an attacker that controls the content of a template to execute arbitrary Python code. To exploit the vulnerability, an attacker need...

Azure Linux 3.0 Security Update: expat / python3 (CVE-2024-28757)

The version of expat / python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-28757 advisory. - libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external...

Amazon Linux 2 : python3 (ALAS-2025-2762)

The version of python3 installed on the remote host is prior to 3.7.16-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2762 advisory. The ipaddress module contained incorrect information about whether certain IPv4 and IPv6 addresses were designated as globally...

CVE-2022-42919 affecting package python3 for versions less than 3.9.19-1

CVE-2022-42919 affecting package python3 for versions less than 3.9.19-1. A patched version of the package is available...

Low: python3

Issue Overview: The "ipaddress" module contained incorrect information about whether certain IPv4 and IPv6 addresses were designated as "globally reachable" or "private". This affected the isprivate and isglobal properties of the ipaddress.IPv4Address, ipaddress.IPv4Network, ipaddress.IPv6Address...

openSUSE Security Advisory (SUSE-SU-2024:2860-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Medium: python3

Issue Overview: A defect was discovered in the Python "ssl" module where there is a memory race condition with the ssl.SSLContext methods "certstorestats" and "getcacerts". The race condition can be triggered if the methods are called at the same time as certificates are loaded into the SSLContex...

CBL Mariner 2.0 Security Update: python3 (CVE-2025-0938)

The version of python3 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-0938 advisory. - The Python standard library functions urllib.parse.urlsplit and urlparse accepted domain names that included...

openSUSE Security Advisory (SUSE-SU-2024:0901-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-0938 affecting package python3 for versions less than 3.9.19-10

CVE-2025-0938 affecting package python3 for versions less than 3.9.19-10. A patched version of the package is available...

RHSA-2025:1750 Red Hat Security Advisory: python3 security update

Bulletin has no description...

Moderate: Red Hat Security Advisory: python3 security update

An update for python3 is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

SUSE SLES12 Security Update : python3 (SUSE-SU-2025:0552-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:0552-1 advisory. - CVE-2025-0938: domain names containing square brackets are not identified as incorrect by urlparse. bsc1236705 Tenable has extracted the preceding...

openSUSE Security Advisory (SUSE-SU-2025:0424-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...