CLSA-2025-1736856534 python3.11: Fix of CVE-2024-9287

CVE-2024-9287: Quote path names when creating virtual environments to prevent command injection in activation scripts...

Security update for python3

This update for python3 fixes the following issues: CVE-2024-9287: Fixed quoted path names provided when creating a virtual environment bsc1232241. Bug fixes: Drop .pyc files from docdir for reproducible builds bsc1230906. Patch Instructions: To install this SUSE update use the SUSE recommended...

gix-path improperly resolves configuration path reported by Git

Summary gix-path runs git to find the path of a configuration file associated with the git installation, but improperly resolves paths containing unusual or non-ASCII characters, in rare cases enabling a local attacker to inject configuration leading to code execution. Details In gixpath::env, th...

mySCADAPro 7 - Local Privilege Escalation

mySCADAProv7 Local Privilege Escalation Vendor: mySCADA Technologies s.r.o. Product web page: https://www.myscada.org/ Affected application: myscadaPro Affected version: v7 Current version Vulnerability discovered by: Karn Ganeshen Description: myscadaPro7 application installs seven 8 services. A...