Security update for python312 SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:02048-1 Final 1 1 2025-06-20T12:40:39Z current 2025-06-20T12:40:39Z 2025-06-20T12:40:39Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for python312 This update for python312 fixes the following issues: python312 was updated from version 3.12.9 to 3.12.11: - Security issues fixed: * CVE-2025-4516: Fixed blocking DecodeError handling vulnerability, which could lead to DoS (bsc#1243273) * CVE-2024-12718, CVE-2025-4138, CVE-2025-4330, CVE-2025-4517: Fixed multiple issues that allowed tarfile extraction filters to be bypassed using crafted symlinks and hard links (bsc#1244056, bsc#1244059, bsc#1244060, bsc#1244032) - Other changes and bugs fixed: * Added --single-process option to the Python test runner (regrtest). * Added support for text/x-rst MIME type. * Corrected issues in various modules. * Fixed bugs in the in the folding of rfc2047 encoded-words and in the folding of quoted strings when flattening an email message using a modern email policy. * Fixed f-string handling of lambda expressions with non-ASCII characters. * Fixed ipaddress.IPv6Address.reverse_pointer output according to RFC 3596. * Fixed parsing long IPv6 addresses with embedded IPv4 address. * Fixed resource leaks in gzip and multiprocessing Resource Tracker. * Improved IDLE's documentation display. * Improved the textual representation of IPv4-mapped IPv6 addresses in ipaddress. * ipaddress: fixed hash collisions for IPv4Network and IPv6Network objects * Made from __future__ import barry_as_FLUFL work in more contexts. * Resolved potential crashes in contextvars, xml.etree.ElementTree, sqlite3, and the sys module. * Scheduled deprecation of the check_home argument in sysconfig.is_python_build() for Python 3.15. * Stop the processing of long IPv6 addresses early in ipaddress to prevent excessive memory consumption and a minor denial-of-service. * Undeprecated functional API for importlib.resources and added Anchor. * Updated bundled libexpat to 2.7.1 * Updated bundled pip to version 25.0.1. * Updated documentation for generic classes, wheel tags, and the C API. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Container bci/python:3-2025-2048,SUSE-2025-2048,SUSE-SLE-Module-Python3-15-SP6-2025-2048,openSUSE-SLE-15.6-2025-2048 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-202502048-1/ Link for SUSE-SU-2025:02048-1 https://lists.suse.com/pipermail/sle-updates/2025-June/040421.html E-Mail link for SUSE-SU-2025:02048-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1243273 SUSE Bug 1243273 https://bugzilla.suse.com/1244032 SUSE Bug 1244032 https://bugzilla.suse.com/1244056 SUSE Bug 1244056 https://bugzilla.suse.com/1244059 SUSE Bug 1244059 https://bugzilla.suse.com/1244060 SUSE Bug 1244060 https://www.suse.com/security/cve/CVE-2024-12718/ SUSE CVE CVE-2024-12718 page https://www.suse.com/security/cve/CVE-2025-4138/ SUSE CVE CVE-2025-4138 page https://www.suse.com/security/cve/CVE-2025-4330/ SUSE CVE CVE-2025-4330 page https://www.suse.com/security/cve/CVE-2025-4516/ SUSE CVE CVE-2025-4516 page https://www.suse.com/security/cve/CVE-2025-4517/ SUSE CVE CVE-2025-4517 page Container bci/python:3 SUSE Linux Enterprise Module for Python 3 15 SP6 openSUSE Leap 15.6 libpython3_12-1_0-3.12.11-150600.3.30.1 python312-3.12.11-150600.3.30.1 python312-base-3.12.11-150600.3.30.1 python312-devel-3.12.11-150600.3.30.1 libpython3_12-1_0-32bit-3.12.11-150600.3.30.1 libpython3_12-1_0-64bit-3.12.11-150600.3.30.1 python312-32bit-3.12.11-150600.3.30.1 python312-64bit-3.12.11-150600.3.30.1 python312-base-32bit-3.12.11-150600.3.30.1 python312-base-64bit-3.12.11-150600.3.30.1 python312-curses-3.12.11-150600.3.30.1 python312-dbm-3.12.11-150600.3.30.1 python312-doc-3.12.11-150600.3.30.1 python312-doc-devhelp-3.12.11-150600.3.30.1 python312-idle-3.12.11-150600.3.30.1 python312-testsuite-3.12.11-150600.3.30.1 python312-tk-3.12.11-150600.3.30.1 python312-tools-3.12.11-150600.3.30.1 libpython3_12-1_0-3.12.11-150600.3.30.1 as a component of Container bci/python:3 python312-3.12.11-150600.3.30.1 as a component of Container bci/python:3 python312-base-3.12.11-150600.3.30.1 as a component of Container bci/python:3 python312-devel-3.12.11-150600.3.30.1 as a component of Container bci/python:3 libpython3_12-1_0-3.12.11-150600.3.30.1 as a component of SUSE Linux Enterprise Module for Python 3 15 SP6 python312-3.12.11-150600.3.30.1 as a component of SUSE Linux Enterprise Module for Python 3 15 SP6 python312-base-3.12.11-150600.3.30.1 as a component of SUSE Linux Enterprise Module for Python 3 15 SP6 python312-curses-3.12.11-150600.3.30.1 as a component of SUSE Linux Enterprise Module for Python 3 15 SP6 python312-dbm-3.12.11-150600.3.30.1 as a component of SUSE Linux Enterprise Module for Python 3 15 SP6 python312-devel-3.12.11-150600.3.30.1 as a component of SUSE Linux Enterprise Module for Python 3 15 SP6 python312-idle-3.12.11-150600.3.30.1 as a component of SUSE Linux Enterprise Module for Python 3 15 SP6 python312-tk-3.12.11-150600.3.30.1 as a component of SUSE Linux Enterprise Module for Python 3 15 SP6 python312-tools-3.12.11-150600.3.30.1 as a component of SUSE Linux Enterprise Module for Python 3 15 SP6 libpython3_12-1_0-3.12.11-150600.3.30.1 as a component of openSUSE Leap 15.6 libpython3_12-1_0-32bit-3.12.11-150600.3.30.1 as a component of openSUSE Leap 15.6 python312-3.12.11-150600.3.30.1 as a component of openSUSE Leap 15.6 python312-32bit-3.12.11-150600.3.30.1 as a component of openSUSE Leap 15.6 python312-base-3.12.11-150600.3.30.1 as a component of openSUSE Leap 15.6 python312-base-32bit-3.12.11-150600.3.30.1 as a component of openSUSE Leap 15.6 python312-curses-3.12.11-150600.3.30.1 as a component of openSUSE Leap 15.6 python312-dbm-3.12.11-150600.3.30.1 as a component of openSUSE Leap 15.6 python312-devel-3.12.11-150600.3.30.1 as a component of openSUSE Leap 15.6 python312-doc-3.12.11-150600.3.30.1 as a component of openSUSE Leap 15.6 python312-doc-devhelp-3.12.11-150600.3.30.1 as a component of openSUSE Leap 15.6 python312-idle-3.12.11-150600.3.30.1 as a component of openSUSE Leap 15.6 python312-testsuite-3.12.11-150600.3.30.1 as a component of openSUSE Leap 15.6 python312-tk-3.12.11-150600.3.30.1 as a component of openSUSE Leap 15.6 python312-tools-3.12.11-150600.3.30.1 as a component of openSUSE Leap 15.6 Allows modifying some file metadata (e.g. last modified) with filter="data" or file permissions (chmod) with filter="tar" of files outside the extraction directory. You are affected by this vulnerability if using the tarfile module to extract untrusted tar archives using TarFile.extractall() or TarFile.extract() using the filter= parameter with a value of "data" or "tar". See the tarfile extraction filters documentation https://docs.python.org/3/library/tarfile.html#tarfile-extraction-filter for more information. Only Python versions 3.12 or later are affected by these vulnerabilities, earlier versions don't include the extraction filter feature. Note that for Python 3.14 or later the default value of filter= changed from "no filtering" to `"data", so if you are relying on this new default behavior then your usage is also affected. Note that none of these vulnerabilities significantly affect the installation of source distributions which are tar archives as source distributions already allow arbitrary code execution during the build process. However when evaluating source distributions it's important to avoid installing source distributions with suspicious links. CVE-2024-12718 Container bci/python:3:libpython3_12-1_0-3.12.11-150600.3.30.1 Container bci/python:3:python312-3.12.11-150600.3.30.1 Container bci/python:3:python312-base-3.12.11-150600.3.30.1 Container bci/python:3:python312-devel-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:libpython3_12-1_0-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-base-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-curses-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-dbm-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-devel-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-idle-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-tk-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-tools-3.12.11-150600.3.30.1 openSUSE Leap 15.6:libpython3_12-1_0-3.12.11-150600.3.30.1 openSUSE Leap 15.6:libpython3_12-1_0-32bit-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-32bit-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-base-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-base-32bit-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-curses-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-dbm-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-devel-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-doc-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-doc-devhelp-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-idle-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-testsuite-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-tk-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-tools-3.12.11-150600.3.30.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202502048-1/ https://www.suse.com/security/cve/CVE-2024-12718.html CVE-2024-12718 https://bugzilla.suse.com/1244056 SUSE Bug 1244056 Allows the extraction filter to be ignored, allowing symlink targets to point outside the destination directory, and the modification of some file metadata. You are affected by this vulnerability if using the tarfile module to extract untrusted tar archives using TarFile.extractall() or TarFile.extract() using the filter= parameter with a value of "data" or "tar". See the tarfile extraction filters documentation https://docs.python.org/3/library/tarfile.html#tarfile-extraction-filter for more information. Only Python versions 3.12 or later are affected by these vulnerabilities, earlier versions don't include the extraction filter feature. Note that for Python 3.14 or later the default value of filter= changed from "no filtering" to `"data", so if you are relying on this new default behavior then your usage is also affected. Note that none of these vulnerabilities significantly affect the installation of source distributions which are tar archives as source distributions already allow arbitrary code execution during the build process. However when evaluating source distributions it's important to avoid installing source distributions with suspicious links. CVE-2025-4138 Container bci/python:3:libpython3_12-1_0-3.12.11-150600.3.30.1 Container bci/python:3:python312-3.12.11-150600.3.30.1 Container bci/python:3:python312-base-3.12.11-150600.3.30.1 Container bci/python:3:python312-devel-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:libpython3_12-1_0-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-base-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-curses-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-dbm-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-devel-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-idle-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-tk-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-tools-3.12.11-150600.3.30.1 openSUSE Leap 15.6:libpython3_12-1_0-3.12.11-150600.3.30.1 openSUSE Leap 15.6:libpython3_12-1_0-32bit-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-32bit-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-base-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-base-32bit-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-curses-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-dbm-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-devel-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-doc-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-doc-devhelp-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-idle-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-testsuite-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-tk-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-tools-3.12.11-150600.3.30.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202502048-1/ https://www.suse.com/security/cve/CVE-2025-4138.html CVE-2025-4138 https://bugzilla.suse.com/1244059 SUSE Bug 1244059 Allows the extraction filter to be ignored, allowing symlink targets to point outside the destination directory, and the modification of some file metadata. You are affected by this vulnerability if using the tarfile module to extract untrusted tar archives using TarFile.extractall() or TarFile.extract() using the filter= parameter with a value of "data" or "tar". See the tarfile extraction filters documentation https://docs.python.org/3/library/tarfile.html#tarfile-extraction-filter for more information. Only Python versions 3.12 or later are affected by these vulnerabilities, earlier versions don't include the extraction filter feature. Note that for Python 3.14 or later the default value of filter= changed from "no filtering" to `"data", so if you are relying on this new default behavior then your usage is also affected. Note that none of these vulnerabilities significantly affect the installation of source distributions which are tar archives as source distributions already allow arbitrary code execution during the build process. However when evaluating source distributions it's important to avoid installing source distributions with suspicious links. CVE-2025-4330 Container bci/python:3:libpython3_12-1_0-3.12.11-150600.3.30.1 Container bci/python:3:python312-3.12.11-150600.3.30.1 Container bci/python:3:python312-base-3.12.11-150600.3.30.1 Container bci/python:3:python312-devel-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:libpython3_12-1_0-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-base-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-curses-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-dbm-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-devel-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-idle-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-tk-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-tools-3.12.11-150600.3.30.1 openSUSE Leap 15.6:libpython3_12-1_0-3.12.11-150600.3.30.1 openSUSE Leap 15.6:libpython3_12-1_0-32bit-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-32bit-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-base-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-base-32bit-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-curses-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-dbm-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-devel-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-doc-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-doc-devhelp-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-idle-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-testsuite-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-tk-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-tools-3.12.11-150600.3.30.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202502048-1/ https://www.suse.com/security/cve/CVE-2025-4330.html CVE-2025-4330 https://bugzilla.suse.com/1244060 SUSE Bug 1244060 There is an issue in CPython when using `bytes.decode("unicode_escape", error="ignore|replace")`. If you are not using the "unicode_escape" encoding or an error handler your usage is not affected. To work-around this issue you may stop using the error= handler and instead wrap the bytes.decode() call in a try-except catching the DecodeError. CVE-2025-4516 Container bci/python:3:libpython3_12-1_0-3.12.11-150600.3.30.1 Container bci/python:3:python312-3.12.11-150600.3.30.1 Container bci/python:3:python312-base-3.12.11-150600.3.30.1 Container bci/python:3:python312-devel-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:libpython3_12-1_0-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-base-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-curses-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-dbm-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-devel-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-idle-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-tk-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-tools-3.12.11-150600.3.30.1 openSUSE Leap 15.6:libpython3_12-1_0-3.12.11-150600.3.30.1 openSUSE Leap 15.6:libpython3_12-1_0-32bit-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-32bit-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-base-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-base-32bit-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-curses-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-dbm-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-devel-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-doc-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-doc-devhelp-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-idle-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-testsuite-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-tk-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-tools-3.12.11-150600.3.30.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202502048-1/ https://www.suse.com/security/cve/CVE-2025-4516.html CVE-2025-4516 https://bugzilla.suse.com/1243273 SUSE Bug 1243273 Allows arbitrary filesystem writes outside the extraction directory during extraction with filter="data". You are affected by this vulnerability if using the tarfile module to extract untrusted tar archives using TarFile.extractall() or TarFile.extract() using the filter= parameter with a value of "data" or "tar". See the tarfile extraction filters documentation https://docs.python.org/3/library/tarfile.html#tarfile-extraction-filter for more information. Only Python versions 3.12 or later are affected by these vulnerabilities, earlier versions don't include the extraction filter feature. Note that for Python 3.14 or later the default value of filter= changed from "no filtering" to `"data", so if you are relying on this new default behavior then your usage is also affected. Note that none of these vulnerabilities significantly affect the installation of source distributions which are tar archives as source distributions already allow arbitrary code execution during the build process. However when evaluating source distributions it's important to avoid installing source distributions with suspicious links. CVE-2025-4517 Container bci/python:3:libpython3_12-1_0-3.12.11-150600.3.30.1 Container bci/python:3:python312-3.12.11-150600.3.30.1 Container bci/python:3:python312-base-3.12.11-150600.3.30.1 Container bci/python:3:python312-devel-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:libpython3_12-1_0-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-base-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-curses-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-dbm-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-devel-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-idle-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-tk-3.12.11-150600.3.30.1 SUSE Linux Enterprise Module for Python 3 15 SP6:python312-tools-3.12.11-150600.3.30.1 openSUSE Leap 15.6:libpython3_12-1_0-3.12.11-150600.3.30.1 openSUSE Leap 15.6:libpython3_12-1_0-32bit-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-32bit-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-base-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-base-32bit-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-curses-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-dbm-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-devel-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-doc-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-doc-devhelp-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-idle-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-testsuite-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-tk-3.12.11-150600.3.30.1 openSUSE Leap 15.6:python312-tools-3.12.11-150600.3.30.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202502048-1/ https://www.suse.com/security/cve/CVE-2025-4517.html CVE-2025-4517 https://bugzilla.suse.com/1244032 SUSE Bug 1244032