{"affected":[{"ecosystem_specific":{"binaries":[{"libpython3_11-1_0":"3.11.13-150600.3.30.1","python311-base":"3.11.13-150600.3.30.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP6","name":"python311-core","purl":"pkg:rpm/suse/python311-core&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.11.13-150600.3.30.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libpython3_11-1_0":"3.11.13-150600.3.30.1","python311-base":"3.11.13-150600.3.30.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP7","name":"python311-core","purl":"pkg:rpm/suse/python311-core&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.11.13-150600.3.30.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python311":"3.11.13-150600.3.30.1","python311-curses":"3.11.13-150600.3.30.1","python311-dbm":"3.11.13-150600.3.30.1","python311-devel":"3.11.13-150600.3.30.1","python311-idle":"3.11.13-150600.3.30.1","python311-tk":"3.11.13-150600.3.30.1","python311-tools":"3.11.13-150600.3.30.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Python 3 15 SP6","name":"python311","purl":"pkg:rpm/suse/python311&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%203%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.11.13-150600.3.30.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python311":"3.11.13-150600.3.30.1","python311-curses":"3.11.13-150600.3.30.1","python311-dbm":"3.11.13-150600.3.30.1","python311-devel":"3.11.13-150600.3.30.1","python311-idle":"3.11.13-150600.3.30.1","python311-tk":"3.11.13-150600.3.30.1","python311-tools":"3.11.13-150600.3.30.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Python 3 15 SP6","name":"python311-core","purl":"pkg:rpm/suse/python311-core&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%203%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.11.13-150600.3.30.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python311":"3.11.13-150600.3.30.1","python311-curses":"3.11.13-150600.3.30.1","python311-dbm":"3.11.13-150600.3.30.1","python311-devel":"3.11.13-150600.3.30.1","python311-idle":"3.11.13-150600.3.30.1","python311-tk":"3.11.13-150600.3.30.1","python311-tools":"3.11.13-150600.3.30.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Python 3 15 SP7","name":"python311","purl":"pkg:rpm/suse/python311&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%203%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.11.13-150600.3.30.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python311":"3.11.13-150600.3.30.1","python311-curses":"3.11.13-150600.3.30.1","python311-dbm":"3.11.13-150600.3.30.1","python311-devel":"3.11.13-150600.3.30.1","python311-idle":"3.11.13-150600.3.30.1","python311-tk":"3.11.13-150600.3.30.1","python311-tools":"3.11.13-150600.3.30.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Python 3 15 SP7","name":"python311-core","purl":"pkg:rpm/suse/python311-core&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%203%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.11.13-150600.3.30.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libpython3_11-1_0":"3.11.13-150600.3.30.1","libpython3_11-1_0-32bit":"3.11.13-150600.3.30.1","python311":"3.11.13-150600.3.30.1","python311-32bit":"3.11.13-150600.3.30.1","python311-base":"3.11.13-150600.3.30.1","python311-base-32bit":"3.11.13-150600.3.30.1","python311-curses":"3.11.13-150600.3.30.1","python311-dbm":"3.11.13-150600.3.30.1","python311-devel":"3.11.13-150600.3.30.1","python311-doc":"3.11.13-150600.3.30.1","python311-doc-devhelp":"3.11.13-150600.3.30.1","python311-idle":"3.11.13-150600.3.30.1","python311-testsuite":"3.11.13-150600.3.30.1","python311-tk":"3.11.13-150600.3.30.1","python311-tools":"3.11.13-150600.3.30.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.6","name":"python311","purl":"pkg:rpm/opensuse/python311&distro=openSUSE%20Leap%2015.6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.11.13-150600.3.30.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libpython3_11-1_0":"3.11.13-150600.3.30.1","libpython3_11-1_0-32bit":"3.11.13-150600.3.30.1","python311":"3.11.13-150600.3.30.1","python311-32bit":"3.11.13-150600.3.30.1","python311-base":"3.11.13-150600.3.30.1","python311-base-32bit":"3.11.13-150600.3.30.1","python311-curses":"3.11.13-150600.3.30.1","python311-dbm":"3.11.13-150600.3.30.1","python311-devel":"3.11.13-150600.3.30.1","python311-doc":"3.11.13-150600.3.30.1","python311-doc-devhelp":"3.11.13-150600.3.30.1","python311-idle":"3.11.13-150600.3.30.1","python311-testsuite":"3.11.13-150600.3.30.1","python311-tk":"3.11.13-150600.3.30.1","python311-tools":"3.11.13-150600.3.30.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.6","name":"python311-core","purl":"pkg:rpm/opensuse/python311-core&distro=openSUSE%20Leap%2015.6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.11.13-150600.3.30.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libpython3_11-1_0":"3.11.13-150600.3.30.1","libpython3_11-1_0-32bit":"3.11.13-150600.3.30.1","python311":"3.11.13-150600.3.30.1","python311-32bit":"3.11.13-150600.3.30.1","python311-base":"3.11.13-150600.3.30.1","python311-base-32bit":"3.11.13-150600.3.30.1","python311-curses":"3.11.13-150600.3.30.1","python311-dbm":"3.11.13-150600.3.30.1","python311-devel":"3.11.13-150600.3.30.1","python311-doc":"3.11.13-150600.3.30.1","python311-doc-devhelp":"3.11.13-150600.3.30.1","python311-idle":"3.11.13-150600.3.30.1","python311-testsuite":"3.11.13-150600.3.30.1","python311-tk":"3.11.13-150600.3.30.1","python311-tools":"3.11.13-150600.3.30.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.6","name":"python311-documentation","purl":"pkg:rpm/opensuse/python311-documentation&distro=openSUSE%20Leap%2015.6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.11.13-150600.3.30.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for python311 fixes the following issues:\n  \npython311 was updated from version 3.11.10 to 3.11.13:\n\n- Security issues fixed:\n\n  * CVE-2025-4516: Fixed blocking DecodeError handling vulnerability, which could lead to DoS (bsc#1243273).\n  * CVE-2024-12718, CVE-2025-4138, CVE-2025-4330, CVE-2025-4517: Fixed multiple issues that allowed tarfile \n    extraction filters to be bypassed using crafted symlinks and hard links\n    (bsc#1244056, bsc#1244059, bsc#1244060, bsc#1244032)\n\n- Other changes and bugs fixed:\n \n  * Improved handling of system call failures that OpenSSL reports (bsc#1241067)\n  * Disable GC during thread operations to prevent deadlocks.\n  * Fixed a potential denial of service vulnerability in the imaplib module.\n  * Fixed bugs in the in the folding of rfc2047 encoded-words and in the folding of quoted strings when flattening an\n    email message using a modern email policy.\n  * Fixed parsing long IPv6 addresses with embedded IPv4 address.\n  * Fixed ipaddress.IPv6Address.reverse_pointer output according to RFC 3596\n  * Improved the textual representation of IPv4-mapped IPv6 addresses in ipaddress.\n  * ipaddress: fixed hash collisions for IPv4Network and IPv6Network objects\n  * os.path.realpath() now accepts a strict keyword-only argument.\n  * Stop the processing of long IPv6 addresses early in ipaddress to prevent excessive memory consumption and a minor\n    denial-of-service.\n  * Updated bundled libexpat to 2.7.1\n  * Writers of CPython documentation can now use next as the version for the versionchanged, versionadded,\n    deprecated directives.\n","id":"SUSE-SU-2025:02057-1","modified":"2025-06-21T09:04:25Z","published":"2025-06-21T09:04:25Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2025/suse-su-202502057-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1241067"},{"type":"REPORT","url":"https://bugzilla.suse.com/1243273"},{"type":"REPORT","url":"https://bugzilla.suse.com/1244032"},{"type":"REPORT","url":"https://bugzilla.suse.com/1244056"},{"type":"REPORT","url":"https://bugzilla.suse.com/1244059"},{"type":"REPORT","url":"https://bugzilla.suse.com/1244060"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2024-12718"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-4138"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-4330"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-4516"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-4517"}],"related":["CVE-2024-12718","CVE-2025-4138","CVE-2025-4330","CVE-2025-4516","CVE-2025-4517"],"summary":"Security update for python311","upstream":["CVE-2024-12718","CVE-2025-4138","CVE-2025-4330","CVE-2025-4516","CVE-2025-4517"]}