Overview

File _patchinfo of Package patchinfo.5085

<patchinfo incident="5085">
  <issue id="1083507" tracker="bnc">VUL-0: CVE-2017-18207: python,python3: The Wave_read._read_fmt_chunk function in Lib/wave.py does not ensure a nonzero channel value, which allows attackers to cause a denial of service</issue>
  <issue id="2017-18207" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>dirkmueller</packager>
  <description>This update for python3 fixes the following issues:

Security issue fixed:

- CVE-2017-18207: Fixed possible denial of service vulnerability by adding a check to Lib/wave.py that verifies that at least one channel is provided (bsc#1083507).

Bug fixes:

- Require python-Sphinx-latex for building on Leap 42.3 or newer.
</description>
  <summary>Security update for python3</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places