Overview

File _patchinfo of Package patchinfo.30641

<patchinfo incident="30641">
  <issue tracker="cve" id="2023-40217"/>
  <issue tracker="cve" id="2023-41105"/>
  <issue tracker="bnc" id="1214692">VUL-0: CVE-2023-40217: python,python3,python39,python36,python310,python311: Bypass TLS handshake on closed sockets</issue>
  <issue tracker="bnc" id="1214693"> VUL-0: CVE-2023-41105: python311: os.path.normpath truncates input on null bytes in 3.11, but not 3.10</issue>
  <packager>dgarcia</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for python3</summary>
  <description>This update for python3 fixes the following issues:

- CVE-2023-40217: Fixed TLS handshake bypass on closed sockets (bsc#1214692).
- CVE-2023-41105: Fixed input truncation on null bytes in os.path.normpath (bsc#1214693).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places