File _patchinfo of Package patchinfo.13609

<patchinfo incident="13609">
  <issue tracker="jsc" id="SLE-9427"/>
  <issue tracker="bnc" id="1159208">Provide latest Python releases on SLE12</issue>
  <issue tracker="bnc" id="1068664"></issue>
  <issue tracker="bnc" id="1159623">python3-idle with its giant dependencies should not be a python3-base subpackage</issue>
  <issue tracker="cve" id="2017-9233"/>
  <issue tracker="cve" id="2016-4472"/>
  <issue tracker="cve" id="2016-0718"/>
  <issue tracker="cve" id="2016-9063"/>
  <issue tracker="cve" id="2012-0876"/>
  <issue tracker="cve" id="2017-1000158"/>
  <packager>mcepl</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for python3</summary>
  <description>This update for python3 fixes the following issues:

Update to 3.4.10 (jsc#SLE-9427, bsc#1159208) from 3.4.6:

Security issues fixed:

- Update expat copy from 2.1.1 to 2.2.0 to fix the following issues:
  CVE-2012-0876, CVE-2016-0718, CVE-2016-4472, CVE-2017-9233, CVE-2016-9063
- CVE-2017-1000158: Fix an integer overflow in thePyString_DecodeEscape function in stringobject.c, resulting in heap-based bufferoverflow (bsc#1068664).
</description>
</patchinfo>