vulnerability
SUSE: CVE-2023-6597: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:L/AC:H/Au:N/C:C/I:C/A:N) | Mar 6, 2024 | Mar 7, 2024 | Feb 18, 2025 |
Severity
6
CVSS
(AV:L/AC:H/Au:N/C:C/I:C/A:N)
Published
Mar 6, 2024
Added
Mar 7, 2024
Modified
Feb 18, 2025
Description
An issue was found in the CPython `tempfile.TemporaryDirectory` class affecting versions 3.12.1, 3.11.7, 3.10.13, 3.9.18, and 3.8.18 and prior.
The tempfile.TemporaryDirectory class would dereference symlinks during cleanup of permissions-related errors. This means users which can run privileged programs are potentially able to modify permissions of files referenced by symlinks in some circumstances.
Solution(s)
suse-upgrade-libpython3_10-1_0suse-upgrade-libpython3_10-1_0-32bitsuse-upgrade-libpython3_11-1_0suse-upgrade-libpython3_11-1_0-32bitsuse-upgrade-libpython3_4m1_0suse-upgrade-libpython3_4m1_0-32bitsuse-upgrade-libpython3_6m1_0suse-upgrade-libpython3_6m1_0-32bitsuse-upgrade-libpython3_9-1_0suse-upgrade-libpython3_9-1_0-32bitsuse-upgrade-python3suse-upgrade-python3-basesuse-upgrade-python3-cursessuse-upgrade-python3-dbmsuse-upgrade-python3-develsuse-upgrade-python3-docsuse-upgrade-python3-doc-devhelpsuse-upgrade-python3-idlesuse-upgrade-python3-testsuitesuse-upgrade-python3-tksuse-upgrade-python3-toolssuse-upgrade-python310suse-upgrade-python310-32bitsuse-upgrade-python310-basesuse-upgrade-python310-base-32bitsuse-upgrade-python310-cursessuse-upgrade-python310-dbmsuse-upgrade-python310-develsuse-upgrade-python310-docsuse-upgrade-python310-doc-devhelpsuse-upgrade-python310-idlesuse-upgrade-python310-testsuitesuse-upgrade-python310-tksuse-upgrade-python310-toolssuse-upgrade-python311suse-upgrade-python311-32bitsuse-upgrade-python311-basesuse-upgrade-python311-base-32bitsuse-upgrade-python311-cursessuse-upgrade-python311-dbmsuse-upgrade-python311-develsuse-upgrade-python311-docsuse-upgrade-python311-doc-devhelpsuse-upgrade-python311-idlesuse-upgrade-python311-testsuitesuse-upgrade-python311-tksuse-upgrade-python311-toolssuse-upgrade-python36suse-upgrade-python36-basesuse-upgrade-python36-develsuse-upgrade-python39suse-upgrade-python39-32bitsuse-upgrade-python39-basesuse-upgrade-python39-base-32bitsuse-upgrade-python39-cursessuse-upgrade-python39-dbmsuse-upgrade-python39-develsuse-upgrade-python39-docsuse-upgrade-python39-doc-devhelpsuse-upgrade-python39-idlesuse-upgrade-python39-testsuitesuse-upgrade-python39-tksuse-upgrade-python39-tools
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.