vulnerability
SUSE: CVE-2024-0397: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:H/Au:N/C:C/I:N/A:C) | 06/17/2024 | 07/03/2024 | 02/18/2025 |
Severity
7
CVSS
(AV:N/AC:H/Au:N/C:C/I:N/A:C)
Published
06/17/2024
Added
07/03/2024
Modified
02/18/2025
Description
A defect was discovered in the Python “ssl” module where there is a memory
race condition with the ssl.SSLContext methods “cert_store_stats()” and
“get_ca_certs()”. The race condition can be triggered if the methods are
called at the same time as certificates are loaded into the SSLContext,
such as during the TLS handshake with a certificate directory configured.
This issue is fixed in CPython 3.10.14, 3.11.9, 3.12.3, and 3.13.0a5.
Solution(s)
suse-upgrade-libpython3_11-1_0suse-upgrade-libpython3_11-1_0-32bitsuse-upgrade-libpython3_12-1_0suse-upgrade-libpython3_12-1_0-32bitsuse-upgrade-libpython3_6m1_0suse-upgrade-libpython3_6m1_0-32bitsuse-upgrade-libpython3_9-1_0suse-upgrade-libpython3_9-1_0-32bitsuse-upgrade-python3suse-upgrade-python3-basesuse-upgrade-python3-cursessuse-upgrade-python3-dbmsuse-upgrade-python3-develsuse-upgrade-python3-docsuse-upgrade-python3-doc-devhelpsuse-upgrade-python3-idlesuse-upgrade-python3-testsuitesuse-upgrade-python3-tksuse-upgrade-python3-toolssuse-upgrade-python311suse-upgrade-python311-32bitsuse-upgrade-python311-basesuse-upgrade-python311-base-32bitsuse-upgrade-python311-cursessuse-upgrade-python311-dbmsuse-upgrade-python311-develsuse-upgrade-python311-docsuse-upgrade-python311-doc-devhelpsuse-upgrade-python311-idlesuse-upgrade-python311-testsuitesuse-upgrade-python311-tksuse-upgrade-python311-toolssuse-upgrade-python312suse-upgrade-python312-32bitsuse-upgrade-python312-basesuse-upgrade-python312-base-32bitsuse-upgrade-python312-cursessuse-upgrade-python312-dbmsuse-upgrade-python312-develsuse-upgrade-python312-docsuse-upgrade-python312-doc-devhelpsuse-upgrade-python312-idlesuse-upgrade-python312-testsuitesuse-upgrade-python312-tksuse-upgrade-python312-toolssuse-upgrade-python36suse-upgrade-python36-basesuse-upgrade-python36-develsuse-upgrade-python39suse-upgrade-python39-32bitsuse-upgrade-python39-basesuse-upgrade-python39-base-32bitsuse-upgrade-python39-cursessuse-upgrade-python39-dbmsuse-upgrade-python39-develsuse-upgrade-python39-docsuse-upgrade-python39-doc-devhelpsuse-upgrade-python39-idlesuse-upgrade-python39-testsuitesuse-upgrade-python39-tksuse-upgrade-python39-tools
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.