SUSE Linux 15 SP7 Python311 Important Security Issues Advisory 2026-1349-1

## This update for python311 fixes the following issues: * Updated to Python 3.11.15 * CVE-2025-6075: If the value passed to os.path.expandvars() is user- controlled a performance degradation is possible when expanding environment variables (bsc#1252974). * CVE-2025-11468: header injection when folding a long comment in an email header containing exclusively unfoldable characters (bsc#1257029). * CVE-2025-12084: cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service (bsc#1254997). * CVE-2025-13462: incorrect parsing of TarInfo header when GNU long name and type AREGTYPE are combined (bsc#1259611). * CVE-2025-13836: When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length (bsc#1254400).