Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

SUSE Python 3.11 Security Update: 2025:20154-1 Important

suse
Calendar Grey June 4, 2025
Dist Suse Esm H88
This update resolves 19 security holes in Python 3.11 specifically for SUSE Linux distributions.
* bsc#1174091 * bsc#1210638 * bsc#1219559 * bsc#1219666 * bsc#1221854

Summary

## This update for python311 fixes the following issues: * Skip PGO with %want_reproducible_builds (bsc#1239210) * CVE-2025-0938: Disallows square brackets ([ and ]) in domain names for parsed URLs (bsc#1236705). * Configure externally_managed with a bcond (bsc#1228165). * Update to 3.11.11: * Tools/Demos * gh-123418: Update GitHub CI workflows to use OpenSSL 3.0.15 and multissltests to use 3.0.15, 3.1.7, and 3.2.3. * Tests * gh-125041: Re-enable skipped tests for zlib on the s390x architecture: only skip checks of the compressed bytes, which can be different between zlib’s software implementation and the hardware-accelerated implementation. * Security * gh-126623: Upgrade libexpat to 2.6.4

References

* bsc#1174091

* bsc#1210638

* bsc#1219559

* bsc#1219666

* bsc#1221854

* bsc#1225660

* bsc#1226447

* bsc#1226448

* bsc#1227378

* bsc#1227999

* bsc#1228165

* bsc#1228780

* bsc#1229596

* bsc#1229704

* bsc#1230227

* bsc#1230906

* bsc#1231795

* bsc#1232241

* bsc#1236705

* bsc#1238450

* bsc#1239210

* bsc#831629

Cross-

* CVE-2019-20907

* CVE-2019-9947

* CVE-2020-15523

* CVE-2020-15801

* CVE-2022-25236

* CVE-2023-27043

* CVE-2023-52425

* CVE-2023-6597

* CVE-2024-0397

* CVE-2024-0450

* CVE-2024-4030

* CVE-2024-4032

* CVE-2024-6232

* CVE-2024-6923

* CVE-2024-7592

* CVE-2024-8088

* CVE-2024-9287

* CVE-2025-0938

* CVE-2025-1795

CVSS scores:

* CVE-2019-20907 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

* CVE-2019-20907 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2025:20154-1
Release Date: 2025-03-19T11:45:10Z
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here