## This update for python311 fixes the following issues: * Skip PGO with %want_reproducible_builds (bsc#1239210) * CVE-2025-0938: Disallows square brackets ([ and ]) in domain names for parsed URLs (bsc#1236705). * Configure externally_managed with a bcond (bsc#1228165). * Update to 3.11.11: * Tools/Demos * gh-123418: Update GitHub CI workflows to use OpenSSL 3.0.15 and multissltests to use 3.0.15, 3.1.7, and 3.2.3. * Tests * gh-125041: Re-enable skipped tests for zlib on the s390x architecture: only skip checks of the compressed bytes, which can be different between zlibâs software implementation and the hardware-accelerated implementation. * Security * gh-126623: Upgrade libexpat to 2.6.4
* bsc#1174091
* bsc#1210638
* bsc#1219559
* bsc#1219666
* bsc#1221854
* bsc#1225660
* bsc#1226447
* bsc#1226448
* bsc#1227378
* bsc#1227999
* bsc#1228165
* bsc#1228780
* bsc#1229596
* bsc#1229704
* bsc#1230227
* bsc#1230906
* bsc#1231795
* bsc#1232241
* bsc#1236705
* bsc#1238450
* bsc#1239210
* bsc#831629
Cross-
* CVE-2019-20907
* CVE-2019-9947
* CVE-2020-15523
* CVE-2020-15801
* CVE-2022-25236
* CVE-2023-27043
* CVE-2023-52425
* CVE-2023-6597
* CVE-2024-0397
* CVE-2024-0450
* CVE-2024-4030
* CVE-2024-4032
* CVE-2024-6232
* CVE-2024-6923
* CVE-2024-7592
* CVE-2024-8088
* CVE-2024-9287
* CVE-2025-0938
* CVE-2025-1795
CVSS scores:
* CVE-2019-20907 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2019-20907 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Get the latest Linux and open source security news straight to your inbox.