## This update for python311 fixes the following issues: * CVE-2025-4516: Fixed blocking DecodeError handling vulnerability, which could lead to DoS. (bsc#1243273) Update to 3.11.12: * gh-105704: When using urllib.parse.urlsplit() and urllib.parse.urlparse() host parsing would not reject domain names containing square brackets ([ and ]). Square brackets are only valid for IPv6 and IPvFuture hosts according to RFC 3986 Section 3.2.2 (bsc#1236705, CVE-2025-0938, gh#python/cpython#105704). * gh-121284: Fix bug in the folding of rfc2047 encoded-words when flattening an email message using a modern email policy. Previously when an encoded- word was too long for a line, it would be decoded, split across lines, and re-encoded. But commas and other special characters in the original text
* bsc#1210638
* bsc#1219559
* bsc#1219666
* bsc#1221854
* bsc#1225660
* bsc#1226447
* bsc#1226448
* bsc#1227378
* bsc#1227999
* bsc#1228165
* bsc#1228780
* bsc#1229596
* bsc#1229704
* bsc#1230227
* bsc#1230906
* bsc#1231795
* bsc#1232241
* bsc#1236705
* bsc#1238450
* bsc#1239210
* bsc#1241067
* bsc#1243273
Cross-
* CVE-2022-25236
* CVE-2023-27043
* CVE-2023-52425
* CVE-2023-6597
* CVE-2024-0397
* CVE-2024-0450
* CVE-2024-4030
* CVE-2024-4032
* CVE-2024-6232
* CVE-2024-6923
* CVE-2024-7592
* CVE-2024-8088
* CVE-2024-9287
* CVE-2025-0938
* CVE-2025-1795
* CVE-2025-4516
CVSS scores:
* CVE-2022-25236 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2022-25236 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Get the latest Linux and open source security news straight to your inbox.