{"affected":[{"ecosystem_specific":{"binaries":[{"libpython3_12-1_0":"3.12.11-150600.3.30.1","python312":"3.12.11-150600.3.30.1","python312-base":"3.12.11-150600.3.30.1","python312-curses":"3.12.11-150600.3.30.1","python312-dbm":"3.12.11-150600.3.30.1","python312-devel":"3.12.11-150600.3.30.1","python312-idle":"3.12.11-150600.3.30.1","python312-tk":"3.12.11-150600.3.30.1","python312-tools":"3.12.11-150600.3.30.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Python 3 15 SP6","name":"python312","purl":"pkg:rpm/suse/python312&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%203%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.12.11-150600.3.30.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libpython3_12-1_0":"3.12.11-150600.3.30.1","python312":"3.12.11-150600.3.30.1","python312-base":"3.12.11-150600.3.30.1","python312-curses":"3.12.11-150600.3.30.1","python312-dbm":"3.12.11-150600.3.30.1","python312-devel":"3.12.11-150600.3.30.1","python312-idle":"3.12.11-150600.3.30.1","python312-tk":"3.12.11-150600.3.30.1","python312-tools":"3.12.11-150600.3.30.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Python 3 15 SP6","name":"python312-core","purl":"pkg:rpm/suse/python312-core&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%203%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.12.11-150600.3.30.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libpython3_12-1_0":"3.12.11-150600.3.30.1","libpython3_12-1_0-32bit":"3.12.11-150600.3.30.1","python312":"3.12.11-150600.3.30.1","python312-32bit":"3.12.11-150600.3.30.1","python312-base":"3.12.11-150600.3.30.1","python312-base-32bit":"3.12.11-150600.3.30.1","python312-curses":"3.12.11-150600.3.30.1","python312-dbm":"3.12.11-150600.3.30.1","python312-devel":"3.12.11-150600.3.30.1","python312-doc":"3.12.11-150600.3.30.1","python312-doc-devhelp":"3.12.11-150600.3.30.1","python312-idle":"3.12.11-150600.3.30.1","python312-testsuite":"3.12.11-150600.3.30.1","python312-tk":"3.12.11-150600.3.30.1","python312-tools":"3.12.11-150600.3.30.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.6","name":"python312","purl":"pkg:rpm/opensuse/python312&distro=openSUSE%20Leap%2015.6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.12.11-150600.3.30.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libpython3_12-1_0":"3.12.11-150600.3.30.1","libpython3_12-1_0-32bit":"3.12.11-150600.3.30.1","python312":"3.12.11-150600.3.30.1","python312-32bit":"3.12.11-150600.3.30.1","python312-base":"3.12.11-150600.3.30.1","python312-base-32bit":"3.12.11-150600.3.30.1","python312-curses":"3.12.11-150600.3.30.1","python312-dbm":"3.12.11-150600.3.30.1","python312-devel":"3.12.11-150600.3.30.1","python312-doc":"3.12.11-150600.3.30.1","python312-doc-devhelp":"3.12.11-150600.3.30.1","python312-idle":"3.12.11-150600.3.30.1","python312-testsuite":"3.12.11-150600.3.30.1","python312-tk":"3.12.11-150600.3.30.1","python312-tools":"3.12.11-150600.3.30.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.6","name":"python312-core","purl":"pkg:rpm/opensuse/python312-core&distro=openSUSE%20Leap%2015.6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.12.11-150600.3.30.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libpython3_12-1_0":"3.12.11-150600.3.30.1","libpython3_12-1_0-32bit":"3.12.11-150600.3.30.1","python312":"3.12.11-150600.3.30.1","python312-32bit":"3.12.11-150600.3.30.1","python312-base":"3.12.11-150600.3.30.1","python312-base-32bit":"3.12.11-150600.3.30.1","python312-curses":"3.12.11-150600.3.30.1","python312-dbm":"3.12.11-150600.3.30.1","python312-devel":"3.12.11-150600.3.30.1","python312-doc":"3.12.11-150600.3.30.1","python312-doc-devhelp":"3.12.11-150600.3.30.1","python312-idle":"3.12.11-150600.3.30.1","python312-testsuite":"3.12.11-150600.3.30.1","python312-tk":"3.12.11-150600.3.30.1","python312-tools":"3.12.11-150600.3.30.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.6","name":"python312-documentation","purl":"pkg:rpm/opensuse/python312-documentation&distro=openSUSE%20Leap%2015.6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.12.11-150600.3.30.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for python312 fixes the following issues:\n\npython312 was updated from version 3.12.9 to 3.12.11:\n\n- Security issues fixed:\n\n  * CVE-2025-4516: Fixed blocking DecodeError handling vulnerability, which could lead to DoS (bsc#1243273)\n  * CVE-2024-12718, CVE-2025-4138, CVE-2025-4330, CVE-2025-4517: Fixed multiple issues that allowed tarfile \n    extraction filters to be bypassed using crafted symlinks and hard links\n    (bsc#1244056, bsc#1244059, bsc#1244060, bsc#1244032)\n\n- Other changes and bugs fixed:\n\n  * Added --single-process option to the Python test runner (regrtest).\n  * Added support for text/x-rst MIME type.\n  * Corrected issues in various modules.\n  * Fixed bugs in the in the folding of rfc2047 encoded-words and in the folding of quoted strings when flattening an\n    email message using a modern email policy.\n  * Fixed f-string handling of lambda expressions with non-ASCII characters.\n  * Fixed ipaddress.IPv6Address.reverse_pointer output according to RFC 3596.\n  * Fixed parsing long IPv6 addresses with embedded IPv4 address.\n  * Fixed resource leaks in gzip and multiprocessing Resource Tracker.\n  * Improved IDLE's documentation display.\n  * Improved the textual representation of IPv4-mapped IPv6 addresses in ipaddress.\n  * ipaddress: fixed hash collisions for IPv4Network and IPv6Network objects\n  * Made from __future__ import barry_as_FLUFL work in more contexts.\n  * Resolved potential crashes in contextvars, xml.etree.ElementTree, sqlite3, and the sys module.\n  * Scheduled deprecation of the check_home argument in sysconfig.is_python_build() for Python 3.15.\n  * Stop the processing of long IPv6 addresses early in ipaddress to prevent excessive memory consumption and a minor\n    denial-of-service.\n  * Undeprecated functional API for importlib.resources and added Anchor.\n  * Updated bundled libexpat to 2.7.1\n  * Updated bundled pip to version 25.0.1.\n  * Updated documentation for generic classes, wheel tags, and the C API.\n","id":"SUSE-SU-2025:02048-1","modified":"2025-06-20T12:40:39Z","published":"2025-06-20T12:40:39Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2025/suse-su-202502048-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1243273"},{"type":"REPORT","url":"https://bugzilla.suse.com/1244032"},{"type":"REPORT","url":"https://bugzilla.suse.com/1244056"},{"type":"REPORT","url":"https://bugzilla.suse.com/1244059"},{"type":"REPORT","url":"https://bugzilla.suse.com/1244060"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2024-12718"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-4138"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-4330"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-4516"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-4517"}],"related":["CVE-2024-12718","CVE-2025-4138","CVE-2025-4330","CVE-2025-4516","CVE-2025-4517"],"summary":"Security update for python312","upstream":["CVE-2024-12718","CVE-2025-4138","CVE-2025-4330","CVE-2025-4516","CVE-2025-4517"]}