[ALSA-2024:6961] Moderate: python3.12 security update
Type:
security
Severity:
moderate
Release date:
2024-09-24
Description:
Python 3.12 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.12 package provides the "python3.12" executable: the reference interpreter for the Python language, version 3. The majority of its standard library is provided in the python3.12-libs package, which should be installed automatically along with python3.12. The remaining parts of the Python standard library are broken out into the python3.12-tkinter and python3.12-test packages, which may need to be installed separately. Documentation for Python is provided in the python3.12-docs package. Packages containing additional libraries for Python are generally named with the "python3.12-" prefix. For the unversioned "python" executable, see manual page "unversioned-python". Security Fix(es): * python: incorrect IPv4 and IPv6 private ranges (CVE-2024-4032) * cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection (CVE-2024-6923) * python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service (CVE-2024-8088) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 python3.12-libs-3.12.5-2.el8_10.aarch64.rpm 1d216e43ea5b9c0d6fd2d1f0dea39ceb73e7404ca7d9630c3451d4d5ebe4b68a
aarch64 python3.12-idle-3.12.5-2.el8_10.aarch64.rpm 676315901dba127d05c44b5d6790524eccddf28d5b410b3a44cea9a241057ef3
aarch64 python3.12-tkinter-3.12.5-2.el8_10.aarch64.rpm 678597d5076f9d3b94661e9cb8bb069c147a7ea24d421a422fcceef10a57dd43
aarch64 python3.12-debug-3.12.5-2.el8_10.aarch64.rpm 92664de6576a829629360d497840d8f1dfb198c48b5d85f6f5ab46dec9b94975
aarch64 python3.12-3.12.5-2.el8_10.aarch64.rpm 9de8daf6a56dbec687a85760d811c31a22e42549cee26d2e4cf3ed5a27390e44
aarch64 python3.12-test-3.12.5-2.el8_10.aarch64.rpm b17b0501d84641140516ffd9e399042eade091d2d212ec903c4f720578a134ab
aarch64 python3.12-devel-3.12.5-2.el8_10.aarch64.rpm b24eb8ca8dd6ff68c539c16235125492af6d43e8632f9f718faa75205931103e
i686 python3.12-debug-3.12.5-2.el8_10.i686.rpm 0b3ba6ef0d02a3d86f8ca65e4843d2ddd6a92975105086b03c7b5240593b5c7e
i686 python3.12-tkinter-3.12.5-2.el8_10.i686.rpm 0fd825f594bbfb02ba70f0ef9a89289893ea02a003b8b7bb228f0938bbcb8a37
i686 python3.12-libs-3.12.5-2.el8_10.i686.rpm 3029d74323bab09e0f3212ab639f1e435b6ce56c6cc881c3969eaba7d6f780fe
i686 python3.12-test-3.12.5-2.el8_10.i686.rpm 50113e466165f89f6f2907c642ef9fc37b65edbfc3a344bea96a070206972415
i686 python3.12-3.12.5-2.el8_10.i686.rpm 70d844311dfeb31f97ebaa7a47f8c672a41371805a27ba291040dd1856d0f4e8
i686 python3.12-devel-3.12.5-2.el8_10.i686.rpm 87c0259f43c13dd41b7fb77f1e3207132f8b41e1b8a04c3c8270fbf443dca5cd
i686 python3.12-idle-3.12.5-2.el8_10.i686.rpm a1a6f428aa518adc802f98cb4a3a7e570f1211231b5589ef2bc031738bbe6b71
noarch python3.12-rpm-macros-3.12.5-2.el8_10.noarch.rpm 0c827f3386b8ea6e6f9e14048084a9fa9b71fa9a2a2b5ad57dc72a24a88f7e5c
ppc64le python3.12-test-3.12.5-2.el8_10.ppc64le.rpm 2e5a20254f93ecf74470eaaacfb0845f7517df55c6681410bc3e04e801dc3648
ppc64le python3.12-debug-3.12.5-2.el8_10.ppc64le.rpm 6416dbf84e2299f210c04cc8da2ed23ad75d0ef36a43dd965173f9cd838f6f16
ppc64le python3.12-devel-3.12.5-2.el8_10.ppc64le.rpm 6d5e7542d6c78d5daa8e8ff5ace3f60be1ae9e621fa0c1ed9883c19d6adc4500
ppc64le python3.12-3.12.5-2.el8_10.ppc64le.rpm 96fc480728426b093b9d602445dc274623791dd64f1e2f253d0ad57e28481cf4
ppc64le python3.12-libs-3.12.5-2.el8_10.ppc64le.rpm 99d3c371599af634dd1c0de4f1d8bc2eae8e8b0be6a53c911610b60ec319d3b0
ppc64le python3.12-idle-3.12.5-2.el8_10.ppc64le.rpm ec2bb0e4abdc3697e45acfefa03d885a899b3ab71acc05213f4913f1da2a3801
ppc64le python3.12-tkinter-3.12.5-2.el8_10.ppc64le.rpm ed8e171321f82de47a83b956b91015d5ea662872d58313ef355f3decc240430f
s390x python3.12-libs-3.12.5-2.el8_10.s390x.rpm 0cf68343bac1d89c35cc7193ec1c89959dfd215de21f4dfd01d66e4a563e363c
s390x python3.12-3.12.5-2.el8_10.s390x.rpm 4def7f1a3ab4b5309af4911aae782ef0519c22fe2be6a8f2ced41ea65864822e
s390x python3.12-test-3.12.5-2.el8_10.s390x.rpm 52991b0db34496161820312a498bf234c710bd9adedadc1f9235687e72a4149d
s390x python3.12-idle-3.12.5-2.el8_10.s390x.rpm 643c5d66db73ebf99be4886cd3d4b5e457b14b97e41d75c5bd79e32dcf063301
s390x python3.12-devel-3.12.5-2.el8_10.s390x.rpm 8a922cf905d3201fb9d8d51ec4ae039ef62bfe8e9916679f67e0b6f739e99fe5
s390x python3.12-tkinter-3.12.5-2.el8_10.s390x.rpm c886117f31d40289f617873762ea9ae75a9c8f04c129376eeda359e788623939
s390x python3.12-debug-3.12.5-2.el8_10.s390x.rpm fd675b216a1041e4f98f925d12b2936c01a1fccd29f1ea5b91a33f1550b3a0a3
x86_64 python3.12-idle-3.12.5-2.el8_10.x86_64.rpm 0c63f5d8b1c2188776229cf5fc89d412e02c0ab23a3588908a6a0eda5befffbc
x86_64 python3.12-test-3.12.5-2.el8_10.x86_64.rpm 2ee72a5d0ef087b4263e06875b6df0e00ddb94724fa6ba2e6f4088784bed685c
x86_64 python3.12-devel-3.12.5-2.el8_10.x86_64.rpm 3c217ede33e35d110085fbc130dfac94866c39b934c7518de8b458807d4ec27d
x86_64 python3.12-tkinter-3.12.5-2.el8_10.x86_64.rpm 4ce449c7ef65302b135d22f7f0acdace22387eb2e2bd852202c577bc1d781476
x86_64 python3.12-3.12.5-2.el8_10.x86_64.rpm 66411bd8e7bb03bef4e23a894a1cec5125ae7568e36e18135a46ec1414a0f8ba
x86_64 python3.12-libs-3.12.5-2.el8_10.x86_64.rpm 6afbd9fc01b48752f0cf527262b49555bf4a52a3289fc5a7aa464d527f06a500
x86_64 python3.12-debug-3.12.5-2.el8_10.x86_64.rpm dc96e9042a46685bca5ee0c1cc1165c19a1a0a8b7fc5345cdc6b36bbccbcc55e
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.