[ALSA-2024:9190] Moderate: python3.12 security update
Type:
security
Severity:
moderate
Release date:
2024-11-18
Description:
Python 3.12 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.12 package provides the "python3.12" executable: the reference interpreter for the Python language, version 3. The majority of its standard library is provided in the python3.12-libs package, which should be installed automatically along with python3.12. The remaining parts of the Python standard library are broken out into the python3.12-tkinter and python3.12-test packages, which may need to be installed separately. Documentation for Python is provided in the python3.12-docs package. Packages containing additional libraries for Python are generally named with the "python3.12-" prefix. Security Fix(es): * python: The zipfile module is vulnerable to zip-bombs leading to denial of service (CVE-2024-0450) * python: incorrect IPv4 and IPv6 private ranges (CVE-2024-4032) * python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service (CVE-2024-8088) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 python3.12-devel-3.12.5-2.el9.aarch64.rpm 1e063aea849e9b6c503e7e3d9a660e3d0a7a46780de01609f22101f4c244a59f
aarch64 python3.12-test-3.12.5-2.el9.aarch64.rpm 3764413696d2e462eb9454859656b6f39d9fa2d5649f82a8b4a33d0ed6e65345
aarch64 python3.12-idle-3.12.5-2.el9.aarch64.rpm 756b623dd6586a6e75d7da046510dc436798ebc0450935203d993c00b105be9a
aarch64 python3.12-libs-3.12.5-2.el9.aarch64.rpm 8ee585197cc83e2f564326639bbe98aa53e0de164e5ab536298d1833809d199d
aarch64 python3.12-3.12.5-2.el9.aarch64.rpm be6bb92b60568b662dfc6ad405c164851730a19fcdbb14aac4d5868007e8687b
aarch64 python3.12-tkinter-3.12.5-2.el9.aarch64.rpm d053a236561cd1b1895f25afc884c5f504616e279d2961d034b7f1f5ece065cd
aarch64 python3.12-debug-3.12.5-2.el9.aarch64.rpm f34659f64cca45576bae298b81600d19ba688752b127bc9ed332758fcdd2b0e6
i686 python3.12-test-3.12.5-2.el9.i686.rpm 0625b6af4964cfdeb4a9738f4f7ff5660d6702829454fe2df182db25b877e905
i686 python3.12-debug-3.12.5-2.el9.i686.rpm 07f532cd3b585296a2a44dae523f609aa0aad736bbd794e813f13b977a814f4b
i686 python3.12-tkinter-3.12.5-2.el9.i686.rpm 2b5bd13058137556cc1b1620dbcdd2662b07738355aafa27c75cef7a0b8b38b1
i686 python3.12-devel-3.12.5-2.el9.i686.rpm 48aa27477618659974b340556a8cb3fdb2661191facc65dad00d91b82f643327
i686 python3.12-3.12.5-2.el9.i686.rpm 5b0e9c2734eb854d6947199b57644c3bb1ae0cc5a15f196b264f75d6c705651c
i686 python3.12-libs-3.12.5-2.el9.i686.rpm 63f3981a02b99315218eb690adc7a17b39957b59adb31bba8aee10584b591e51
i686 python3.12-idle-3.12.5-2.el9.i686.rpm 955e7e8b254d650adb48020f25741ebfa400f5cb7a874f033c0e6587f3f7583a
ppc64le python3.12-3.12.5-2.el9.ppc64le.rpm 2d8145f1a12ad9b0062ee4a485c4ad652fea0238eed4d7f91a1f946ef5954d32
ppc64le python3.12-tkinter-3.12.5-2.el9.ppc64le.rpm 68fa257b16b395b6017f63f360fe0561bbb602ea84036a91c8ba53de35226f68
ppc64le python3.12-test-3.12.5-2.el9.ppc64le.rpm 713c8c1614bd3d0b03a8eeefe10e38f2a440761de8b4c123686680a2d644db87
ppc64le python3.12-libs-3.12.5-2.el9.ppc64le.rpm 9d337a50ae4143f55441a925cb4b6a6b1663ef538390dd85cc95abf93c76d00b
ppc64le python3.12-debug-3.12.5-2.el9.ppc64le.rpm cd7ba736cb681c027733e767297585d5bd5031c2974eb32cc747cdf83a1d219d
ppc64le python3.12-devel-3.12.5-2.el9.ppc64le.rpm ce38d9fcc171ec3b3022b32a7ce944aa18608528f2323e269202279d254d8cae
ppc64le python3.12-idle-3.12.5-2.el9.ppc64le.rpm dfb7a83aec348351f9355568fc8b77e2650be820e988b6d47471978a1726a698
s390x python3.12-debug-3.12.5-2.el9.s390x.rpm 0e90638c1f03e02547321b305d1eaaf2e628c2320cc91d3996442406b2ae5fcd
s390x python3.12-libs-3.12.5-2.el9.s390x.rpm 4ea2782e54f4e84e4c01a0401505f21e9866c85bcef41d1c593e64814c828923
s390x python3.12-test-3.12.5-2.el9.s390x.rpm 771e17bc4c37b1d61569eb903ec78d82da4407b9fbe6570c55370fedcce6f09b
s390x python3.12-tkinter-3.12.5-2.el9.s390x.rpm 88c2a615ddaa4d022f55244998d2d506a779a4604145ce5ff99f01e86ed47585
s390x python3.12-devel-3.12.5-2.el9.s390x.rpm 8927167d79049375e8645e1f06e68a2bd2c7f09e4dd2a36c5f60119e398dd7c8
s390x python3.12-3.12.5-2.el9.s390x.rpm ce5ee3423dfbf1ddaeacb6da57e10f7aae8df1b885c70877735b81b13f334f27
s390x python3.12-idle-3.12.5-2.el9.s390x.rpm f1eb92f1931eab26535318cd7610485ad686a6b8f8fe6f99db3ebd9a8d67b72d
x86_64 python3.12-idle-3.12.5-2.el9.x86_64.rpm 09794481328d1f88f72624466c676345cd524a3b46efaa9bd700915bb062e55f
x86_64 python3.12-devel-3.12.5-2.el9.x86_64.rpm 4e80f9b2d1039fa2822cef3b59d8f8d83c9640365e92d3bc3bf22efa66561024
x86_64 python3.12-tkinter-3.12.5-2.el9.x86_64.rpm 65ce1c978dc7923ae18f2ecea46af38d21ac7b6f5ef318da13145fadea79ae39
x86_64 python3.12-test-3.12.5-2.el9.x86_64.rpm 6caf7b2ed10a2b8457a618400c34c108ad02ae2f8edc74a18a040b989779398c
x86_64 python3.12-debug-3.12.5-2.el9.x86_64.rpm 8ce66f18c22024e3a8fedb223b432b910769ff0aa66928c798424d7d24770683
x86_64 python3.12-libs-3.12.5-2.el9.x86_64.rpm bfbb25e4e7d98a8f0c0659973f3f630fbea04ca8f1538c7bdf06fd0f4196bc9b
x86_64 python3.12-3.12.5-2.el9.x86_64.rpm f21a1f161376701e379e741e0291633f2200bc1c5fd4c477eb47b71ed5e82fd4
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.