SUSE-CU-2024:3866-1: Security update of bci/python

[sle-container-updates at lists.suse.com]

SUSE Container Update Advisory: bci/python
-----------------------------------------------------------------
Container Advisory ID : SUSE-CU-2024:3866-1
Container Tags        : bci/python:3 , bci/python:3-48.3 , bci/python:3.11 , bci/python:3.11-48.3
Container Release     : 48.3
Severity              : important
Type                  : security
References            : 1225660 1226447 1226448 1227378 1227999 1228780 CVE-2023-27043
                        CVE-2024-0397 CVE-2024-4032 CVE-2024-6923 
-----------------------------------------------------------------

The container bci/python was updated. The following patches have been included in this update:

-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:2982-1
Released:    Tue Aug 20 11:08:55 2024
Summary:     Security update for python311
Type:        security
Severity:    important
References:  1225660,1226447,1226448,1227378,1227999,1228780,CVE-2023-27043,CVE-2024-0397,CVE-2024-4032,CVE-2024-6923
This update for python311 fixes the following issues:

Security issues fixed:

- CVE-2024-6923: Fixed email header injection due to unquoted newlines (bsc#1228780)
- CVE-2024-5642: Removed support for anything but OpenSSL 1.1.1 or newer (bsc#1227233)
- CVE-2024-4032: Fixed incorrect IPv4 and IPv6 private ranges (bsc#1226448)

Non-security issues fixed:

- Fixed executable bits for /usr/bin/idle* (bsc#1227378).
- Improve python reproducible builds (bsc#1227999)
- Make pip and modern tools install directly in /usr/local when used by the user (bsc#1225660)
- %{profileopt} variable is set according to the variable %{do_profiling} (bsc#1227999)


The following package changes have been done:

- libpython3_11-1_0-3.11.9-150600.3.3.1 updated
- python311-base-3.11.9-150600.3.3.1 updated
- python311-3.11.9-150600.3.3.1 updated
- python311-devel-3.11.9-150600.3.3.1 updated
- container:sles15-image-15.6.0-47.11.8 updated