SUSE-SU-2026:1062-1: important: Security update for python310
SLE-SECURITY-UPDATES
null at suse.de
Thu Mar 26 16:31:39 UTC 2026
# Security update for python310
Announcement ID: SUSE-SU-2026:1062-1
Release Date: 2026-03-26T10:36:41Z
Rating: important
References:
* bsc#1252974
* bsc#1254400
* bsc#1254401
* bsc#1254997
* bsc#1257029
* bsc#1257031
* bsc#1257042
* bsc#1257181
* bsc#1259240
Cross-References:
* CVE-2025-11468
* CVE-2025-12084
* CVE-2025-13836
* CVE-2025-13837
* CVE-2025-6075
* CVE-2026-0672
* CVE-2026-0865
* CVE-2026-1299
* CVE-2026-2297
CVSS scores:
* CVE-2025-11468 ( SUSE ): 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2025-11468 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
* CVE-2025-11468 ( NVD ): 5.7
CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-12084 ( SUSE ): 6.3
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-12084 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
* CVE-2025-12084 ( NVD ): 6.3
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-12084 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2025-13836 ( SUSE ): 6.3
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-13836 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-13836 ( NVD ): 6.3
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-13836 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2025-13837 ( SUSE ): 2.1
CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-13837 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2025-13837 ( NVD ): 2.1
CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-13837 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2025-6075 ( SUSE ): 1.8
CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-6075 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L
* CVE-2025-6075 ( NVD ): 1.8
CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2025-6075 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2026-0672 ( SUSE ): 8.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-0672 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
* CVE-2026-0672 ( NVD ): 6.0
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-0865 ( SUSE ): 5.9
CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N
* CVE-2026-0865 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
* CVE-2026-0865 ( NVD ): 5.9
CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-1299 ( SUSE ): 8.3
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-1299 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
* CVE-2026-1299 ( NVD ): 6.0
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
* CVE-2026-2297 ( SUSE ): 5.7
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
* CVE-2026-2297 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
* CVE-2026-2297 ( NVD ): 5.7
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Affected Products:
* openSUSE Leap 15.4
* openSUSE Leap 15.6
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
An update that solves nine vulnerabilities can now be installed.
## Description:
This update for python310 fixes the following issues:
Update to Python 3.10.20:
* CVE-2025-6075: quadratic complexity in os.path.expandvars() (bsc#1252974).
* CVE-2025-11468: header injection with carefully crafted inputs
(bsc#1257029).
* CVE-2025-12084: quadratic complexity in xml.minidom node ID cache clearing
(bsc#1254997).
* CVE-2025-13836: potential memory denial of service in the http.client module
(bsc#1254400).
* CVE-2025-13837: potential memory denial of service in the plistlib module
(bsc#1254401).
* CVE-2026-0672: control characters in http.cookies.Morsel fields and values
(bsc#1257031).
* CVE-2026-0865: C0 control characters within wsgiref.headers.Headers fields,
values, and parameters (bsc#1257042).
* CVE-2026-1299: header injection when an email is serialized due to improper
newline quoting (bsc#1257181).
* CVE-2026-2297: validation bypass via incorrectly handled hook in FileLoader
(bsc#1259240).
Changelog:
* Update to 3.10.20:
* gh-144125: BytesGenerator will now refuse to serialize (write) headers that
are unsafely folded or delimited; see verify_generated_headers. (Contributed
by Bas Bloemsaat and Petr Viktorin in gh-121650) (bsc#1257181,
CVE-2026-1299).
* gh-143935: Fixed a bug in the folding of comments when flattening an email
message using a modern email policy. Comments consisting of a very long
sequence of non-foldable characters could trigger a forced line wrap that
omitted the required leading space on the continuation line, causing the
remainder of the comment to be interpreted as a new header field. This
enabled header injection with carefully crafted inputs (bsc#1257029
CVE-2025-11468).
* gh-143925: Reject control characters in data: URL media types.
* gh-143919: Reject control characters in http.cookies.Morsel fields and
values (bsc#1257031, CVE-2026-0672).
* gh-143916: Reject C0 control characters within wsgiref.headers.Headers
fields, values, and parameters (bsc#1257042, CVE-2026-0865).
* gh-142145: Remove quadratic behavior in xml.minidom node ID cache clearing.
In order to do this without breaking existing users, we also add the
ownerDocument attribute to xml.dom.minidom elements and attributes created
by directly instantiating the Element or Attr class. Note that this way of
creating nodes is not supported; creator functions like
xml.dom.Document.documentElement() should be used instead (bsc#1254997,
CVE-2025-12084).
* gh-137836: Add support of the "plaintext" element, RAWTEXT elements "xmp",
"iframe", "noembed" and "noframes", and optionally RAWTEXT element
"noscript" in html.parser.HTMLParser.
* gh-136063: email.message: ensure linear complexity for legacy HTTP
parameters parsing. Patch by Bénédikt Tran.
* gh-136065: Fix quadratic complexity in os.path.expandvars() (bsc#1252974,
CVE-2025-6075).
* gh-119451: Fix a potential memory denial of service in the http.client
module. When connecting to a malicious server, it could cause an arbitrary
amount of memory to be allocated. This could have led to symptoms including
a MemoryError, swapping, out of memory (OOM) killed processes or containers,
or even system crashes (CVE-2025-13836, bsc#1254400).
* gh-119452: Fix a potential memory denial of service in the http.server
module. When a malicious user is connected to the CGI server on Windows, it
could cause an arbitrary amount of memory to be allocated. This could have
led to symptoms including a MemoryError, swapping, out of memory (OOM)
killed processes or containers, or even system crashes.
* gh-119342: Fix a potential memory denial of service in the plistlib module.
When reading a Plist file received from untrusted source, it could cause an
arbitrary amount of memory to be allocated. This could have led to symptoms
including a MemoryError, swapping, out of memory (OOM) killed processes or
containers, or even system crashes (bsc#1254401, CVE-2025-13837).
* Library
* gh-144833: Fixed a use-after-free in ssl when SSL_new() returns NULL in
newPySSLSocket(). The error was reported via a dangling pointer after the
object had already been freed.
* gh-144363: Update bundled libexpat to 2.7.4
* gh-90949: Add SetAllocTrackerActivationThreshold() and
SetAllocTrackerMaximumAmplification() to xmlparser objects to prevent use of
disproportional amounts of dynamic memory from within an Expat parser. Patch
by Bénédikt Tran.
* Core and Builtins
* gh-120384: Fix an array out of bounds crash in list_ass_subscript, which
could be invoked via some specificly tailored input: including concurrent
modification of a list object, where one thread assigns a slice and another
clears it.
* gh-120298: Fix use-after free in list_richcompare_impl which can be invoked
via some specificly tailored evil input.
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-1062=1
* openSUSE Leap 15.4
zypper in -t patch SUSE-2026-1062=1
* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2026-1062=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-1062=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-1062=1
* SUSE Linux Enterprise Server 15 SP4 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-1062=1
## Package List:
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* python310-core-debugsource-3.10.20-150400.4.102.1
* python310-curses-debuginfo-3.10.20-150400.4.102.1
* python310-base-debuginfo-3.10.20-150400.4.102.1
* python310-3.10.20-150400.4.102.1
* python310-tools-3.10.20-150400.4.102.1
* python310-dbm-3.10.20-150400.4.102.1
* python310-idle-3.10.20-150400.4.102.1
* python310-debuginfo-3.10.20-150400.4.102.1
* python310-devel-3.10.20-150400.4.102.1
* python310-tk-debuginfo-3.10.20-150400.4.102.1
* python310-debugsource-3.10.20-150400.4.102.1
* python310-base-3.10.20-150400.4.102.1
* libpython3_10-1_0-3.10.20-150400.4.102.1
* python310-tk-3.10.20-150400.4.102.1
* python310-curses-3.10.20-150400.4.102.1
* python310-dbm-debuginfo-3.10.20-150400.4.102.1
* libpython3_10-1_0-debuginfo-3.10.20-150400.4.102.1
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* python310-devel-3.10.20-150400.4.102.1
* libpython3_10-1_0-3.10.20-150400.4.102.1
* python310-curses-3.10.20-150400.4.102.1
* python310-curses-debuginfo-3.10.20-150400.4.102.1
* python310-testsuite-3.10.20-150400.4.102.1
* python310-doc-devhelp-3.10.20-150400.4.102.1
* python310-3.10.20-150400.4.102.1
* libpython3_10-1_0-debuginfo-3.10.20-150400.4.102.1
* python310-core-debugsource-3.10.20-150400.4.102.1
* python310-base-debuginfo-3.10.20-150400.4.102.1
* python310-dbm-3.10.20-150400.4.102.1
* python310-idle-3.10.20-150400.4.102.1
* python310-debugsource-3.10.20-150400.4.102.1
* python310-base-3.10.20-150400.4.102.1
* python310-tk-3.10.20-150400.4.102.1
* python310-testsuite-debuginfo-3.10.20-150400.4.102.1
* python310-doc-3.10.20-150400.4.102.1
* python310-debuginfo-3.10.20-150400.4.102.1
* python310-tk-debuginfo-3.10.20-150400.4.102.1
* python310-tools-3.10.20-150400.4.102.1
* python310-dbm-debuginfo-3.10.20-150400.4.102.1
* openSUSE Leap 15.4 (x86_64)
* python310-base-32bit-debuginfo-3.10.20-150400.4.102.1
* python310-32bit-3.10.20-150400.4.102.1
* libpython3_10-1_0-32bit-debuginfo-3.10.20-150400.4.102.1
* libpython3_10-1_0-32bit-3.10.20-150400.4.102.1
* python310-32bit-debuginfo-3.10.20-150400.4.102.1
* python310-base-32bit-3.10.20-150400.4.102.1
* openSUSE Leap 15.4 (aarch64_ilp32)
* python310-base-64bit-debuginfo-3.10.20-150400.4.102.1
* python310-64bit-3.10.20-150400.4.102.1
* python310-base-64bit-3.10.20-150400.4.102.1
* libpython3_10-1_0-64bit-debuginfo-3.10.20-150400.4.102.1
* python310-64bit-debuginfo-3.10.20-150400.4.102.1
* libpython3_10-1_0-64bit-3.10.20-150400.4.102.1
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64)
* python310-devel-3.10.20-150400.4.102.1
* libpython3_10-1_0-3.10.20-150400.4.102.1
* python310-curses-3.10.20-150400.4.102.1
* python310-curses-debuginfo-3.10.20-150400.4.102.1
* python310-testsuite-3.10.20-150400.4.102.1
* python310-doc-devhelp-3.10.20-150400.4.102.1
* python310-3.10.20-150400.4.102.1
* libpython3_10-1_0-debuginfo-3.10.20-150400.4.102.1
* python310-core-debugsource-3.10.20-150400.4.102.1
* python310-base-debuginfo-3.10.20-150400.4.102.1
* python310-dbm-3.10.20-150400.4.102.1
* python310-idle-3.10.20-150400.4.102.1
* python310-debugsource-3.10.20-150400.4.102.1
* python310-base-3.10.20-150400.4.102.1
* python310-tk-3.10.20-150400.4.102.1
* python310-testsuite-debuginfo-3.10.20-150400.4.102.1
* python310-doc-3.10.20-150400.4.102.1
* python310-debuginfo-3.10.20-150400.4.102.1
* python310-tk-debuginfo-3.10.20-150400.4.102.1
* python310-tools-3.10.20-150400.4.102.1
* python310-dbm-debuginfo-3.10.20-150400.4.102.1
* openSUSE Leap 15.6 (x86_64)
* python310-base-32bit-debuginfo-3.10.20-150400.4.102.1
* python310-32bit-3.10.20-150400.4.102.1
* libpython3_10-1_0-32bit-debuginfo-3.10.20-150400.4.102.1
* libpython3_10-1_0-32bit-3.10.20-150400.4.102.1
* python310-32bit-debuginfo-3.10.20-150400.4.102.1
* python310-base-32bit-3.10.20-150400.4.102.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* python310-core-debugsource-3.10.20-150400.4.102.1
* python310-curses-debuginfo-3.10.20-150400.4.102.1
* python310-base-debuginfo-3.10.20-150400.4.102.1
* python310-3.10.20-150400.4.102.1
* python310-tools-3.10.20-150400.4.102.1
* python310-dbm-3.10.20-150400.4.102.1
* python310-idle-3.10.20-150400.4.102.1
* python310-debuginfo-3.10.20-150400.4.102.1
* python310-devel-3.10.20-150400.4.102.1
* python310-tk-debuginfo-3.10.20-150400.4.102.1
* python310-debugsource-3.10.20-150400.4.102.1
* python310-base-3.10.20-150400.4.102.1
* libpython3_10-1_0-3.10.20-150400.4.102.1
* python310-tk-3.10.20-150400.4.102.1
* python310-curses-3.10.20-150400.4.102.1
* python310-dbm-debuginfo-3.10.20-150400.4.102.1
* libpython3_10-1_0-debuginfo-3.10.20-150400.4.102.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* python310-core-debugsource-3.10.20-150400.4.102.1
* python310-curses-debuginfo-3.10.20-150400.4.102.1
* python310-base-debuginfo-3.10.20-150400.4.102.1
* python310-3.10.20-150400.4.102.1
* python310-tools-3.10.20-150400.4.102.1
* python310-dbm-3.10.20-150400.4.102.1
* python310-idle-3.10.20-150400.4.102.1
* python310-debuginfo-3.10.20-150400.4.102.1
* python310-devel-3.10.20-150400.4.102.1
* python310-tk-debuginfo-3.10.20-150400.4.102.1
* python310-debugsource-3.10.20-150400.4.102.1
* python310-base-3.10.20-150400.4.102.1
* libpython3_10-1_0-3.10.20-150400.4.102.1
* python310-tk-3.10.20-150400.4.102.1
* python310-curses-3.10.20-150400.4.102.1
* python310-dbm-debuginfo-3.10.20-150400.4.102.1
* libpython3_10-1_0-debuginfo-3.10.20-150400.4.102.1
* SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64)
* python310-core-debugsource-3.10.20-150400.4.102.1
* python310-curses-debuginfo-3.10.20-150400.4.102.1
* python310-base-debuginfo-3.10.20-150400.4.102.1
* python310-3.10.20-150400.4.102.1
* python310-tools-3.10.20-150400.4.102.1
* python310-dbm-3.10.20-150400.4.102.1
* python310-idle-3.10.20-150400.4.102.1
* python310-debuginfo-3.10.20-150400.4.102.1
* python310-devel-3.10.20-150400.4.102.1
* python310-tk-debuginfo-3.10.20-150400.4.102.1
* python310-debugsource-3.10.20-150400.4.102.1
* python310-base-3.10.20-150400.4.102.1
* libpython3_10-1_0-3.10.20-150400.4.102.1
* python310-tk-3.10.20-150400.4.102.1
* python310-curses-3.10.20-150400.4.102.1
* python310-dbm-debuginfo-3.10.20-150400.4.102.1
* libpython3_10-1_0-debuginfo-3.10.20-150400.4.102.1
## References:
* https://www.suse.com/security/cve/CVE-2025-11468.html
* https://www.suse.com/security/cve/CVE-2025-12084.html
* https://www.suse.com/security/cve/CVE-2025-13836.html
* https://www.suse.com/security/cve/CVE-2025-13837.html
* https://www.suse.com/security/cve/CVE-2025-6075.html
* https://www.suse.com/security/cve/CVE-2026-0672.html
* https://www.suse.com/security/cve/CVE-2026-0865.html
* https://www.suse.com/security/cve/CVE-2026-1299.html
* https://www.suse.com/security/cve/CVE-2026-2297.html
* https://bugzilla.suse.com/show_bug.cgi?id=1252974
* https://bugzilla.suse.com/show_bug.cgi?id=1254400
* https://bugzilla.suse.com/show_bug.cgi?id=1254401
* https://bugzilla.suse.com/show_bug.cgi?id=1254997
* https://bugzilla.suse.com/show_bug.cgi?id=1257029
* https://bugzilla.suse.com/show_bug.cgi?id=1257031
* https://bugzilla.suse.com/show_bug.cgi?id=1257042
* https://bugzilla.suse.com/show_bug.cgi?id=1257181
* https://bugzilla.suse.com/show_bug.cgi?id=1259240
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/sle-security-updates/attachments/20260326/fd22de37/attachment.htm>
More information about the sle-security-updates
mailing list