Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-13836 (GCVE-0-2025-13836)
Vulnerability from cvelistv5 – Published: 2025-12-01 18:02 – Updated: 2026-03-03 14:41
VLAI
EPSS
Title
Excessive read buffering DoS in http.client
Summary
When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-400 - Uncontrolled Resource Consumption
Assigner
References
9 references
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Python Software Foundation | CPython |
Affected:
0 , < 3.10.20
(python)
Affected: 3.11.0 , < 3.11.15 (python) Affected: 3.12.0 , < 3.12.13 (python) Affected: 3.13.0 , < 3.13.11 (python) Affected: 3.14.0 , < 3.14.1 (python) Affected: 3.15.0a1 , < 3.15.0a3 (python) |
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-13836",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-12-01T18:32:37.506031Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-400",
"description": "CWE-400 Uncontrolled Resource Consumption",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-12-02T18:29:21.886Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"modules": [
"http.client"
],
"product": "CPython",
"repo": "https://github.com/python/cpython",
"vendor": "Python Software Foundation",
"versions": [
{
"lessThan": "3.10.20",
"status": "affected",
"version": "0",
"versionType": "python"
},
{
"lessThan": "3.11.15",
"status": "affected",
"version": "3.11.0",
"versionType": "python"
},
{
"lessThan": "3.12.13",
"status": "affected",
"version": "3.12.0",
"versionType": "python"
},
{
"lessThan": "3.13.11",
"status": "affected",
"version": "3.13.0",
"versionType": "python"
},
{
"lessThan": "3.14.1",
"status": "affected",
"version": "3.14.0",
"versionType": "python"
},
{
"lessThan": "3.15.0a3",
"status": "affected",
"version": "3.15.0a1",
"versionType": "python"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS."
}
],
"value": "When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS."
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "PRESENT",
"attackVector": "NETWORK",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"exploitMaturity": "NOT_DEFINED",
"privilegesRequired": "NONE",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "LOW",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L",
"version": "4.0",
"vulnAvailabilityImpact": "LOW",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "NONE",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-03-03T14:41:48.702Z",
"orgId": "28c92f92-d60d-412d-b760-e73465c3df22",
"shortName": "PSF"
},
"references": [
{
"tags": [
"issue-tracking"
],
"url": "https://github.com/python/cpython/issues/119451"
},
{
"tags": [
"patch"
],
"url": "https://github.com/python/cpython/pull/119454"
},
{
"tags": [
"patch"
],
"url": "https://github.com/python/cpython/commit/4ce27904b597c77d74dd93f2c912676021a99155"
},
{
"tags": [
"patch"
],
"url": "https://github.com/python/cpython/commit/5a4c4a033a4a54481be6870aa1896fad732555b5"
},
{
"tags": [
"vendor-advisory"
],
"url": "https://mail.python.org/archives/list/security-announce@python.org/thread/OQ6G7MKRQIS3OAREC3HNG3D2DPOU34XO/"
},
{
"tags": [
"patch"
],
"url": "https://github.com/python/cpython/commit/289f29b0fe38baf2d7cb5854f4bb573cc34a6a15"
},
{
"tags": [
"patch"
],
"url": "https://github.com/python/cpython/commit/14b1fdb0a94b96f86fc7b86671ea9582b8676628"
},
{
"tags": [
"patch"
],
"url": "https://github.com/python/cpython/commit/5dc101675fd22918facbbe0fecdc821502beaaf0"
},
{
"tags": [
"patch"
],
"url": "https://github.com/python/cpython/commit/afc40bdd3dd71f343fd9016f6d8eebbacbd6587c"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Excessive read buffering DoS in http.client",
"x_generator": {
"engine": "Vulnogram 0.5.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "28c92f92-d60d-412d-b760-e73465c3df22",
"assignerShortName": "PSF",
"cveId": "CVE-2025-13836",
"datePublished": "2025-12-01T18:02:38.483Z",
"dateReserved": "2025-12-01T17:54:40.759Z",
"dateUpdated": "2026-03-03T14:41:48.702Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2025-13836",
"date": "2026-06-27",
"epss": "0.01468",
"percentile": "0.70452"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2025-13836\",\"sourceIdentifier\":\"cna@python.org\",\"published\":\"2025-12-01T18:16:04.200\",\"lastModified\":\"2026-05-18T16:58:51.810\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.\"},{\"lang\":\"es\",\"value\":\"Al leer una respuesta HTTP de un servidor, si no se especifica una cantidad de lectura, el comportamiento predeterminado ser\u00e1 usar Content-Length. Esto permite a un servidor malicioso hacer que el cliente lea grandes cantidades de datos en la memoria, lo que podr\u00eda causar OOM u otro DoS.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"cna@python.org\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":6.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"attackRequirements\":\"PRESENT\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"vulnConfidentialityImpact\":\"NONE\",\"vulnIntegrityImpact\":\"NONE\",\"vulnAvailabilityImpact\":\"LOW\",\"subConfidentialityImpact\":\"NONE\",\"subIntegrityImpact\":\"NONE\",\"subAvailabilityImpact\":\"LOW\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}],\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-400\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:python:python:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.10.20\",\"matchCriteriaId\":\"1F853468-5391-4279-B369-E480A2B91D6C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:python:python:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.11.0\",\"versionEndExcluding\":\"3.11.15\",\"matchCriteriaId\":\"7B38F8DA-DD8F-4887-AC85-CE843E21AD74\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:python:python:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.12.0\",\"versionEndExcluding\":\"3.12.13\",\"matchCriteriaId\":\"963DB620-5766-4093-A80B-03F7975F712B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:python:python:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.13.0\",\"versionEndExcluding\":\"3.13.11\",\"matchCriteriaId\":\"7FE4D2F0-2F91-4444-87E4-F9231694D429\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:python:python:3.14.0:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"D9A884CF-F98D-490D-A3B6-74F0DBFC3BD3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:python:python:3.15.0:alpha1:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3327507-0B1D-4F28-A983-D07A2C8A7696\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:python:python:3.15.0:alpha2:*:*:*:*:*:*\",\"matchCriteriaId\":\"C8AF17F1-A27F-4C98-BA5A-B4319710E8D1\"}]}]}],\"references\":[{\"url\":\"https://github.com/python/cpython/commit/14b1fdb0a94b96f86fc7b86671ea9582b8676628\",\"source\":\"cna@python.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/python/cpython/commit/289f29b0fe38baf2d7cb5854f4bb573cc34a6a15\",\"source\":\"cna@python.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/python/cpython/commit/4ce27904b597c77d74dd93f2c912676021a99155\",\"source\":\"cna@python.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/python/cpython/commit/5a4c4a033a4a54481be6870aa1896fad732555b5\",\"source\":\"cna@python.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/python/cpython/commit/5dc101675fd22918facbbe0fecdc821502beaaf0\",\"source\":\"cna@python.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/python/cpython/commit/afc40bdd3dd71f343fd9016f6d8eebbacbd6587c\",\"source\":\"cna@python.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/python/cpython/issues/119451\",\"source\":\"cna@python.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/python/cpython/pull/119454\",\"source\":\"cna@python.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://mail.python.org/archives/list/security-announce@python.org/thread/OQ6G7MKRQIS3OAREC3HNG3D2DPOU34XO/\",\"source\":\"cna@python.org\",\"tags\":[\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-13836\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-12-01T18:32:37.506031Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-400\", \"description\": \"CWE-400 Uncontrolled Resource Consumption\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-12-01T18:32:42.784Z\"}}], \"cna\": {\"title\": \"Excessive read buffering DoS in http.client\", \"source\": {\"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"format\": \"CVSS\", \"cvssV4_0\": {\"Safety\": \"NOT_DEFINED\", \"version\": \"4.0\", \"Recovery\": \"NOT_DEFINED\", \"baseScore\": 6.3, \"Automatable\": \"NOT_DEFINED\", \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"valueDensity\": \"NOT_DEFINED\", \"vectorString\": \"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L\", \"exploitMaturity\": \"NOT_DEFINED\", \"providerUrgency\": \"NOT_DEFINED\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"attackRequirements\": \"PRESENT\", \"privilegesRequired\": \"NONE\", \"subIntegrityImpact\": \"NONE\", \"vulnIntegrityImpact\": \"NONE\", \"subAvailabilityImpact\": \"LOW\", \"vulnAvailabilityImpact\": \"LOW\", \"subConfidentialityImpact\": \"NONE\", \"vulnConfidentialityImpact\": \"NONE\", \"vulnerabilityResponseEffort\": \"NOT_DEFINED\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"repo\": \"https://github.com/python/cpython\", \"vendor\": \"Python Software Foundation\", \"modules\": [\"http.client\"], \"product\": \"CPython\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"3.10.20\", \"versionType\": \"python\"}, {\"status\": \"affected\", \"version\": \"3.11.0\", \"lessThan\": \"3.11.15\", \"versionType\": \"python\"}, {\"status\": \"affected\", \"version\": \"3.12.0\", \"lessThan\": \"3.12.13\", \"versionType\": \"python\"}, {\"status\": \"affected\", \"version\": \"3.13.0\", \"lessThan\": \"3.13.11\", \"versionType\": \"python\"}, {\"status\": \"affected\", \"version\": \"3.14.0\", \"lessThan\": \"3.14.1\", \"versionType\": \"python\"}, {\"status\": \"affected\", \"version\": \"3.15.0a1\", \"lessThan\": \"3.15.0a3\", \"versionType\": \"python\"}], \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://github.com/python/cpython/issues/119451\", \"tags\": [\"issue-tracking\"]}, {\"url\": \"https://github.com/python/cpython/pull/119454\", \"tags\": [\"patch\"]}, {\"url\": \"https://github.com/python/cpython/commit/4ce27904b597c77d74dd93f2c912676021a99155\", \"tags\": [\"patch\"]}, {\"url\": \"https://github.com/python/cpython/commit/5a4c4a033a4a54481be6870aa1896fad732555b5\", \"tags\": [\"patch\"]}, {\"url\": \"https://mail.python.org/archives/list/security-announce@python.org/thread/OQ6G7MKRQIS3OAREC3HNG3D2DPOU34XO/\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://github.com/python/cpython/commit/289f29b0fe38baf2d7cb5854f4bb573cc34a6a15\", \"tags\": [\"patch\"]}, {\"url\": \"https://github.com/python/cpython/commit/14b1fdb0a94b96f86fc7b86671ea9582b8676628\", \"tags\": [\"patch\"]}, {\"url\": \"https://github.com/python/cpython/commit/5dc101675fd22918facbbe0fecdc821502beaaf0\", \"tags\": [\"patch\"]}, {\"url\": \"https://github.com/python/cpython/commit/afc40bdd3dd71f343fd9016f6d8eebbacbd6587c\", \"tags\": [\"patch\"]}], \"x_generator\": {\"engine\": \"Vulnogram 0.5.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.\", \"base64\": false}]}], \"providerMetadata\": {\"orgId\": \"28c92f92-d60d-412d-b760-e73465c3df22\", \"shortName\": \"PSF\", \"dateUpdated\": \"2026-03-03T14:41:48.702Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-13836\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-03-03T14:41:48.702Z\", \"dateReserved\": \"2025-12-01T17:54:40.759Z\", \"assignerOrgId\": \"28c92f92-d60d-412d-b760-e73465c3df22\", \"datePublished\": \"2025-12-01T18:02:38.483Z\", \"assignerShortName\": \"PSF\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
FKIE_CVE-2025-13836
Vulnerability from fkie_nvd - Published: 2025-12-01 18:16 - Updated: 2026-06-17 08:34
Severity
Summary
When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.
References
{
"affected": [
{
"affectedData": [
{
"defaultStatus": "unaffected",
"modules": [
"http.client"
],
"product": "CPython",
"repo": "https://github.com/python/cpython",
"vendor": "Python Software Foundation",
"versions": [
{
"lessThan": "3.10.20",
"status": "affected",
"version": "0",
"versionType": "python"
},
{
"lessThan": "3.11.15",
"status": "affected",
"version": "3.11.0",
"versionType": "python"
},
{
"lessThan": "3.12.13",
"status": "affected",
"version": "3.12.0",
"versionType": "python"
},
{
"lessThan": "3.13.11",
"status": "affected",
"version": "3.13.0",
"versionType": "python"
},
{
"lessThan": "3.14.1",
"status": "affected",
"version": "3.14.0",
"versionType": "python"
},
{
"lessThan": "3.15.0a3",
"status": "affected",
"version": "3.15.0a1",
"versionType": "python"
}
]
}
],
"source": "cna@python.org"
}
],
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*",
"matchCriteriaId": "1F853468-5391-4279-B369-E480A2B91D6C",
"versionEndExcluding": "3.10.20",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*",
"matchCriteriaId": "7B38F8DA-DD8F-4887-AC85-CE843E21AD74",
"versionEndExcluding": "3.11.15",
"versionStartIncluding": "3.11.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*",
"matchCriteriaId": "963DB620-5766-4093-A80B-03F7975F712B",
"versionEndExcluding": "3.12.13",
"versionStartIncluding": "3.12.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:python:python:*:*:*:*:*:*:*:*",
"matchCriteriaId": "7FE4D2F0-2F91-4444-87E4-F9231694D429",
"versionEndExcluding": "3.13.11",
"versionStartIncluding": "3.13.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:python:python:3.14.0:-:*:*:*:*:*:*",
"matchCriteriaId": "D9A884CF-F98D-490D-A3B6-74F0DBFC3BD3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:python:python:3.15.0:alpha1:*:*:*:*:*:*",
"matchCriteriaId": "A3327507-0B1D-4F28-A983-D07A2C8A7696",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:python:python:3.15.0:alpha2:*:*:*:*:*:*",
"matchCriteriaId": "C8AF17F1-A27F-4C98-BA5A-B4319710E8D1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS."
},
{
"lang": "es",
"value": "Al leer una respuesta HTTP de un servidor, si no se especifica una cantidad de lectura, el comportamiento predeterminado ser\u00e1 usar Content-Length. Esto permite a un servidor malicioso hacer que el cliente lea grandes cantidades de datos en la memoria, lo que podr\u00eda causar OOM u otro DoS."
}
],
"id": "CVE-2025-13836",
"lastModified": "2026-06-17T08:34:50.760",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
],
"cvssMetricV40": [
{
"cvssData": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "PRESENT",
"attackVector": "NETWORK",
"availabilityRequirement": "NOT_DEFINED",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityRequirement": "NOT_DEFINED",
"exploitMaturity": "NOT_DEFINED",
"integrityRequirement": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedSubAvailabilityImpact": "NOT_DEFINED",
"modifiedSubConfidentialityImpact": "NOT_DEFINED",
"modifiedSubIntegrityImpact": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnAvailabilityImpact": "NOT_DEFINED",
"modifiedVulnConfidentialityImpact": "NOT_DEFINED",
"modifiedVulnIntegrityImpact": "NOT_DEFINED",
"privilegesRequired": "NONE",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "LOW",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"version": "4.0",
"vulnAvailabilityImpact": "LOW",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "NONE",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"source": "cna@python.org",
"type": "Secondary"
}
],
"ssvcV203": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"ssvcData": {
"id": "CVE-2025-13836",
"options": [
{
"exploitation": "none"
},
{
"automatable": "no"
},
{
"technicalImpact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-12-01T18:32:37.506031Z",
"version": "2.0.3"
}
}
]
},
"published": "2025-12-01T18:16:04.200",
"references": [
{
"source": "cna@python.org",
"tags": [
"Patch"
],
"url": "https://github.com/python/cpython/commit/14b1fdb0a94b96f86fc7b86671ea9582b8676628"
},
{
"source": "cna@python.org",
"tags": [
"Patch"
],
"url": "https://github.com/python/cpython/commit/289f29b0fe38baf2d7cb5854f4bb573cc34a6a15"
},
{
"source": "cna@python.org",
"tags": [
"Patch"
],
"url": "https://github.com/python/cpython/commit/4ce27904b597c77d74dd93f2c912676021a99155"
},
{
"source": "cna@python.org",
"tags": [
"Patch"
],
"url": "https://github.com/python/cpython/commit/5a4c4a033a4a54481be6870aa1896fad732555b5"
},
{
"source": "cna@python.org",
"tags": [
"Patch"
],
"url": "https://github.com/python/cpython/commit/5dc101675fd22918facbbe0fecdc821502beaaf0"
},
{
"source": "cna@python.org",
"tags": [
"Patch"
],
"url": "https://github.com/python/cpython/commit/afc40bdd3dd71f343fd9016f6d8eebbacbd6587c"
},
{
"source": "cna@python.org",
"tags": [
"Issue Tracking",
"Patch"
],
"url": "https://github.com/python/cpython/issues/119451"
},
{
"source": "cna@python.org",
"tags": [
"Issue Tracking",
"Patch"
],
"url": "https://github.com/python/cpython/pull/119454"
},
{
"source": "cna@python.org",
"tags": [
"Vendor Advisory"
],
"url": "https://mail.python.org/archives/list/security-announce@python.org/thread/OQ6G7MKRQIS3OAREC3HNG3D2DPOU34XO/"
}
],
"sourceIdentifier": "cna@python.org",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-400"
}
],
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
}
GHSA-399H-RRQC-RPGV
Vulnerability from github – Published: 2025-12-01 18:30 – Updated: 2026-01-26 15:30
VLAI
Details
When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.
Severity
9.1 (Critical)
{
"affected": [],
"aliases": [
"CVE-2025-13836"
],
"database_specific": {
"cwe_ids": [
"CWE-125",
"CWE-400"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2025-12-01T18:16:04Z",
"severity": "MODERATE"
},
"details": "When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.",
"id": "GHSA-399h-rrqc-rpgv",
"modified": "2026-01-26T15:30:30Z",
"published": "2025-12-01T18:30:38Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13836"
},
{
"type": "WEB",
"url": "https://github.com/python/cpython/issues/119451"
},
{
"type": "WEB",
"url": "https://github.com/python/cpython/pull/119454"
},
{
"type": "WEB",
"url": "https://github.com/python/cpython/commit/14b1fdb0a94b96f86fc7b86671ea9582b8676628"
},
{
"type": "WEB",
"url": "https://github.com/python/cpython/commit/289f29b0fe38baf2d7cb5854f4bb573cc34a6a15"
},
{
"type": "WEB",
"url": "https://github.com/python/cpython/commit/4ce27904b597c77d74dd93f2c912676021a99155"
},
{
"type": "WEB",
"url": "https://github.com/python/cpython/commit/5a4c4a033a4a54481be6870aa1896fad732555b5"
},
{
"type": "WEB",
"url": "https://github.com/python/cpython/commit/5dc101675fd22918facbbe0fecdc821502beaaf0"
},
{
"type": "WEB",
"url": "https://github.com/python/cpython/commit/afc40bdd3dd71f343fd9016f6d8eebbacbd6587c"
},
{
"type": "WEB",
"url": "https://mail.python.org/archives/list/security-announce@python.org/thread/OQ6G7MKRQIS3OAREC3HNG3D2DPOU34XO"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"type": "CVSS_V4"
}
]
}
MSRC_CVE-2025-13836
Vulnerability from csaf_microsoft - Published: 2025-12-02 00:00 - Updated: 2026-01-08 14:41Summary
Excessive read buffering DoS in http.client
Notes
Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
CWE-400
- Uncontrolled Resource Consumption
Affected products
Fixed
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 20708-17084 | — | ||
| Unresolved product id: 20790-17084 | — |
Known affected
5 products
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 17084-6 | — |
References
4 references
| URL | Category |
|---|---|
| https://msrc.microsoft.com/csaf/vex/2025/msrc_cve… | self |
| https://support.microsoft.com/lifecycle | external |
| https://www.first.org/cvss | external |
| https://msrc.microsoft.com/csaf/vex/2025/msrc_cve… | self |
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2025-13836 Excessive read buffering DoS in http.client - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2025/msrc_cve-2025-13836.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "Excessive read buffering DoS in http.client",
"tracking": {
"current_release_date": "2026-01-08T14:41:06.000Z",
"generator": {
"date": "2026-02-18T14:12:24.802Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2025-13836",
"initial_release_date": "2025-12-02T00:00:00.000Z",
"revision_history": [
{
"date": "2025-12-05T01:03:07.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
},
{
"date": "2025-12-06T14:40:57.000Z",
"legacy_version": "2",
"number": "2",
"summary": "Information published."
},
{
"date": "2025-12-07T01:40:46.000Z",
"legacy_version": "3",
"number": "3",
"summary": "Information published."
},
{
"date": "2025-12-09T01:38:18.000Z",
"legacy_version": "4",
"number": "4",
"summary": "Information published."
},
{
"date": "2025-12-31T01:36:27.000Z",
"legacy_version": "5",
"number": "5",
"summary": "Information published."
},
{
"date": "2026-01-08T14:41:06.000Z",
"legacy_version": "6",
"number": "6",
"summary": "Information published."
}
],
"status": "final",
"version": "6"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "2.0",
"product": {
"name": "CBL Mariner 2.0",
"product_id": "17086"
}
},
{
"category": "product_version",
"name": "3.0",
"product": {
"name": "Azure Linux 3.0",
"product_id": "17084"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "cbl2 python3 3.9.19-16",
"product": {
"name": "cbl2 python3 3.9.19-16",
"product_id": "4"
}
},
{
"category": "product_version_range",
"name": "cbl2 python3 3.9.19-17",
"product": {
"name": "cbl2 python3 3.9.19-17",
"product_id": "3"
}
},
{
"category": "product_version_range",
"name": "\u003cazl3 python3 3.12.9-6",
"product": {
"name": "\u003cazl3 python3 3.12.9-6",
"product_id": "2"
}
},
{
"category": "product_version",
"name": "azl3 python3 3.12.9-6",
"product": {
"name": "azl3 python3 3.12.9-6",
"product_id": "20708"
}
},
{
"category": "product_version_range",
"name": "\u003cazl3 python3 3.12.9-7",
"product": {
"name": "\u003cazl3 python3 3.12.9-7",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "azl3 python3 3.12.9-7",
"product": {
"name": "azl3 python3 3.12.9-7",
"product_id": "20790"
}
},
{
"category": "product_version_range",
"name": "azl3 python3 3.12.9-5",
"product": {
"name": "azl3 python3 3.12.9-5",
"product_id": "5"
}
}
],
"category": "product_name",
"name": "python3"
},
{
"category": "product_name",
"name": "azl3 tensorflow 2.16.1-9",
"product": {
"name": "azl3 tensorflow 2.16.1-9",
"product_id": "6"
}
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cbl2 python3 3.9.19-16 as a component of CBL Mariner 2.0",
"product_id": "17086-4"
},
"product_reference": "4",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cbl2 python3 3.9.19-17 as a component of CBL Mariner 2.0",
"product_id": "17086-3"
},
"product_reference": "3",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 python3 3.12.9-6 as a component of Azure Linux 3.0",
"product_id": "17084-2"
},
"product_reference": "2",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 python3 3.12.9-6 as a component of Azure Linux 3.0",
"product_id": "20708-17084"
},
"product_reference": "20708",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 python3 3.12.9-7 as a component of Azure Linux 3.0",
"product_id": "17084-1"
},
"product_reference": "1",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 python3 3.12.9-7 as a component of Azure Linux 3.0",
"product_id": "20790-17084"
},
"product_reference": "20790",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 python3 3.12.9-5 as a component of Azure Linux 3.0",
"product_id": "17084-5"
},
"product_reference": "5",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 tensorflow 2.16.1-9 as a component of Azure Linux 3.0",
"product_id": "17084-6"
},
"product_reference": "6",
"relates_to_product_reference": "17084"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-13836",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"flags": [
{
"label": "component_not_present",
"product_ids": [
"17084-6"
]
}
],
"notes": [
{
"category": "general",
"text": "PSF",
"title": "Assigning CNA"
}
],
"product_status": {
"fixed": [
"20708-17084",
"20790-17084"
],
"known_affected": [
"17086-4",
"17086-3",
"17084-2",
"17084-1",
"17084-5"
],
"known_not_affected": [
"17084-6"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-13836 Excessive read buffering DoS in http.client - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2025/msrc_cve-2025-13836.json"
}
],
"remediations": [
{
"category": "none_available",
"date": "2025-12-05T01:03:07.000Z",
"details": "There is no fix available for this vulnerability as of now",
"product_ids": [
"17086-4"
]
},
{
"category": "none_available",
"date": "2025-12-05T01:03:07.000Z",
"details": "There is no fix available for this vulnerability as of now",
"product_ids": [
"17086-3"
]
},
{
"category": "none_available",
"date": "2025-12-05T01:03:07.000Z",
"details": "There is no fix available for this vulnerability as of now",
"product_ids": [
"17084-5"
]
},
{
"category": "vendor_fix",
"date": "2025-12-05T01:03:07.000Z",
"details": "3.12.9-7:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17084-2",
"17084-1"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
}
],
"title": "Excessive read buffering DoS in http.client"
}
]
}
OPENSUSE-SU-2025:15839-1
Vulnerability from csaf_opensuse - Published: 2025-12-22 00:00 - Updated: 2025-12-22 00:00Summary
python310-3.10.19-3.1 on GA media
Severity
Moderate
Notes
Title of the patch: python310-3.10.19-3.1 on GA media
Description of the patch: These are all security issues fixed in the python310-3.10.19-3.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2025-15839
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Affected products
Recommended
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python310-3.10.19-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-3.10.19-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-3.10.19-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-3.10.19-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-curses-3.10.19-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-curses-3.10.19-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-curses-3.10.19-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-curses-3.10.19-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-idle-3.10.19-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-idle-3.10.19-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-idle-3.10.19-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-idle-3.10.19-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-tk-3.10.19-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-tk-3.10.19-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-tk-3.10.19-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-tk-3.10.19-3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python310-3.10.19-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-3.10.19-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-3.10.19-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-3.10.19-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-curses-3.10.19-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-curses-3.10.19-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-curses-3.10.19-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-curses-3.10.19-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-idle-3.10.19-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-idle-3.10.19-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-idle-3.10.19-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-idle-3.10.19-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-tk-3.10.19-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-tk-3.10.19-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-tk-3.10.19-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-tk-3.10.19-3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4 (Medium)
Affected products
Recommended
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python310-3.10.19-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-3.10.19-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-3.10.19-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-3.10.19-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-curses-3.10.19-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-curses-3.10.19-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-curses-3.10.19-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-curses-3.10.19-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-idle-3.10.19-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-idle-3.10.19-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-idle-3.10.19-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-idle-3.10.19-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-tk-3.10.19-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-tk-3.10.19-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-tk-3.10.19-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python310-tk-3.10.19-3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
11 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "python310-3.10.19-3.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the python310-3.10.19-3.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2025-15839",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_15839-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-12084 page",
"url": "https://www.suse.com/security/cve/CVE-2025-12084/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-13836 page",
"url": "https://www.suse.com/security/cve/CVE-2025-13836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-13837 page",
"url": "https://www.suse.com/security/cve/CVE-2025-13837/"
}
],
"title": "python310-3.10.19-3.1 on GA media",
"tracking": {
"current_release_date": "2025-12-22T00:00:00Z",
"generator": {
"date": "2025-12-22T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2025:15839-1",
"initial_release_date": "2025-12-22T00:00:00Z",
"revision_history": [
{
"date": "2025-12-22T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "python310-3.10.19-3.1.aarch64",
"product": {
"name": "python310-3.10.19-3.1.aarch64",
"product_id": "python310-3.10.19-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "python310-32bit-3.10.19-3.1.aarch64",
"product": {
"name": "python310-32bit-3.10.19-3.1.aarch64",
"product_id": "python310-32bit-3.10.19-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "python310-curses-3.10.19-3.1.aarch64",
"product": {
"name": "python310-curses-3.10.19-3.1.aarch64",
"product_id": "python310-curses-3.10.19-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "python310-dbm-3.10.19-3.1.aarch64",
"product": {
"name": "python310-dbm-3.10.19-3.1.aarch64",
"product_id": "python310-dbm-3.10.19-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "python310-idle-3.10.19-3.1.aarch64",
"product": {
"name": "python310-idle-3.10.19-3.1.aarch64",
"product_id": "python310-idle-3.10.19-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "python310-tk-3.10.19-3.1.aarch64",
"product": {
"name": "python310-tk-3.10.19-3.1.aarch64",
"product_id": "python310-tk-3.10.19-3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "python310-3.10.19-3.1.ppc64le",
"product": {
"name": "python310-3.10.19-3.1.ppc64le",
"product_id": "python310-3.10.19-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python310-32bit-3.10.19-3.1.ppc64le",
"product": {
"name": "python310-32bit-3.10.19-3.1.ppc64le",
"product_id": "python310-32bit-3.10.19-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python310-curses-3.10.19-3.1.ppc64le",
"product": {
"name": "python310-curses-3.10.19-3.1.ppc64le",
"product_id": "python310-curses-3.10.19-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python310-dbm-3.10.19-3.1.ppc64le",
"product": {
"name": "python310-dbm-3.10.19-3.1.ppc64le",
"product_id": "python310-dbm-3.10.19-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python310-idle-3.10.19-3.1.ppc64le",
"product": {
"name": "python310-idle-3.10.19-3.1.ppc64le",
"product_id": "python310-idle-3.10.19-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python310-tk-3.10.19-3.1.ppc64le",
"product": {
"name": "python310-tk-3.10.19-3.1.ppc64le",
"product_id": "python310-tk-3.10.19-3.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "python310-3.10.19-3.1.s390x",
"product": {
"name": "python310-3.10.19-3.1.s390x",
"product_id": "python310-3.10.19-3.1.s390x"
}
},
{
"category": "product_version",
"name": "python310-32bit-3.10.19-3.1.s390x",
"product": {
"name": "python310-32bit-3.10.19-3.1.s390x",
"product_id": "python310-32bit-3.10.19-3.1.s390x"
}
},
{
"category": "product_version",
"name": "python310-curses-3.10.19-3.1.s390x",
"product": {
"name": "python310-curses-3.10.19-3.1.s390x",
"product_id": "python310-curses-3.10.19-3.1.s390x"
}
},
{
"category": "product_version",
"name": "python310-dbm-3.10.19-3.1.s390x",
"product": {
"name": "python310-dbm-3.10.19-3.1.s390x",
"product_id": "python310-dbm-3.10.19-3.1.s390x"
}
},
{
"category": "product_version",
"name": "python310-idle-3.10.19-3.1.s390x",
"product": {
"name": "python310-idle-3.10.19-3.1.s390x",
"product_id": "python310-idle-3.10.19-3.1.s390x"
}
},
{
"category": "product_version",
"name": "python310-tk-3.10.19-3.1.s390x",
"product": {
"name": "python310-tk-3.10.19-3.1.s390x",
"product_id": "python310-tk-3.10.19-3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "python310-3.10.19-3.1.x86_64",
"product": {
"name": "python310-3.10.19-3.1.x86_64",
"product_id": "python310-3.10.19-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "python310-32bit-3.10.19-3.1.x86_64",
"product": {
"name": "python310-32bit-3.10.19-3.1.x86_64",
"product_id": "python310-32bit-3.10.19-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "python310-curses-3.10.19-3.1.x86_64",
"product": {
"name": "python310-curses-3.10.19-3.1.x86_64",
"product_id": "python310-curses-3.10.19-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "python310-dbm-3.10.19-3.1.x86_64",
"product": {
"name": "python310-dbm-3.10.19-3.1.x86_64",
"product_id": "python310-dbm-3.10.19-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "python310-idle-3.10.19-3.1.x86_64",
"product": {
"name": "python310-idle-3.10.19-3.1.x86_64",
"product_id": "python310-idle-3.10.19-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "python310-tk-3.10.19-3.1.x86_64",
"product": {
"name": "python310-tk-3.10.19-3.1.x86_64",
"product_id": "python310-tk-3.10.19-3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-3.10.19-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-3.10.19-3.1.aarch64"
},
"product_reference": "python310-3.10.19-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-3.10.19-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-3.10.19-3.1.ppc64le"
},
"product_reference": "python310-3.10.19-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-3.10.19-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-3.10.19-3.1.s390x"
},
"product_reference": "python310-3.10.19-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-3.10.19-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-3.10.19-3.1.x86_64"
},
"product_reference": "python310-3.10.19-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-32bit-3.10.19-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.aarch64"
},
"product_reference": "python310-32bit-3.10.19-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-32bit-3.10.19-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.ppc64le"
},
"product_reference": "python310-32bit-3.10.19-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-32bit-3.10.19-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.s390x"
},
"product_reference": "python310-32bit-3.10.19-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-32bit-3.10.19-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.x86_64"
},
"product_reference": "python310-32bit-3.10.19-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-curses-3.10.19-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-curses-3.10.19-3.1.aarch64"
},
"product_reference": "python310-curses-3.10.19-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-curses-3.10.19-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-curses-3.10.19-3.1.ppc64le"
},
"product_reference": "python310-curses-3.10.19-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-curses-3.10.19-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-curses-3.10.19-3.1.s390x"
},
"product_reference": "python310-curses-3.10.19-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-curses-3.10.19-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-curses-3.10.19-3.1.x86_64"
},
"product_reference": "python310-curses-3.10.19-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-dbm-3.10.19-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.aarch64"
},
"product_reference": "python310-dbm-3.10.19-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-dbm-3.10.19-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.ppc64le"
},
"product_reference": "python310-dbm-3.10.19-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-dbm-3.10.19-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.s390x"
},
"product_reference": "python310-dbm-3.10.19-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-dbm-3.10.19-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.x86_64"
},
"product_reference": "python310-dbm-3.10.19-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-idle-3.10.19-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-idle-3.10.19-3.1.aarch64"
},
"product_reference": "python310-idle-3.10.19-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-idle-3.10.19-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-idle-3.10.19-3.1.ppc64le"
},
"product_reference": "python310-idle-3.10.19-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-idle-3.10.19-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-idle-3.10.19-3.1.s390x"
},
"product_reference": "python310-idle-3.10.19-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-idle-3.10.19-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-idle-3.10.19-3.1.x86_64"
},
"product_reference": "python310-idle-3.10.19-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-tk-3.10.19-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-tk-3.10.19-3.1.aarch64"
},
"product_reference": "python310-tk-3.10.19-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-tk-3.10.19-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-tk-3.10.19-3.1.ppc64le"
},
"product_reference": "python310-tk-3.10.19-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-tk-3.10.19-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-tk-3.10.19-3.1.s390x"
},
"product_reference": "python310-tk-3.10.19-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python310-tk-3.10.19-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python310-tk-3.10.19-3.1.x86_64"
},
"product_reference": "python310-tk-3.10.19-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-12084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-12084"
}
],
"notes": [
{
"category": "general",
"text": "When building nested elements using xml.dom.minidom methods such as appendChild() that have a dependency on _clear_id_cache() the algorithm is quadratic. Availability can be impacted when building excessively nested documents.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python310-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-12084",
"url": "https://www.suse.com/security/cve/CVE-2025-12084"
},
{
"category": "external",
"summary": "SUSE Bug 1254997 for CVE-2025-12084",
"url": "https://bugzilla.suse.com/1254997"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python310-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python310-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-22T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-12084"
},
{
"cve": "CVE-2025-13836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-13836"
}
],
"notes": [
{
"category": "general",
"text": "When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python310-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-13836",
"url": "https://www.suse.com/security/cve/CVE-2025-13836"
},
{
"category": "external",
"summary": "SUSE Bug 1254400 for CVE-2025-13836",
"url": "https://bugzilla.suse.com/1254400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python310-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python310-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-22T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-13836"
},
{
"cve": "CVE-2025-13837",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-13837"
}
],
"notes": [
{
"category": "general",
"text": "When loading a plist file, the plistlib module reads data in size specified by the file itself, meaning a malicious file can cause OOM and DoS issues",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python310-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-13837",
"url": "https://www.suse.com/security/cve/CVE-2025-13837"
},
{
"category": "external",
"summary": "SUSE Bug 1254401 for CVE-2025-13837",
"url": "https://bugzilla.suse.com/1254401"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python310-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python310-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-32bit-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-curses-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-dbm-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-idle-3.10.19-3.1.x86_64",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.aarch64",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.ppc64le",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.s390x",
"openSUSE Tumbleweed:python310-tk-3.10.19-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-22T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-13837"
}
]
}
OPENSUSE-SU-2025:15840-1
Vulnerability from csaf_opensuse - Published: 2025-12-22 00:00 - Updated: 2025-12-22 00:00Summary
python315-3.15.0~a3-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: python315-3.15.0~a3-1.1 on GA media
Description of the patch: These are all security issues fixed in the python315-3.15.0~a3-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2025-15840
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Affected products
Recommended
28 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python315-3.15.0~a3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-3.15.0~a3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-3.15.0~a3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-3.15.0~a3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
28 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python315-3.15.0~a3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-3.15.0~a3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-3.15.0~a3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-3.15.0~a3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4 (Medium)
Affected products
Recommended
28 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python315-3.15.0~a3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-3.15.0~a3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-3.15.0~a3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-3.15.0~a3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
11 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "python315-3.15.0~a3-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the python315-3.15.0~a3-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2025-15840",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_15840-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-12084 page",
"url": "https://www.suse.com/security/cve/CVE-2025-12084/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-13836 page",
"url": "https://www.suse.com/security/cve/CVE-2025-13836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-13837 page",
"url": "https://www.suse.com/security/cve/CVE-2025-13837/"
}
],
"title": "python315-3.15.0~a3-1.1 on GA media",
"tracking": {
"current_release_date": "2025-12-22T00:00:00Z",
"generator": {
"date": "2025-12-22T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2025:15840-1",
"initial_release_date": "2025-12-22T00:00:00Z",
"revision_history": [
{
"date": "2025-12-22T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "python315-3.15.0~a3-1.1.aarch64",
"product": {
"name": "python315-3.15.0~a3-1.1.aarch64",
"product_id": "python315-3.15.0~a3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "python315-curses-3.15.0~a3-1.1.aarch64",
"product": {
"name": "python315-curses-3.15.0~a3-1.1.aarch64",
"product_id": "python315-curses-3.15.0~a3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "python315-dbm-3.15.0~a3-1.1.aarch64",
"product": {
"name": "python315-dbm-3.15.0~a3-1.1.aarch64",
"product_id": "python315-dbm-3.15.0~a3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "python315-idle-3.15.0~a3-1.1.aarch64",
"product": {
"name": "python315-idle-3.15.0~a3-1.1.aarch64",
"product_id": "python315-idle-3.15.0~a3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "python315-profiling-3.15.0~a3-1.1.aarch64",
"product": {
"name": "python315-profiling-3.15.0~a3-1.1.aarch64",
"product_id": "python315-profiling-3.15.0~a3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "python315-tk-3.15.0~a3-1.1.aarch64",
"product": {
"name": "python315-tk-3.15.0~a3-1.1.aarch64",
"product_id": "python315-tk-3.15.0~a3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "python315-x86-64-v3-3.15.0~a3-1.1.aarch64",
"product": {
"name": "python315-x86-64-v3-3.15.0~a3-1.1.aarch64",
"product_id": "python315-x86-64-v3-3.15.0~a3-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "python315-3.15.0~a3-1.1.ppc64le",
"product": {
"name": "python315-3.15.0~a3-1.1.ppc64le",
"product_id": "python315-3.15.0~a3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python315-curses-3.15.0~a3-1.1.ppc64le",
"product": {
"name": "python315-curses-3.15.0~a3-1.1.ppc64le",
"product_id": "python315-curses-3.15.0~a3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python315-dbm-3.15.0~a3-1.1.ppc64le",
"product": {
"name": "python315-dbm-3.15.0~a3-1.1.ppc64le",
"product_id": "python315-dbm-3.15.0~a3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python315-idle-3.15.0~a3-1.1.ppc64le",
"product": {
"name": "python315-idle-3.15.0~a3-1.1.ppc64le",
"product_id": "python315-idle-3.15.0~a3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python315-profiling-3.15.0~a3-1.1.ppc64le",
"product": {
"name": "python315-profiling-3.15.0~a3-1.1.ppc64le",
"product_id": "python315-profiling-3.15.0~a3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python315-tk-3.15.0~a3-1.1.ppc64le",
"product": {
"name": "python315-tk-3.15.0~a3-1.1.ppc64le",
"product_id": "python315-tk-3.15.0~a3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python315-x86-64-v3-3.15.0~a3-1.1.ppc64le",
"product": {
"name": "python315-x86-64-v3-3.15.0~a3-1.1.ppc64le",
"product_id": "python315-x86-64-v3-3.15.0~a3-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "python315-3.15.0~a3-1.1.s390x",
"product": {
"name": "python315-3.15.0~a3-1.1.s390x",
"product_id": "python315-3.15.0~a3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "python315-curses-3.15.0~a3-1.1.s390x",
"product": {
"name": "python315-curses-3.15.0~a3-1.1.s390x",
"product_id": "python315-curses-3.15.0~a3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "python315-dbm-3.15.0~a3-1.1.s390x",
"product": {
"name": "python315-dbm-3.15.0~a3-1.1.s390x",
"product_id": "python315-dbm-3.15.0~a3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "python315-idle-3.15.0~a3-1.1.s390x",
"product": {
"name": "python315-idle-3.15.0~a3-1.1.s390x",
"product_id": "python315-idle-3.15.0~a3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "python315-profiling-3.15.0~a3-1.1.s390x",
"product": {
"name": "python315-profiling-3.15.0~a3-1.1.s390x",
"product_id": "python315-profiling-3.15.0~a3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "python315-tk-3.15.0~a3-1.1.s390x",
"product": {
"name": "python315-tk-3.15.0~a3-1.1.s390x",
"product_id": "python315-tk-3.15.0~a3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "python315-x86-64-v3-3.15.0~a3-1.1.s390x",
"product": {
"name": "python315-x86-64-v3-3.15.0~a3-1.1.s390x",
"product_id": "python315-x86-64-v3-3.15.0~a3-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "python315-3.15.0~a3-1.1.x86_64",
"product": {
"name": "python315-3.15.0~a3-1.1.x86_64",
"product_id": "python315-3.15.0~a3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "python315-curses-3.15.0~a3-1.1.x86_64",
"product": {
"name": "python315-curses-3.15.0~a3-1.1.x86_64",
"product_id": "python315-curses-3.15.0~a3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "python315-dbm-3.15.0~a3-1.1.x86_64",
"product": {
"name": "python315-dbm-3.15.0~a3-1.1.x86_64",
"product_id": "python315-dbm-3.15.0~a3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "python315-idle-3.15.0~a3-1.1.x86_64",
"product": {
"name": "python315-idle-3.15.0~a3-1.1.x86_64",
"product_id": "python315-idle-3.15.0~a3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "python315-profiling-3.15.0~a3-1.1.x86_64",
"product": {
"name": "python315-profiling-3.15.0~a3-1.1.x86_64",
"product_id": "python315-profiling-3.15.0~a3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "python315-tk-3.15.0~a3-1.1.x86_64",
"product": {
"name": "python315-tk-3.15.0~a3-1.1.x86_64",
"product_id": "python315-tk-3.15.0~a3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "python315-x86-64-v3-3.15.0~a3-1.1.x86_64",
"product": {
"name": "python315-x86-64-v3-3.15.0~a3-1.1.x86_64",
"product_id": "python315-x86-64-v3-3.15.0~a3-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-3.15.0~a3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-3.15.0~a3-1.1.aarch64"
},
"product_reference": "python315-3.15.0~a3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-3.15.0~a3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-3.15.0~a3-1.1.ppc64le"
},
"product_reference": "python315-3.15.0~a3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-3.15.0~a3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-3.15.0~a3-1.1.s390x"
},
"product_reference": "python315-3.15.0~a3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-3.15.0~a3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-3.15.0~a3-1.1.x86_64"
},
"product_reference": "python315-3.15.0~a3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-curses-3.15.0~a3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.aarch64"
},
"product_reference": "python315-curses-3.15.0~a3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-curses-3.15.0~a3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.ppc64le"
},
"product_reference": "python315-curses-3.15.0~a3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-curses-3.15.0~a3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.s390x"
},
"product_reference": "python315-curses-3.15.0~a3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-curses-3.15.0~a3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.x86_64"
},
"product_reference": "python315-curses-3.15.0~a3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-dbm-3.15.0~a3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.aarch64"
},
"product_reference": "python315-dbm-3.15.0~a3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-dbm-3.15.0~a3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.ppc64le"
},
"product_reference": "python315-dbm-3.15.0~a3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-dbm-3.15.0~a3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.s390x"
},
"product_reference": "python315-dbm-3.15.0~a3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-dbm-3.15.0~a3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.x86_64"
},
"product_reference": "python315-dbm-3.15.0~a3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-idle-3.15.0~a3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.aarch64"
},
"product_reference": "python315-idle-3.15.0~a3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-idle-3.15.0~a3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.ppc64le"
},
"product_reference": "python315-idle-3.15.0~a3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-idle-3.15.0~a3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.s390x"
},
"product_reference": "python315-idle-3.15.0~a3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-idle-3.15.0~a3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.x86_64"
},
"product_reference": "python315-idle-3.15.0~a3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-profiling-3.15.0~a3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.aarch64"
},
"product_reference": "python315-profiling-3.15.0~a3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-profiling-3.15.0~a3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.ppc64le"
},
"product_reference": "python315-profiling-3.15.0~a3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-profiling-3.15.0~a3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.s390x"
},
"product_reference": "python315-profiling-3.15.0~a3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-profiling-3.15.0~a3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.x86_64"
},
"product_reference": "python315-profiling-3.15.0~a3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-tk-3.15.0~a3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.aarch64"
},
"product_reference": "python315-tk-3.15.0~a3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-tk-3.15.0~a3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.ppc64le"
},
"product_reference": "python315-tk-3.15.0~a3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-tk-3.15.0~a3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.s390x"
},
"product_reference": "python315-tk-3.15.0~a3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-tk-3.15.0~a3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.x86_64"
},
"product_reference": "python315-tk-3.15.0~a3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-x86-64-v3-3.15.0~a3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.aarch64"
},
"product_reference": "python315-x86-64-v3-3.15.0~a3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-x86-64-v3-3.15.0~a3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.ppc64le"
},
"product_reference": "python315-x86-64-v3-3.15.0~a3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-x86-64-v3-3.15.0~a3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.s390x"
},
"product_reference": "python315-x86-64-v3-3.15.0~a3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python315-x86-64-v3-3.15.0~a3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.x86_64"
},
"product_reference": "python315-x86-64-v3-3.15.0~a3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-12084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-12084"
}
],
"notes": [
{
"category": "general",
"text": "When building nested elements using xml.dom.minidom methods such as appendChild() that have a dependency on _clear_id_cache() the algorithm is quadratic. Availability can be impacted when building excessively nested documents.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-12084",
"url": "https://www.suse.com/security/cve/CVE-2025-12084"
},
{
"category": "external",
"summary": "SUSE Bug 1254997 for CVE-2025-12084",
"url": "https://bugzilla.suse.com/1254997"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-22T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-12084"
},
{
"cve": "CVE-2025-13836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-13836"
}
],
"notes": [
{
"category": "general",
"text": "When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-13836",
"url": "https://www.suse.com/security/cve/CVE-2025-13836"
},
{
"category": "external",
"summary": "SUSE Bug 1254400 for CVE-2025-13836",
"url": "https://bugzilla.suse.com/1254400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-22T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-13836"
},
{
"cve": "CVE-2025-13837",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-13837"
}
],
"notes": [
{
"category": "general",
"text": "When loading a plist file, the plistlib module reads data in size specified by the file itself, meaning a malicious file can cause OOM and DoS issues",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-13837",
"url": "https://www.suse.com/security/cve/CVE-2025-13837"
},
{
"category": "external",
"summary": "SUSE Bug 1254401 for CVE-2025-13837",
"url": "https://bugzilla.suse.com/1254401"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-curses-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-dbm-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-idle-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-profiling-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-tk-3.15.0~a3-1.1.x86_64",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.aarch64",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.ppc64le",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.s390x",
"openSUSE Tumbleweed:python315-x86-64-v3-3.15.0~a3-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-22T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-13837"
}
]
}
OPENSUSE-SU-2025:15846-1
Vulnerability from csaf_opensuse - Published: 2025-12-24 00:00 - Updated: 2025-12-24 00:00Summary
python39-3.9.25-2.1 on GA media
Severity
Moderate
Notes
Title of the patch: python39-3.9.25-2.1 on GA media
Description of the patch: These are all security issues fixed in the python39-3.9.25-2.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2025-15846
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Affected products
Recommended
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python39-3.9.25-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-3.9.25-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-3.9.25-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-3.9.25-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-curses-3.9.25-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-curses-3.9.25-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-curses-3.9.25-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-curses-3.9.25-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-idle-3.9.25-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-idle-3.9.25-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-idle-3.9.25-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-idle-3.9.25-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-tk-3.9.25-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-tk-3.9.25-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-tk-3.9.25-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-tk-3.9.25-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python39-3.9.25-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-3.9.25-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-3.9.25-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-3.9.25-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-curses-3.9.25-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-curses-3.9.25-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-curses-3.9.25-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-curses-3.9.25-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-idle-3.9.25-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-idle-3.9.25-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-idle-3.9.25-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-idle-3.9.25-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-tk-3.9.25-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-tk-3.9.25-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-tk-3.9.25-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-tk-3.9.25-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4 (Medium)
Affected products
Recommended
20 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python39-3.9.25-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-3.9.25-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-3.9.25-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-3.9.25-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-curses-3.9.25-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-curses-3.9.25-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-curses-3.9.25-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-curses-3.9.25-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-idle-3.9.25-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-idle-3.9.25-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-idle-3.9.25-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-idle-3.9.25-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-tk-3.9.25-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-tk-3.9.25-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-tk-3.9.25-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-tk-3.9.25-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
11 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "python39-3.9.25-2.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the python39-3.9.25-2.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2025-15846",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_15846-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-12084 page",
"url": "https://www.suse.com/security/cve/CVE-2025-12084/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-13836 page",
"url": "https://www.suse.com/security/cve/CVE-2025-13836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-13837 page",
"url": "https://www.suse.com/security/cve/CVE-2025-13837/"
}
],
"title": "python39-3.9.25-2.1 on GA media",
"tracking": {
"current_release_date": "2025-12-24T00:00:00Z",
"generator": {
"date": "2025-12-24T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2025:15846-1",
"initial_release_date": "2025-12-24T00:00:00Z",
"revision_history": [
{
"date": "2025-12-24T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "python39-3.9.25-2.1.aarch64",
"product": {
"name": "python39-3.9.25-2.1.aarch64",
"product_id": "python39-3.9.25-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "python39-curses-3.9.25-2.1.aarch64",
"product": {
"name": "python39-curses-3.9.25-2.1.aarch64",
"product_id": "python39-curses-3.9.25-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "python39-dbm-3.9.25-2.1.aarch64",
"product": {
"name": "python39-dbm-3.9.25-2.1.aarch64",
"product_id": "python39-dbm-3.9.25-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "python39-idle-3.9.25-2.1.aarch64",
"product": {
"name": "python39-idle-3.9.25-2.1.aarch64",
"product_id": "python39-idle-3.9.25-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "python39-tk-3.9.25-2.1.aarch64",
"product": {
"name": "python39-tk-3.9.25-2.1.aarch64",
"product_id": "python39-tk-3.9.25-2.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "python39-3.9.25-2.1.ppc64le",
"product": {
"name": "python39-3.9.25-2.1.ppc64le",
"product_id": "python39-3.9.25-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python39-curses-3.9.25-2.1.ppc64le",
"product": {
"name": "python39-curses-3.9.25-2.1.ppc64le",
"product_id": "python39-curses-3.9.25-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python39-dbm-3.9.25-2.1.ppc64le",
"product": {
"name": "python39-dbm-3.9.25-2.1.ppc64le",
"product_id": "python39-dbm-3.9.25-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python39-idle-3.9.25-2.1.ppc64le",
"product": {
"name": "python39-idle-3.9.25-2.1.ppc64le",
"product_id": "python39-idle-3.9.25-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python39-tk-3.9.25-2.1.ppc64le",
"product": {
"name": "python39-tk-3.9.25-2.1.ppc64le",
"product_id": "python39-tk-3.9.25-2.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "python39-3.9.25-2.1.s390x",
"product": {
"name": "python39-3.9.25-2.1.s390x",
"product_id": "python39-3.9.25-2.1.s390x"
}
},
{
"category": "product_version",
"name": "python39-curses-3.9.25-2.1.s390x",
"product": {
"name": "python39-curses-3.9.25-2.1.s390x",
"product_id": "python39-curses-3.9.25-2.1.s390x"
}
},
{
"category": "product_version",
"name": "python39-dbm-3.9.25-2.1.s390x",
"product": {
"name": "python39-dbm-3.9.25-2.1.s390x",
"product_id": "python39-dbm-3.9.25-2.1.s390x"
}
},
{
"category": "product_version",
"name": "python39-idle-3.9.25-2.1.s390x",
"product": {
"name": "python39-idle-3.9.25-2.1.s390x",
"product_id": "python39-idle-3.9.25-2.1.s390x"
}
},
{
"category": "product_version",
"name": "python39-tk-3.9.25-2.1.s390x",
"product": {
"name": "python39-tk-3.9.25-2.1.s390x",
"product_id": "python39-tk-3.9.25-2.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "python39-3.9.25-2.1.x86_64",
"product": {
"name": "python39-3.9.25-2.1.x86_64",
"product_id": "python39-3.9.25-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "python39-curses-3.9.25-2.1.x86_64",
"product": {
"name": "python39-curses-3.9.25-2.1.x86_64",
"product_id": "python39-curses-3.9.25-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "python39-dbm-3.9.25-2.1.x86_64",
"product": {
"name": "python39-dbm-3.9.25-2.1.x86_64",
"product_id": "python39-dbm-3.9.25-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "python39-idle-3.9.25-2.1.x86_64",
"product": {
"name": "python39-idle-3.9.25-2.1.x86_64",
"product_id": "python39-idle-3.9.25-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "python39-tk-3.9.25-2.1.x86_64",
"product": {
"name": "python39-tk-3.9.25-2.1.x86_64",
"product_id": "python39-tk-3.9.25-2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-3.9.25-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-3.9.25-2.1.aarch64"
},
"product_reference": "python39-3.9.25-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-3.9.25-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-3.9.25-2.1.ppc64le"
},
"product_reference": "python39-3.9.25-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-3.9.25-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-3.9.25-2.1.s390x"
},
"product_reference": "python39-3.9.25-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-3.9.25-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-3.9.25-2.1.x86_64"
},
"product_reference": "python39-3.9.25-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-curses-3.9.25-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-curses-3.9.25-2.1.aarch64"
},
"product_reference": "python39-curses-3.9.25-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-curses-3.9.25-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-curses-3.9.25-2.1.ppc64le"
},
"product_reference": "python39-curses-3.9.25-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-curses-3.9.25-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-curses-3.9.25-2.1.s390x"
},
"product_reference": "python39-curses-3.9.25-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-curses-3.9.25-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-curses-3.9.25-2.1.x86_64"
},
"product_reference": "python39-curses-3.9.25-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-dbm-3.9.25-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.aarch64"
},
"product_reference": "python39-dbm-3.9.25-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-dbm-3.9.25-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.ppc64le"
},
"product_reference": "python39-dbm-3.9.25-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-dbm-3.9.25-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.s390x"
},
"product_reference": "python39-dbm-3.9.25-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-dbm-3.9.25-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.x86_64"
},
"product_reference": "python39-dbm-3.9.25-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-idle-3.9.25-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-idle-3.9.25-2.1.aarch64"
},
"product_reference": "python39-idle-3.9.25-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-idle-3.9.25-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-idle-3.9.25-2.1.ppc64le"
},
"product_reference": "python39-idle-3.9.25-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-idle-3.9.25-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-idle-3.9.25-2.1.s390x"
},
"product_reference": "python39-idle-3.9.25-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-idle-3.9.25-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-idle-3.9.25-2.1.x86_64"
},
"product_reference": "python39-idle-3.9.25-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-tk-3.9.25-2.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-tk-3.9.25-2.1.aarch64"
},
"product_reference": "python39-tk-3.9.25-2.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-tk-3.9.25-2.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-tk-3.9.25-2.1.ppc64le"
},
"product_reference": "python39-tk-3.9.25-2.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-tk-3.9.25-2.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-tk-3.9.25-2.1.s390x"
},
"product_reference": "python39-tk-3.9.25-2.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-tk-3.9.25-2.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-tk-3.9.25-2.1.x86_64"
},
"product_reference": "python39-tk-3.9.25-2.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-12084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-12084"
}
],
"notes": [
{
"category": "general",
"text": "When building nested elements using xml.dom.minidom methods such as appendChild() that have a dependency on _clear_id_cache() the algorithm is quadratic. Availability can be impacted when building excessively nested documents.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python39-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-12084",
"url": "https://www.suse.com/security/cve/CVE-2025-12084"
},
{
"category": "external",
"summary": "SUSE Bug 1254997 for CVE-2025-12084",
"url": "https://bugzilla.suse.com/1254997"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python39-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python39-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-24T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-12084"
},
{
"cve": "CVE-2025-13836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-13836"
}
],
"notes": [
{
"category": "general",
"text": "When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python39-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-13836",
"url": "https://www.suse.com/security/cve/CVE-2025-13836"
},
{
"category": "external",
"summary": "SUSE Bug 1254400 for CVE-2025-13836",
"url": "https://bugzilla.suse.com/1254400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python39-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python39-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-24T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-13836"
},
{
"cve": "CVE-2025-13837",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-13837"
}
],
"notes": [
{
"category": "general",
"text": "When loading a plist file, the plistlib module reads data in size specified by the file itself, meaning a malicious file can cause OOM and DoS issues",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python39-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-13837",
"url": "https://www.suse.com/security/cve/CVE-2025-13837"
},
{
"category": "external",
"summary": "SUSE Bug 1254401 for CVE-2025-13837",
"url": "https://bugzilla.suse.com/1254401"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python39-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python39-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-curses-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-dbm-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-idle-3.9.25-2.1.x86_64",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.aarch64",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.ppc64le",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.s390x",
"openSUSE Tumbleweed:python39-tk-3.9.25-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-24T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-13837"
}
]
}
OPENSUSE-SU-2025:15849-1
Vulnerability from csaf_opensuse - Published: 2025-12-29 00:00 - Updated: 2025-12-29 00:00Summary
python311-3.11.14-3.1 on GA media
Severity
Moderate
Notes
Title of the patch: python311-3.11.14-3.1 on GA media
Description of the patch: These are all security issues fixed in the python311-3.11.14-3.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2025-15849
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Affected products
Recommended
28 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python311-3.11.14-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-3.11.14-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-3.11.14-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-3.11.14-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-curses-3.11.14-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-curses-3.11.14-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-curses-3.11.14-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-curses-3.11.14-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-idle-3.11.14-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-idle-3.11.14-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-idle-3.11.14-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-idle-3.11.14-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-tk-3.11.14-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-tk-3.11.14-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-tk-3.11.14-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-tk-3.11.14-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
28 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python311-3.11.14-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-3.11.14-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-3.11.14-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-3.11.14-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-curses-3.11.14-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-curses-3.11.14-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-curses-3.11.14-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-curses-3.11.14-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-idle-3.11.14-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-idle-3.11.14-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-idle-3.11.14-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-idle-3.11.14-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-tk-3.11.14-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-tk-3.11.14-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-tk-3.11.14-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-tk-3.11.14-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4 (Medium)
Affected products
Recommended
28 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python311-3.11.14-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-3.11.14-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-3.11.14-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-3.11.14-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-curses-3.11.14-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-curses-3.11.14-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-curses-3.11.14-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-curses-3.11.14-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-idle-3.11.14-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-idle-3.11.14-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-idle-3.11.14-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-idle-3.11.14-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-tk-3.11.14-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-tk-3.11.14-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-tk-3.11.14-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-tk-3.11.14-3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
11 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "python311-3.11.14-3.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the python311-3.11.14-3.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2025-15849",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_15849-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-12084 page",
"url": "https://www.suse.com/security/cve/CVE-2025-12084/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-13836 page",
"url": "https://www.suse.com/security/cve/CVE-2025-13836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-13837 page",
"url": "https://www.suse.com/security/cve/CVE-2025-13837/"
}
],
"title": "python311-3.11.14-3.1 on GA media",
"tracking": {
"current_release_date": "2025-12-29T00:00:00Z",
"generator": {
"date": "2025-12-29T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2025:15849-1",
"initial_release_date": "2025-12-29T00:00:00Z",
"revision_history": [
{
"date": "2025-12-29T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "python311-3.11.14-3.1.aarch64",
"product": {
"name": "python311-3.11.14-3.1.aarch64",
"product_id": "python311-3.11.14-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "python311-32bit-3.11.14-3.1.aarch64",
"product": {
"name": "python311-32bit-3.11.14-3.1.aarch64",
"product_id": "python311-32bit-3.11.14-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "python311-curses-3.11.14-3.1.aarch64",
"product": {
"name": "python311-curses-3.11.14-3.1.aarch64",
"product_id": "python311-curses-3.11.14-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "python311-dbm-3.11.14-3.1.aarch64",
"product": {
"name": "python311-dbm-3.11.14-3.1.aarch64",
"product_id": "python311-dbm-3.11.14-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "python311-idle-3.11.14-3.1.aarch64",
"product": {
"name": "python311-idle-3.11.14-3.1.aarch64",
"product_id": "python311-idle-3.11.14-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "python311-tk-3.11.14-3.1.aarch64",
"product": {
"name": "python311-tk-3.11.14-3.1.aarch64",
"product_id": "python311-tk-3.11.14-3.1.aarch64"
}
},
{
"category": "product_version",
"name": "python311-x86-64-v3-3.11.14-3.1.aarch64",
"product": {
"name": "python311-x86-64-v3-3.11.14-3.1.aarch64",
"product_id": "python311-x86-64-v3-3.11.14-3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "python311-3.11.14-3.1.ppc64le",
"product": {
"name": "python311-3.11.14-3.1.ppc64le",
"product_id": "python311-3.11.14-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python311-32bit-3.11.14-3.1.ppc64le",
"product": {
"name": "python311-32bit-3.11.14-3.1.ppc64le",
"product_id": "python311-32bit-3.11.14-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python311-curses-3.11.14-3.1.ppc64le",
"product": {
"name": "python311-curses-3.11.14-3.1.ppc64le",
"product_id": "python311-curses-3.11.14-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python311-dbm-3.11.14-3.1.ppc64le",
"product": {
"name": "python311-dbm-3.11.14-3.1.ppc64le",
"product_id": "python311-dbm-3.11.14-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python311-idle-3.11.14-3.1.ppc64le",
"product": {
"name": "python311-idle-3.11.14-3.1.ppc64le",
"product_id": "python311-idle-3.11.14-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python311-tk-3.11.14-3.1.ppc64le",
"product": {
"name": "python311-tk-3.11.14-3.1.ppc64le",
"product_id": "python311-tk-3.11.14-3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python311-x86-64-v3-3.11.14-3.1.ppc64le",
"product": {
"name": "python311-x86-64-v3-3.11.14-3.1.ppc64le",
"product_id": "python311-x86-64-v3-3.11.14-3.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "python311-3.11.14-3.1.s390x",
"product": {
"name": "python311-3.11.14-3.1.s390x",
"product_id": "python311-3.11.14-3.1.s390x"
}
},
{
"category": "product_version",
"name": "python311-32bit-3.11.14-3.1.s390x",
"product": {
"name": "python311-32bit-3.11.14-3.1.s390x",
"product_id": "python311-32bit-3.11.14-3.1.s390x"
}
},
{
"category": "product_version",
"name": "python311-curses-3.11.14-3.1.s390x",
"product": {
"name": "python311-curses-3.11.14-3.1.s390x",
"product_id": "python311-curses-3.11.14-3.1.s390x"
}
},
{
"category": "product_version",
"name": "python311-dbm-3.11.14-3.1.s390x",
"product": {
"name": "python311-dbm-3.11.14-3.1.s390x",
"product_id": "python311-dbm-3.11.14-3.1.s390x"
}
},
{
"category": "product_version",
"name": "python311-idle-3.11.14-3.1.s390x",
"product": {
"name": "python311-idle-3.11.14-3.1.s390x",
"product_id": "python311-idle-3.11.14-3.1.s390x"
}
},
{
"category": "product_version",
"name": "python311-tk-3.11.14-3.1.s390x",
"product": {
"name": "python311-tk-3.11.14-3.1.s390x",
"product_id": "python311-tk-3.11.14-3.1.s390x"
}
},
{
"category": "product_version",
"name": "python311-x86-64-v3-3.11.14-3.1.s390x",
"product": {
"name": "python311-x86-64-v3-3.11.14-3.1.s390x",
"product_id": "python311-x86-64-v3-3.11.14-3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "python311-3.11.14-3.1.x86_64",
"product": {
"name": "python311-3.11.14-3.1.x86_64",
"product_id": "python311-3.11.14-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "python311-32bit-3.11.14-3.1.x86_64",
"product": {
"name": "python311-32bit-3.11.14-3.1.x86_64",
"product_id": "python311-32bit-3.11.14-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "python311-curses-3.11.14-3.1.x86_64",
"product": {
"name": "python311-curses-3.11.14-3.1.x86_64",
"product_id": "python311-curses-3.11.14-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "python311-dbm-3.11.14-3.1.x86_64",
"product": {
"name": "python311-dbm-3.11.14-3.1.x86_64",
"product_id": "python311-dbm-3.11.14-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "python311-idle-3.11.14-3.1.x86_64",
"product": {
"name": "python311-idle-3.11.14-3.1.x86_64",
"product_id": "python311-idle-3.11.14-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "python311-tk-3.11.14-3.1.x86_64",
"product": {
"name": "python311-tk-3.11.14-3.1.x86_64",
"product_id": "python311-tk-3.11.14-3.1.x86_64"
}
},
{
"category": "product_version",
"name": "python311-x86-64-v3-3.11.14-3.1.x86_64",
"product": {
"name": "python311-x86-64-v3-3.11.14-3.1.x86_64",
"product_id": "python311-x86-64-v3-3.11.14-3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-3.11.14-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-3.11.14-3.1.aarch64"
},
"product_reference": "python311-3.11.14-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-3.11.14-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-3.11.14-3.1.ppc64le"
},
"product_reference": "python311-3.11.14-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-3.11.14-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-3.11.14-3.1.s390x"
},
"product_reference": "python311-3.11.14-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-3.11.14-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-3.11.14-3.1.x86_64"
},
"product_reference": "python311-3.11.14-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-32bit-3.11.14-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.aarch64"
},
"product_reference": "python311-32bit-3.11.14-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-32bit-3.11.14-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.ppc64le"
},
"product_reference": "python311-32bit-3.11.14-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-32bit-3.11.14-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.s390x"
},
"product_reference": "python311-32bit-3.11.14-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-32bit-3.11.14-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.x86_64"
},
"product_reference": "python311-32bit-3.11.14-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-curses-3.11.14-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-curses-3.11.14-3.1.aarch64"
},
"product_reference": "python311-curses-3.11.14-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-curses-3.11.14-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-curses-3.11.14-3.1.ppc64le"
},
"product_reference": "python311-curses-3.11.14-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-curses-3.11.14-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-curses-3.11.14-3.1.s390x"
},
"product_reference": "python311-curses-3.11.14-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-curses-3.11.14-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-curses-3.11.14-3.1.x86_64"
},
"product_reference": "python311-curses-3.11.14-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-dbm-3.11.14-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.aarch64"
},
"product_reference": "python311-dbm-3.11.14-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-dbm-3.11.14-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.ppc64le"
},
"product_reference": "python311-dbm-3.11.14-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-dbm-3.11.14-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.s390x"
},
"product_reference": "python311-dbm-3.11.14-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-dbm-3.11.14-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.x86_64"
},
"product_reference": "python311-dbm-3.11.14-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-idle-3.11.14-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-idle-3.11.14-3.1.aarch64"
},
"product_reference": "python311-idle-3.11.14-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-idle-3.11.14-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-idle-3.11.14-3.1.ppc64le"
},
"product_reference": "python311-idle-3.11.14-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-idle-3.11.14-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-idle-3.11.14-3.1.s390x"
},
"product_reference": "python311-idle-3.11.14-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-idle-3.11.14-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-idle-3.11.14-3.1.x86_64"
},
"product_reference": "python311-idle-3.11.14-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-tk-3.11.14-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-tk-3.11.14-3.1.aarch64"
},
"product_reference": "python311-tk-3.11.14-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-tk-3.11.14-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-tk-3.11.14-3.1.ppc64le"
},
"product_reference": "python311-tk-3.11.14-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-tk-3.11.14-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-tk-3.11.14-3.1.s390x"
},
"product_reference": "python311-tk-3.11.14-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-tk-3.11.14-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-tk-3.11.14-3.1.x86_64"
},
"product_reference": "python311-tk-3.11.14-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-x86-64-v3-3.11.14-3.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.aarch64"
},
"product_reference": "python311-x86-64-v3-3.11.14-3.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-x86-64-v3-3.11.14-3.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.ppc64le"
},
"product_reference": "python311-x86-64-v3-3.11.14-3.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-x86-64-v3-3.11.14-3.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.s390x"
},
"product_reference": "python311-x86-64-v3-3.11.14-3.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-x86-64-v3-3.11.14-3.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.x86_64"
},
"product_reference": "python311-x86-64-v3-3.11.14-3.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-12084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-12084"
}
],
"notes": [
{
"category": "general",
"text": "When building nested elements using xml.dom.minidom methods such as appendChild() that have a dependency on _clear_id_cache() the algorithm is quadratic. Availability can be impacted when building excessively nested documents.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python311-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-12084",
"url": "https://www.suse.com/security/cve/CVE-2025-12084"
},
{
"category": "external",
"summary": "SUSE Bug 1254997 for CVE-2025-12084",
"url": "https://bugzilla.suse.com/1254997"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python311-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python311-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-29T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-12084"
},
{
"cve": "CVE-2025-13836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-13836"
}
],
"notes": [
{
"category": "general",
"text": "When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python311-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-13836",
"url": "https://www.suse.com/security/cve/CVE-2025-13836"
},
{
"category": "external",
"summary": "SUSE Bug 1254400 for CVE-2025-13836",
"url": "https://bugzilla.suse.com/1254400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python311-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python311-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-29T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-13836"
},
{
"cve": "CVE-2025-13837",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-13837"
}
],
"notes": [
{
"category": "general",
"text": "When loading a plist file, the plistlib module reads data in size specified by the file itself, meaning a malicious file can cause OOM and DoS issues",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python311-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-13837",
"url": "https://www.suse.com/security/cve/CVE-2025-13837"
},
{
"category": "external",
"summary": "SUSE Bug 1254401 for CVE-2025-13837",
"url": "https://bugzilla.suse.com/1254401"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python311-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python311-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-32bit-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-curses-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-dbm-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-idle-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-tk-3.11.14-3.1.x86_64",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.aarch64",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.ppc64le",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.s390x",
"openSUSE Tumbleweed:python311-x86-64-v3-3.11.14-3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-29T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-13837"
}
]
}
OPENSUSE-SU-2025:15850-1
Vulnerability from csaf_opensuse - Published: 2025-12-29 00:00 - Updated: 2025-12-29 00:00Summary
python312-3.12.12-4.1 on GA media
Severity
Moderate
Notes
Title of the patch: python312-3.12.12-4.1 on GA media
Description of the patch: These are all security issues fixed in the python312-3.12.12-4.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2025-15850
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Affected products
Recommended
28 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python312-3.12.12-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-3.12.12-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-3.12.12-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-3.12.12-4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-curses-3.12.12-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-curses-3.12.12-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-curses-3.12.12-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-curses-3.12.12-4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-idle-3.12.12-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-idle-3.12.12-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-idle-3.12.12-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-idle-3.12.12-4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-tk-3.12.12-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-tk-3.12.12-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-tk-3.12.12-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-tk-3.12.12-4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
28 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python312-3.12.12-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-3.12.12-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-3.12.12-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-3.12.12-4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-curses-3.12.12-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-curses-3.12.12-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-curses-3.12.12-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-curses-3.12.12-4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-idle-3.12.12-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-idle-3.12.12-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-idle-3.12.12-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-idle-3.12.12-4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-tk-3.12.12-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-tk-3.12.12-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-tk-3.12.12-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-tk-3.12.12-4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4 (Medium)
Affected products
Recommended
28 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python312-3.12.12-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-3.12.12-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-3.12.12-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-3.12.12-4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-curses-3.12.12-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-curses-3.12.12-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-curses-3.12.12-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-curses-3.12.12-4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-idle-3.12.12-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-idle-3.12.12-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-idle-3.12.12-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-idle-3.12.12-4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-tk-3.12.12-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-tk-3.12.12-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-tk-3.12.12-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-tk-3.12.12-4.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
11 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "python312-3.12.12-4.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the python312-3.12.12-4.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2025-15850",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_15850-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-12084 page",
"url": "https://www.suse.com/security/cve/CVE-2025-12084/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-13836 page",
"url": "https://www.suse.com/security/cve/CVE-2025-13836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-13837 page",
"url": "https://www.suse.com/security/cve/CVE-2025-13837/"
}
],
"title": "python312-3.12.12-4.1 on GA media",
"tracking": {
"current_release_date": "2025-12-29T00:00:00Z",
"generator": {
"date": "2025-12-29T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2025:15850-1",
"initial_release_date": "2025-12-29T00:00:00Z",
"revision_history": [
{
"date": "2025-12-29T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "python312-3.12.12-4.1.aarch64",
"product": {
"name": "python312-3.12.12-4.1.aarch64",
"product_id": "python312-3.12.12-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "python312-32bit-3.12.12-4.1.aarch64",
"product": {
"name": "python312-32bit-3.12.12-4.1.aarch64",
"product_id": "python312-32bit-3.12.12-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "python312-curses-3.12.12-4.1.aarch64",
"product": {
"name": "python312-curses-3.12.12-4.1.aarch64",
"product_id": "python312-curses-3.12.12-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "python312-dbm-3.12.12-4.1.aarch64",
"product": {
"name": "python312-dbm-3.12.12-4.1.aarch64",
"product_id": "python312-dbm-3.12.12-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "python312-idle-3.12.12-4.1.aarch64",
"product": {
"name": "python312-idle-3.12.12-4.1.aarch64",
"product_id": "python312-idle-3.12.12-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "python312-tk-3.12.12-4.1.aarch64",
"product": {
"name": "python312-tk-3.12.12-4.1.aarch64",
"product_id": "python312-tk-3.12.12-4.1.aarch64"
}
},
{
"category": "product_version",
"name": "python312-x86-64-v3-3.12.12-4.1.aarch64",
"product": {
"name": "python312-x86-64-v3-3.12.12-4.1.aarch64",
"product_id": "python312-x86-64-v3-3.12.12-4.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "python312-3.12.12-4.1.ppc64le",
"product": {
"name": "python312-3.12.12-4.1.ppc64le",
"product_id": "python312-3.12.12-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python312-32bit-3.12.12-4.1.ppc64le",
"product": {
"name": "python312-32bit-3.12.12-4.1.ppc64le",
"product_id": "python312-32bit-3.12.12-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python312-curses-3.12.12-4.1.ppc64le",
"product": {
"name": "python312-curses-3.12.12-4.1.ppc64le",
"product_id": "python312-curses-3.12.12-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python312-dbm-3.12.12-4.1.ppc64le",
"product": {
"name": "python312-dbm-3.12.12-4.1.ppc64le",
"product_id": "python312-dbm-3.12.12-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python312-idle-3.12.12-4.1.ppc64le",
"product": {
"name": "python312-idle-3.12.12-4.1.ppc64le",
"product_id": "python312-idle-3.12.12-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python312-tk-3.12.12-4.1.ppc64le",
"product": {
"name": "python312-tk-3.12.12-4.1.ppc64le",
"product_id": "python312-tk-3.12.12-4.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python312-x86-64-v3-3.12.12-4.1.ppc64le",
"product": {
"name": "python312-x86-64-v3-3.12.12-4.1.ppc64le",
"product_id": "python312-x86-64-v3-3.12.12-4.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "python312-3.12.12-4.1.s390x",
"product": {
"name": "python312-3.12.12-4.1.s390x",
"product_id": "python312-3.12.12-4.1.s390x"
}
},
{
"category": "product_version",
"name": "python312-32bit-3.12.12-4.1.s390x",
"product": {
"name": "python312-32bit-3.12.12-4.1.s390x",
"product_id": "python312-32bit-3.12.12-4.1.s390x"
}
},
{
"category": "product_version",
"name": "python312-curses-3.12.12-4.1.s390x",
"product": {
"name": "python312-curses-3.12.12-4.1.s390x",
"product_id": "python312-curses-3.12.12-4.1.s390x"
}
},
{
"category": "product_version",
"name": "python312-dbm-3.12.12-4.1.s390x",
"product": {
"name": "python312-dbm-3.12.12-4.1.s390x",
"product_id": "python312-dbm-3.12.12-4.1.s390x"
}
},
{
"category": "product_version",
"name": "python312-idle-3.12.12-4.1.s390x",
"product": {
"name": "python312-idle-3.12.12-4.1.s390x",
"product_id": "python312-idle-3.12.12-4.1.s390x"
}
},
{
"category": "product_version",
"name": "python312-tk-3.12.12-4.1.s390x",
"product": {
"name": "python312-tk-3.12.12-4.1.s390x",
"product_id": "python312-tk-3.12.12-4.1.s390x"
}
},
{
"category": "product_version",
"name": "python312-x86-64-v3-3.12.12-4.1.s390x",
"product": {
"name": "python312-x86-64-v3-3.12.12-4.1.s390x",
"product_id": "python312-x86-64-v3-3.12.12-4.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "python312-3.12.12-4.1.x86_64",
"product": {
"name": "python312-3.12.12-4.1.x86_64",
"product_id": "python312-3.12.12-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "python312-32bit-3.12.12-4.1.x86_64",
"product": {
"name": "python312-32bit-3.12.12-4.1.x86_64",
"product_id": "python312-32bit-3.12.12-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "python312-curses-3.12.12-4.1.x86_64",
"product": {
"name": "python312-curses-3.12.12-4.1.x86_64",
"product_id": "python312-curses-3.12.12-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "python312-dbm-3.12.12-4.1.x86_64",
"product": {
"name": "python312-dbm-3.12.12-4.1.x86_64",
"product_id": "python312-dbm-3.12.12-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "python312-idle-3.12.12-4.1.x86_64",
"product": {
"name": "python312-idle-3.12.12-4.1.x86_64",
"product_id": "python312-idle-3.12.12-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "python312-tk-3.12.12-4.1.x86_64",
"product": {
"name": "python312-tk-3.12.12-4.1.x86_64",
"product_id": "python312-tk-3.12.12-4.1.x86_64"
}
},
{
"category": "product_version",
"name": "python312-x86-64-v3-3.12.12-4.1.x86_64",
"product": {
"name": "python312-x86-64-v3-3.12.12-4.1.x86_64",
"product_id": "python312-x86-64-v3-3.12.12-4.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-3.12.12-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-3.12.12-4.1.aarch64"
},
"product_reference": "python312-3.12.12-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-3.12.12-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-3.12.12-4.1.ppc64le"
},
"product_reference": "python312-3.12.12-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-3.12.12-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-3.12.12-4.1.s390x"
},
"product_reference": "python312-3.12.12-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-3.12.12-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-3.12.12-4.1.x86_64"
},
"product_reference": "python312-3.12.12-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-32bit-3.12.12-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.aarch64"
},
"product_reference": "python312-32bit-3.12.12-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-32bit-3.12.12-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.ppc64le"
},
"product_reference": "python312-32bit-3.12.12-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-32bit-3.12.12-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.s390x"
},
"product_reference": "python312-32bit-3.12.12-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-32bit-3.12.12-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.x86_64"
},
"product_reference": "python312-32bit-3.12.12-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-curses-3.12.12-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-curses-3.12.12-4.1.aarch64"
},
"product_reference": "python312-curses-3.12.12-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-curses-3.12.12-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-curses-3.12.12-4.1.ppc64le"
},
"product_reference": "python312-curses-3.12.12-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-curses-3.12.12-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-curses-3.12.12-4.1.s390x"
},
"product_reference": "python312-curses-3.12.12-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-curses-3.12.12-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-curses-3.12.12-4.1.x86_64"
},
"product_reference": "python312-curses-3.12.12-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-dbm-3.12.12-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.aarch64"
},
"product_reference": "python312-dbm-3.12.12-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-dbm-3.12.12-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.ppc64le"
},
"product_reference": "python312-dbm-3.12.12-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-dbm-3.12.12-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.s390x"
},
"product_reference": "python312-dbm-3.12.12-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-dbm-3.12.12-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.x86_64"
},
"product_reference": "python312-dbm-3.12.12-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-idle-3.12.12-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-idle-3.12.12-4.1.aarch64"
},
"product_reference": "python312-idle-3.12.12-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-idle-3.12.12-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-idle-3.12.12-4.1.ppc64le"
},
"product_reference": "python312-idle-3.12.12-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-idle-3.12.12-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-idle-3.12.12-4.1.s390x"
},
"product_reference": "python312-idle-3.12.12-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-idle-3.12.12-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-idle-3.12.12-4.1.x86_64"
},
"product_reference": "python312-idle-3.12.12-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-tk-3.12.12-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-tk-3.12.12-4.1.aarch64"
},
"product_reference": "python312-tk-3.12.12-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-tk-3.12.12-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-tk-3.12.12-4.1.ppc64le"
},
"product_reference": "python312-tk-3.12.12-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-tk-3.12.12-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-tk-3.12.12-4.1.s390x"
},
"product_reference": "python312-tk-3.12.12-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-tk-3.12.12-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-tk-3.12.12-4.1.x86_64"
},
"product_reference": "python312-tk-3.12.12-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-x86-64-v3-3.12.12-4.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.aarch64"
},
"product_reference": "python312-x86-64-v3-3.12.12-4.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-x86-64-v3-3.12.12-4.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.ppc64le"
},
"product_reference": "python312-x86-64-v3-3.12.12-4.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-x86-64-v3-3.12.12-4.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.s390x"
},
"product_reference": "python312-x86-64-v3-3.12.12-4.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python312-x86-64-v3-3.12.12-4.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.x86_64"
},
"product_reference": "python312-x86-64-v3-3.12.12-4.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-12084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-12084"
}
],
"notes": [
{
"category": "general",
"text": "When building nested elements using xml.dom.minidom methods such as appendChild() that have a dependency on _clear_id_cache() the algorithm is quadratic. Availability can be impacted when building excessively nested documents.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python312-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-12084",
"url": "https://www.suse.com/security/cve/CVE-2025-12084"
},
{
"category": "external",
"summary": "SUSE Bug 1254997 for CVE-2025-12084",
"url": "https://bugzilla.suse.com/1254997"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python312-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python312-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-29T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-12084"
},
{
"cve": "CVE-2025-13836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-13836"
}
],
"notes": [
{
"category": "general",
"text": "When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python312-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-13836",
"url": "https://www.suse.com/security/cve/CVE-2025-13836"
},
{
"category": "external",
"summary": "SUSE Bug 1254400 for CVE-2025-13836",
"url": "https://bugzilla.suse.com/1254400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python312-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python312-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-29T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-13836"
},
{
"cve": "CVE-2025-13837",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-13837"
}
],
"notes": [
{
"category": "general",
"text": "When loading a plist file, the plistlib module reads data in size specified by the file itself, meaning a malicious file can cause OOM and DoS issues",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python312-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-13837",
"url": "https://www.suse.com/security/cve/CVE-2025-13837"
},
{
"category": "external",
"summary": "SUSE Bug 1254401 for CVE-2025-13837",
"url": "https://bugzilla.suse.com/1254401"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python312-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python312-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-32bit-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-curses-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-dbm-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-idle-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-tk-3.12.12-4.1.x86_64",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.aarch64",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.ppc64le",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.s390x",
"openSUSE Tumbleweed:python312-x86-64-v3-3.12.12-4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-29T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-13837"
}
]
}
OPENSUSE-SU-2025:15851-1
Vulnerability from csaf_opensuse - Published: 2025-12-29 00:00 - Updated: 2025-12-29 00:00Summary
python313-3.13.11-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: python313-3.13.11-1.1 on GA media
Description of the patch: These are all security issues fixed in the python313-3.13.11-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2025-15851
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Affected products
Recommended
28 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python313-3.13.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-3.13.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-3.13.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-3.13.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-curses-3.13.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-curses-3.13.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-curses-3.13.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-curses-3.13.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-idle-3.13.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-idle-3.13.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-idle-3.13.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-idle-3.13.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-tk-3.13.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-tk-3.13.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-tk-3.13.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-tk-3.13.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
28 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python313-3.13.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-3.13.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-3.13.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-3.13.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-curses-3.13.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-curses-3.13.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-curses-3.13.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-curses-3.13.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-idle-3.13.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-idle-3.13.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-idle-3.13.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-idle-3.13.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-tk-3.13.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-tk-3.13.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-tk-3.13.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-tk-3.13.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4 (Medium)
Affected products
Recommended
28 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python313-3.13.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-3.13.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-3.13.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-3.13.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-curses-3.13.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-curses-3.13.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-curses-3.13.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-curses-3.13.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-idle-3.13.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-idle-3.13.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-idle-3.13.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-idle-3.13.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-tk-3.13.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-tk-3.13.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-tk-3.13.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-tk-3.13.11-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
11 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "python313-3.13.11-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the python313-3.13.11-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2025-15851",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_15851-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-12084 page",
"url": "https://www.suse.com/security/cve/CVE-2025-12084/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-13836 page",
"url": "https://www.suse.com/security/cve/CVE-2025-13836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-13837 page",
"url": "https://www.suse.com/security/cve/CVE-2025-13837/"
}
],
"title": "python313-3.13.11-1.1 on GA media",
"tracking": {
"current_release_date": "2025-12-29T00:00:00Z",
"generator": {
"date": "2025-12-29T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2025:15851-1",
"initial_release_date": "2025-12-29T00:00:00Z",
"revision_history": [
{
"date": "2025-12-29T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "python313-3.13.11-1.1.aarch64",
"product": {
"name": "python313-3.13.11-1.1.aarch64",
"product_id": "python313-3.13.11-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "python313-32bit-3.13.11-1.1.aarch64",
"product": {
"name": "python313-32bit-3.13.11-1.1.aarch64",
"product_id": "python313-32bit-3.13.11-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "python313-curses-3.13.11-1.1.aarch64",
"product": {
"name": "python313-curses-3.13.11-1.1.aarch64",
"product_id": "python313-curses-3.13.11-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "python313-dbm-3.13.11-1.1.aarch64",
"product": {
"name": "python313-dbm-3.13.11-1.1.aarch64",
"product_id": "python313-dbm-3.13.11-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "python313-idle-3.13.11-1.1.aarch64",
"product": {
"name": "python313-idle-3.13.11-1.1.aarch64",
"product_id": "python313-idle-3.13.11-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "python313-tk-3.13.11-1.1.aarch64",
"product": {
"name": "python313-tk-3.13.11-1.1.aarch64",
"product_id": "python313-tk-3.13.11-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "python313-x86-64-v3-3.13.11-1.1.aarch64",
"product": {
"name": "python313-x86-64-v3-3.13.11-1.1.aarch64",
"product_id": "python313-x86-64-v3-3.13.11-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "python313-3.13.11-1.1.ppc64le",
"product": {
"name": "python313-3.13.11-1.1.ppc64le",
"product_id": "python313-3.13.11-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python313-32bit-3.13.11-1.1.ppc64le",
"product": {
"name": "python313-32bit-3.13.11-1.1.ppc64le",
"product_id": "python313-32bit-3.13.11-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python313-curses-3.13.11-1.1.ppc64le",
"product": {
"name": "python313-curses-3.13.11-1.1.ppc64le",
"product_id": "python313-curses-3.13.11-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python313-dbm-3.13.11-1.1.ppc64le",
"product": {
"name": "python313-dbm-3.13.11-1.1.ppc64le",
"product_id": "python313-dbm-3.13.11-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python313-idle-3.13.11-1.1.ppc64le",
"product": {
"name": "python313-idle-3.13.11-1.1.ppc64le",
"product_id": "python313-idle-3.13.11-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python313-tk-3.13.11-1.1.ppc64le",
"product": {
"name": "python313-tk-3.13.11-1.1.ppc64le",
"product_id": "python313-tk-3.13.11-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python313-x86-64-v3-3.13.11-1.1.ppc64le",
"product": {
"name": "python313-x86-64-v3-3.13.11-1.1.ppc64le",
"product_id": "python313-x86-64-v3-3.13.11-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "python313-3.13.11-1.1.s390x",
"product": {
"name": "python313-3.13.11-1.1.s390x",
"product_id": "python313-3.13.11-1.1.s390x"
}
},
{
"category": "product_version",
"name": "python313-32bit-3.13.11-1.1.s390x",
"product": {
"name": "python313-32bit-3.13.11-1.1.s390x",
"product_id": "python313-32bit-3.13.11-1.1.s390x"
}
},
{
"category": "product_version",
"name": "python313-curses-3.13.11-1.1.s390x",
"product": {
"name": "python313-curses-3.13.11-1.1.s390x",
"product_id": "python313-curses-3.13.11-1.1.s390x"
}
},
{
"category": "product_version",
"name": "python313-dbm-3.13.11-1.1.s390x",
"product": {
"name": "python313-dbm-3.13.11-1.1.s390x",
"product_id": "python313-dbm-3.13.11-1.1.s390x"
}
},
{
"category": "product_version",
"name": "python313-idle-3.13.11-1.1.s390x",
"product": {
"name": "python313-idle-3.13.11-1.1.s390x",
"product_id": "python313-idle-3.13.11-1.1.s390x"
}
},
{
"category": "product_version",
"name": "python313-tk-3.13.11-1.1.s390x",
"product": {
"name": "python313-tk-3.13.11-1.1.s390x",
"product_id": "python313-tk-3.13.11-1.1.s390x"
}
},
{
"category": "product_version",
"name": "python313-x86-64-v3-3.13.11-1.1.s390x",
"product": {
"name": "python313-x86-64-v3-3.13.11-1.1.s390x",
"product_id": "python313-x86-64-v3-3.13.11-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "python313-3.13.11-1.1.x86_64",
"product": {
"name": "python313-3.13.11-1.1.x86_64",
"product_id": "python313-3.13.11-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "python313-32bit-3.13.11-1.1.x86_64",
"product": {
"name": "python313-32bit-3.13.11-1.1.x86_64",
"product_id": "python313-32bit-3.13.11-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "python313-curses-3.13.11-1.1.x86_64",
"product": {
"name": "python313-curses-3.13.11-1.1.x86_64",
"product_id": "python313-curses-3.13.11-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "python313-dbm-3.13.11-1.1.x86_64",
"product": {
"name": "python313-dbm-3.13.11-1.1.x86_64",
"product_id": "python313-dbm-3.13.11-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "python313-idle-3.13.11-1.1.x86_64",
"product": {
"name": "python313-idle-3.13.11-1.1.x86_64",
"product_id": "python313-idle-3.13.11-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "python313-tk-3.13.11-1.1.x86_64",
"product": {
"name": "python313-tk-3.13.11-1.1.x86_64",
"product_id": "python313-tk-3.13.11-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "python313-x86-64-v3-3.13.11-1.1.x86_64",
"product": {
"name": "python313-x86-64-v3-3.13.11-1.1.x86_64",
"product_id": "python313-x86-64-v3-3.13.11-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-3.13.11-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-3.13.11-1.1.aarch64"
},
"product_reference": "python313-3.13.11-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-3.13.11-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-3.13.11-1.1.ppc64le"
},
"product_reference": "python313-3.13.11-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-3.13.11-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-3.13.11-1.1.s390x"
},
"product_reference": "python313-3.13.11-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-3.13.11-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-3.13.11-1.1.x86_64"
},
"product_reference": "python313-3.13.11-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-32bit-3.13.11-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.aarch64"
},
"product_reference": "python313-32bit-3.13.11-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-32bit-3.13.11-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.ppc64le"
},
"product_reference": "python313-32bit-3.13.11-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-32bit-3.13.11-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.s390x"
},
"product_reference": "python313-32bit-3.13.11-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-32bit-3.13.11-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.x86_64"
},
"product_reference": "python313-32bit-3.13.11-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-curses-3.13.11-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-curses-3.13.11-1.1.aarch64"
},
"product_reference": "python313-curses-3.13.11-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-curses-3.13.11-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-curses-3.13.11-1.1.ppc64le"
},
"product_reference": "python313-curses-3.13.11-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-curses-3.13.11-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-curses-3.13.11-1.1.s390x"
},
"product_reference": "python313-curses-3.13.11-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-curses-3.13.11-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-curses-3.13.11-1.1.x86_64"
},
"product_reference": "python313-curses-3.13.11-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-dbm-3.13.11-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.aarch64"
},
"product_reference": "python313-dbm-3.13.11-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-dbm-3.13.11-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.ppc64le"
},
"product_reference": "python313-dbm-3.13.11-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-dbm-3.13.11-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.s390x"
},
"product_reference": "python313-dbm-3.13.11-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-dbm-3.13.11-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.x86_64"
},
"product_reference": "python313-dbm-3.13.11-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-idle-3.13.11-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-idle-3.13.11-1.1.aarch64"
},
"product_reference": "python313-idle-3.13.11-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-idle-3.13.11-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-idle-3.13.11-1.1.ppc64le"
},
"product_reference": "python313-idle-3.13.11-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-idle-3.13.11-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-idle-3.13.11-1.1.s390x"
},
"product_reference": "python313-idle-3.13.11-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-idle-3.13.11-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-idle-3.13.11-1.1.x86_64"
},
"product_reference": "python313-idle-3.13.11-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-tk-3.13.11-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-tk-3.13.11-1.1.aarch64"
},
"product_reference": "python313-tk-3.13.11-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-tk-3.13.11-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-tk-3.13.11-1.1.ppc64le"
},
"product_reference": "python313-tk-3.13.11-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-tk-3.13.11-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-tk-3.13.11-1.1.s390x"
},
"product_reference": "python313-tk-3.13.11-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-tk-3.13.11-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-tk-3.13.11-1.1.x86_64"
},
"product_reference": "python313-tk-3.13.11-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-x86-64-v3-3.13.11-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.aarch64"
},
"product_reference": "python313-x86-64-v3-3.13.11-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-x86-64-v3-3.13.11-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.ppc64le"
},
"product_reference": "python313-x86-64-v3-3.13.11-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-x86-64-v3-3.13.11-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.s390x"
},
"product_reference": "python313-x86-64-v3-3.13.11-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python313-x86-64-v3-3.13.11-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.x86_64"
},
"product_reference": "python313-x86-64-v3-3.13.11-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-12084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-12084"
}
],
"notes": [
{
"category": "general",
"text": "When building nested elements using xml.dom.minidom methods such as appendChild() that have a dependency on _clear_id_cache() the algorithm is quadratic. Availability can be impacted when building excessively nested documents.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python313-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-12084",
"url": "https://www.suse.com/security/cve/CVE-2025-12084"
},
{
"category": "external",
"summary": "SUSE Bug 1254997 for CVE-2025-12084",
"url": "https://bugzilla.suse.com/1254997"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python313-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python313-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-29T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-12084"
},
{
"cve": "CVE-2025-13836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-13836"
}
],
"notes": [
{
"category": "general",
"text": "When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python313-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-13836",
"url": "https://www.suse.com/security/cve/CVE-2025-13836"
},
{
"category": "external",
"summary": "SUSE Bug 1254400 for CVE-2025-13836",
"url": "https://bugzilla.suse.com/1254400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python313-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python313-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-29T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-13836"
},
{
"cve": "CVE-2025-13837",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-13837"
}
],
"notes": [
{
"category": "general",
"text": "When loading a plist file, the plistlib module reads data in size specified by the file itself, meaning a malicious file can cause OOM and DoS issues",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python313-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-13837",
"url": "https://www.suse.com/security/cve/CVE-2025-13837"
},
{
"category": "external",
"summary": "SUSE Bug 1254401 for CVE-2025-13837",
"url": "https://bugzilla.suse.com/1254401"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python313-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python313-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-32bit-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-curses-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-dbm-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-idle-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-tk-3.13.11-1.1.x86_64",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.aarch64",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.ppc64le",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.s390x",
"openSUSE Tumbleweed:python313-x86-64-v3-3.13.11-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-12-29T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-13837"
}
]
}
OPENSUSE-SU-2026:10011-1
Vulnerability from csaf_opensuse - Published: 2026-01-06 00:00 - Updated: 2026-01-06 00:00Summary
python314-3.14.2-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: python314-3.14.2-1.1 on GA media
Description of the patch: These are all security issues fixed in the python314-3.14.2-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2026-10011
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Affected products
Recommended
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python314-3.14.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-3.14.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-3.14.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-3.14.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-curses-3.14.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-curses-3.14.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-curses-3.14.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-curses-3.14.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-idle-3.14.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-idle-3.14.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-idle-3.14.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-idle-3.14.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-tk-3.14.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-tk-3.14.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-tk-3.14.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-tk-3.14.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python314-3.14.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-3.14.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-3.14.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-3.14.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-curses-3.14.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-curses-3.14.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-curses-3.14.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-curses-3.14.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-idle-3.14.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-idle-3.14.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-idle-3.14.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-idle-3.14.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-tk-3.14.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-tk-3.14.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-tk-3.14.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-tk-3.14.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4 (Medium)
Affected products
Recommended
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python314-3.14.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-3.14.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-3.14.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-3.14.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-curses-3.14.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-curses-3.14.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-curses-3.14.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-curses-3.14.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-idle-3.14.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-idle-3.14.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-idle-3.14.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-idle-3.14.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-tk-3.14.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-tk-3.14.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-tk-3.14.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-tk-3.14.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
11 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "python314-3.14.2-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the python314-3.14.2-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2026-10011",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_10011-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-12084 page",
"url": "https://www.suse.com/security/cve/CVE-2025-12084/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-13836 page",
"url": "https://www.suse.com/security/cve/CVE-2025-13836/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-13837 page",
"url": "https://www.suse.com/security/cve/CVE-2025-13837/"
}
],
"title": "python314-3.14.2-1.1 on GA media",
"tracking": {
"current_release_date": "2026-01-06T00:00:00Z",
"generator": {
"date": "2026-01-06T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:10011-1",
"initial_release_date": "2026-01-06T00:00:00Z",
"revision_history": [
{
"date": "2026-01-06T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "python314-3.14.2-1.1.aarch64",
"product": {
"name": "python314-3.14.2-1.1.aarch64",
"product_id": "python314-3.14.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "python314-curses-3.14.2-1.1.aarch64",
"product": {
"name": "python314-curses-3.14.2-1.1.aarch64",
"product_id": "python314-curses-3.14.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "python314-dbm-3.14.2-1.1.aarch64",
"product": {
"name": "python314-dbm-3.14.2-1.1.aarch64",
"product_id": "python314-dbm-3.14.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "python314-idle-3.14.2-1.1.aarch64",
"product": {
"name": "python314-idle-3.14.2-1.1.aarch64",
"product_id": "python314-idle-3.14.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "python314-tk-3.14.2-1.1.aarch64",
"product": {
"name": "python314-tk-3.14.2-1.1.aarch64",
"product_id": "python314-tk-3.14.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "python314-x86-64-v3-3.14.2-1.1.aarch64",
"product": {
"name": "python314-x86-64-v3-3.14.2-1.1.aarch64",
"product_id": "python314-x86-64-v3-3.14.2-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "python314-3.14.2-1.1.ppc64le",
"product": {
"name": "python314-3.14.2-1.1.ppc64le",
"product_id": "python314-3.14.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python314-curses-3.14.2-1.1.ppc64le",
"product": {
"name": "python314-curses-3.14.2-1.1.ppc64le",
"product_id": "python314-curses-3.14.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python314-dbm-3.14.2-1.1.ppc64le",
"product": {
"name": "python314-dbm-3.14.2-1.1.ppc64le",
"product_id": "python314-dbm-3.14.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python314-idle-3.14.2-1.1.ppc64le",
"product": {
"name": "python314-idle-3.14.2-1.1.ppc64le",
"product_id": "python314-idle-3.14.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python314-tk-3.14.2-1.1.ppc64le",
"product": {
"name": "python314-tk-3.14.2-1.1.ppc64le",
"product_id": "python314-tk-3.14.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python314-x86-64-v3-3.14.2-1.1.ppc64le",
"product": {
"name": "python314-x86-64-v3-3.14.2-1.1.ppc64le",
"product_id": "python314-x86-64-v3-3.14.2-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "python314-3.14.2-1.1.s390x",
"product": {
"name": "python314-3.14.2-1.1.s390x",
"product_id": "python314-3.14.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "python314-curses-3.14.2-1.1.s390x",
"product": {
"name": "python314-curses-3.14.2-1.1.s390x",
"product_id": "python314-curses-3.14.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "python314-dbm-3.14.2-1.1.s390x",
"product": {
"name": "python314-dbm-3.14.2-1.1.s390x",
"product_id": "python314-dbm-3.14.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "python314-idle-3.14.2-1.1.s390x",
"product": {
"name": "python314-idle-3.14.2-1.1.s390x",
"product_id": "python314-idle-3.14.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "python314-tk-3.14.2-1.1.s390x",
"product": {
"name": "python314-tk-3.14.2-1.1.s390x",
"product_id": "python314-tk-3.14.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "python314-x86-64-v3-3.14.2-1.1.s390x",
"product": {
"name": "python314-x86-64-v3-3.14.2-1.1.s390x",
"product_id": "python314-x86-64-v3-3.14.2-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "python314-3.14.2-1.1.x86_64",
"product": {
"name": "python314-3.14.2-1.1.x86_64",
"product_id": "python314-3.14.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "python314-curses-3.14.2-1.1.x86_64",
"product": {
"name": "python314-curses-3.14.2-1.1.x86_64",
"product_id": "python314-curses-3.14.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "python314-dbm-3.14.2-1.1.x86_64",
"product": {
"name": "python314-dbm-3.14.2-1.1.x86_64",
"product_id": "python314-dbm-3.14.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "python314-idle-3.14.2-1.1.x86_64",
"product": {
"name": "python314-idle-3.14.2-1.1.x86_64",
"product_id": "python314-idle-3.14.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "python314-tk-3.14.2-1.1.x86_64",
"product": {
"name": "python314-tk-3.14.2-1.1.x86_64",
"product_id": "python314-tk-3.14.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "python314-x86-64-v3-3.14.2-1.1.x86_64",
"product": {
"name": "python314-x86-64-v3-3.14.2-1.1.x86_64",
"product_id": "python314-x86-64-v3-3.14.2-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-3.14.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-3.14.2-1.1.aarch64"
},
"product_reference": "python314-3.14.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-3.14.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-3.14.2-1.1.ppc64le"
},
"product_reference": "python314-3.14.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-3.14.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-3.14.2-1.1.s390x"
},
"product_reference": "python314-3.14.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-3.14.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-3.14.2-1.1.x86_64"
},
"product_reference": "python314-3.14.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-curses-3.14.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-curses-3.14.2-1.1.aarch64"
},
"product_reference": "python314-curses-3.14.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-curses-3.14.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-curses-3.14.2-1.1.ppc64le"
},
"product_reference": "python314-curses-3.14.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-curses-3.14.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-curses-3.14.2-1.1.s390x"
},
"product_reference": "python314-curses-3.14.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-curses-3.14.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-curses-3.14.2-1.1.x86_64"
},
"product_reference": "python314-curses-3.14.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-dbm-3.14.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.aarch64"
},
"product_reference": "python314-dbm-3.14.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-dbm-3.14.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.ppc64le"
},
"product_reference": "python314-dbm-3.14.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-dbm-3.14.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.s390x"
},
"product_reference": "python314-dbm-3.14.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-dbm-3.14.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.x86_64"
},
"product_reference": "python314-dbm-3.14.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-idle-3.14.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-idle-3.14.2-1.1.aarch64"
},
"product_reference": "python314-idle-3.14.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-idle-3.14.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-idle-3.14.2-1.1.ppc64le"
},
"product_reference": "python314-idle-3.14.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-idle-3.14.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-idle-3.14.2-1.1.s390x"
},
"product_reference": "python314-idle-3.14.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-idle-3.14.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-idle-3.14.2-1.1.x86_64"
},
"product_reference": "python314-idle-3.14.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-tk-3.14.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-tk-3.14.2-1.1.aarch64"
},
"product_reference": "python314-tk-3.14.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-tk-3.14.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-tk-3.14.2-1.1.ppc64le"
},
"product_reference": "python314-tk-3.14.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-tk-3.14.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-tk-3.14.2-1.1.s390x"
},
"product_reference": "python314-tk-3.14.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-tk-3.14.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-tk-3.14.2-1.1.x86_64"
},
"product_reference": "python314-tk-3.14.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-x86-64-v3-3.14.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.aarch64"
},
"product_reference": "python314-x86-64-v3-3.14.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-x86-64-v3-3.14.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.ppc64le"
},
"product_reference": "python314-x86-64-v3-3.14.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-x86-64-v3-3.14.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.s390x"
},
"product_reference": "python314-x86-64-v3-3.14.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python314-x86-64-v3-3.14.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.x86_64"
},
"product_reference": "python314-x86-64-v3-3.14.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-12084",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-12084"
}
],
"notes": [
{
"category": "general",
"text": "When building nested elements using xml.dom.minidom methods such as appendChild() that have a dependency on _clear_id_cache() the algorithm is quadratic. Availability can be impacted when building excessively nested documents.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python314-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-12084",
"url": "https://www.suse.com/security/cve/CVE-2025-12084"
},
{
"category": "external",
"summary": "SUSE Bug 1254997 for CVE-2025-12084",
"url": "https://bugzilla.suse.com/1254997"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python314-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python314-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-06T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-12084"
},
{
"cve": "CVE-2025-13836",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-13836"
}
],
"notes": [
{
"category": "general",
"text": "When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malicious server to cause the client to read large amounts of data into memory, potentially causing OOM or other DoS.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python314-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-13836",
"url": "https://www.suse.com/security/cve/CVE-2025-13836"
},
{
"category": "external",
"summary": "SUSE Bug 1254400 for CVE-2025-13836",
"url": "https://bugzilla.suse.com/1254400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python314-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python314-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-06T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-13836"
},
{
"cve": "CVE-2025-13837",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-13837"
}
],
"notes": [
{
"category": "general",
"text": "When loading a plist file, the plistlib module reads data in size specified by the file itself, meaning a malicious file can cause OOM and DoS issues",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python314-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-13837",
"url": "https://www.suse.com/security/cve/CVE-2025-13837"
},
{
"category": "external",
"summary": "SUSE Bug 1254401 for CVE-2025-13837",
"url": "https://bugzilla.suse.com/1254401"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python314-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python314-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-curses-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-dbm-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-idle-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-tk-3.14.2-1.1.x86_64",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.aarch64",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.ppc64le",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.s390x",
"openSUSE Tumbleweed:python314-x86-64-v3-3.14.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-01-06T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-13837"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…