SUSE-SU-2026:20951-1
Vulnerability from csaf_suse - Published: 2026-03-31 09:13 - Updated: 2026-03-31 09:13Summary
Security update for python311
Severity
Important
Notes
Title of the patch: Security update for python311
Description of the patch: This update for python311 fixes the following issues:
- CVE-2026-1299: header injection when an email is serialized due to improper newline quoting (bsc#1257181).
- CVE-2026-2297: validation bypass via incorrectly handled hook in FileLoader (bsc#1259240).
Patchnames: SUSE-SLE-Micro-6.1-465
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.2 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for python311",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for python311 fixes the following issues:\n\n- CVE-2026-1299: header injection when an email is serialized due to improper newline quoting (bsc#1257181).\n- CVE-2026-2297: validation bypass via incorrectly handled hook in FileLoader (bsc#1259240).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.1-465",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20951-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:20951-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620951-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:20951-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-April/045288.html"
},
{
"category": "self",
"summary": "SUSE Bug 1257181",
"url": "https://bugzilla.suse.com/1257181"
},
{
"category": "self",
"summary": "SUSE Bug 1259240",
"url": "https://bugzilla.suse.com/1259240"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-1299 page",
"url": "https://www.suse.com/security/cve/CVE-2026-1299/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-2297 page",
"url": "https://www.suse.com/security/cve/CVE-2026-2297/"
}
],
"title": "Security update for python311",
"tracking": {
"current_release_date": "2026-03-31T09:13:02Z",
"generator": {
"date": "2026-03-31T09:13:02Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:20951-1",
"initial_release_date": "2026-03-31T09:13:02Z",
"revision_history": [
{
"date": "2026-03-31T09:13:02Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libpython3_11-1_0-3.11.15-slfo.1.1_2.1.aarch64",
"product": {
"name": "libpython3_11-1_0-3.11.15-slfo.1.1_2.1.aarch64",
"product_id": "libpython3_11-1_0-3.11.15-slfo.1.1_2.1.aarch64"
}
},
{
"category": "product_version",
"name": "python311-3.11.15-slfo.1.1_2.1.aarch64",
"product": {
"name": "python311-3.11.15-slfo.1.1_2.1.aarch64",
"product_id": "python311-3.11.15-slfo.1.1_2.1.aarch64"
}
},
{
"category": "product_version",
"name": "python311-base-3.11.15-slfo.1.1_2.1.aarch64",
"product": {
"name": "python311-base-3.11.15-slfo.1.1_2.1.aarch64",
"product_id": "python311-base-3.11.15-slfo.1.1_2.1.aarch64"
}
},
{
"category": "product_version",
"name": "python311-curses-3.11.15-slfo.1.1_2.1.aarch64",
"product": {
"name": "python311-curses-3.11.15-slfo.1.1_2.1.aarch64",
"product_id": "python311-curses-3.11.15-slfo.1.1_2.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libpython3_11-1_0-3.11.15-slfo.1.1_2.1.ppc64le",
"product": {
"name": "libpython3_11-1_0-3.11.15-slfo.1.1_2.1.ppc64le",
"product_id": "libpython3_11-1_0-3.11.15-slfo.1.1_2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python311-3.11.15-slfo.1.1_2.1.ppc64le",
"product": {
"name": "python311-3.11.15-slfo.1.1_2.1.ppc64le",
"product_id": "python311-3.11.15-slfo.1.1_2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python311-base-3.11.15-slfo.1.1_2.1.ppc64le",
"product": {
"name": "python311-base-3.11.15-slfo.1.1_2.1.ppc64le",
"product_id": "python311-base-3.11.15-slfo.1.1_2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "python311-curses-3.11.15-slfo.1.1_2.1.ppc64le",
"product": {
"name": "python311-curses-3.11.15-slfo.1.1_2.1.ppc64le",
"product_id": "python311-curses-3.11.15-slfo.1.1_2.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libpython3_11-1_0-3.11.15-slfo.1.1_2.1.s390x",
"product": {
"name": "libpython3_11-1_0-3.11.15-slfo.1.1_2.1.s390x",
"product_id": "libpython3_11-1_0-3.11.15-slfo.1.1_2.1.s390x"
}
},
{
"category": "product_version",
"name": "python311-3.11.15-slfo.1.1_2.1.s390x",
"product": {
"name": "python311-3.11.15-slfo.1.1_2.1.s390x",
"product_id": "python311-3.11.15-slfo.1.1_2.1.s390x"
}
},
{
"category": "product_version",
"name": "python311-base-3.11.15-slfo.1.1_2.1.s390x",
"product": {
"name": "python311-base-3.11.15-slfo.1.1_2.1.s390x",
"product_id": "python311-base-3.11.15-slfo.1.1_2.1.s390x"
}
},
{
"category": "product_version",
"name": "python311-curses-3.11.15-slfo.1.1_2.1.s390x",
"product": {
"name": "python311-curses-3.11.15-slfo.1.1_2.1.s390x",
"product_id": "python311-curses-3.11.15-slfo.1.1_2.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libpython3_11-1_0-3.11.15-slfo.1.1_2.1.x86_64",
"product": {
"name": "libpython3_11-1_0-3.11.15-slfo.1.1_2.1.x86_64",
"product_id": "libpython3_11-1_0-3.11.15-slfo.1.1_2.1.x86_64"
}
},
{
"category": "product_version",
"name": "python311-3.11.15-slfo.1.1_2.1.x86_64",
"product": {
"name": "python311-3.11.15-slfo.1.1_2.1.x86_64",
"product_id": "python311-3.11.15-slfo.1.1_2.1.x86_64"
}
},
{
"category": "product_version",
"name": "python311-base-3.11.15-slfo.1.1_2.1.x86_64",
"product": {
"name": "python311-base-3.11.15-slfo.1.1_2.1.x86_64",
"product_id": "python311-base-3.11.15-slfo.1.1_2.1.x86_64"
}
},
{
"category": "product_version",
"name": "python311-curses-3.11.15-slfo.1.1_2.1.x86_64",
"product": {
"name": "python311-curses-3.11.15-slfo.1.1_2.1.x86_64",
"product_id": "python311-curses-3.11.15-slfo.1.1_2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.1",
"product": {
"name": "SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libpython3_11-1_0-3.11.15-slfo.1.1_2.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.aarch64"
},
"product_reference": "libpython3_11-1_0-3.11.15-slfo.1.1_2.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libpython3_11-1_0-3.11.15-slfo.1.1_2.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.ppc64le"
},
"product_reference": "libpython3_11-1_0-3.11.15-slfo.1.1_2.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libpython3_11-1_0-3.11.15-slfo.1.1_2.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.s390x"
},
"product_reference": "libpython3_11-1_0-3.11.15-slfo.1.1_2.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libpython3_11-1_0-3.11.15-slfo.1.1_2.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.x86_64"
},
"product_reference": "libpython3_11-1_0-3.11.15-slfo.1.1_2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-3.11.15-slfo.1.1_2.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.aarch64"
},
"product_reference": "python311-3.11.15-slfo.1.1_2.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-3.11.15-slfo.1.1_2.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.ppc64le"
},
"product_reference": "python311-3.11.15-slfo.1.1_2.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-3.11.15-slfo.1.1_2.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.s390x"
},
"product_reference": "python311-3.11.15-slfo.1.1_2.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-3.11.15-slfo.1.1_2.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.x86_64"
},
"product_reference": "python311-3.11.15-slfo.1.1_2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-base-3.11.15-slfo.1.1_2.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.aarch64"
},
"product_reference": "python311-base-3.11.15-slfo.1.1_2.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-base-3.11.15-slfo.1.1_2.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.ppc64le"
},
"product_reference": "python311-base-3.11.15-slfo.1.1_2.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-base-3.11.15-slfo.1.1_2.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.s390x"
},
"product_reference": "python311-base-3.11.15-slfo.1.1_2.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-base-3.11.15-slfo.1.1_2.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.x86_64"
},
"product_reference": "python311-base-3.11.15-slfo.1.1_2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-curses-3.11.15-slfo.1.1_2.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.aarch64"
},
"product_reference": "python311-curses-3.11.15-slfo.1.1_2.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-curses-3.11.15-slfo.1.1_2.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.ppc64le"
},
"product_reference": "python311-curses-3.11.15-slfo.1.1_2.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-curses-3.11.15-slfo.1.1_2.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.s390x"
},
"product_reference": "python311-curses-3.11.15-slfo.1.1_2.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python311-curses-3.11.15-slfo.1.1_2.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.x86_64"
},
"product_reference": "python311-curses-3.11.15-slfo.1.1_2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-1299",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-1299"
}
],
"notes": [
{
"category": "general",
"text": "The \nemail module, specifically the \"BytesGenerator\" class, didn\u0027t properly quote newlines for email headers when \nserializing an email message allowing for header injection when an email\n is serialized. This is only applicable if using \"LiteralHeader\" writing headers that don\u0027t respect email folding rules, the new behavior will reject the incorrectly folded headers in \"BytesGenerator\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-1299",
"url": "https://www.suse.com/security/cve/CVE-2026-1299"
},
{
"category": "external",
"summary": "SUSE Bug 1257181 for CVE-2026-1299",
"url": "https://bugzilla.suse.com/1257181"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-31T09:13:02Z",
"details": "important"
}
],
"title": "CVE-2026-1299"
},
{
"cve": "CVE-2026-2297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-2297"
}
],
"notes": [
{
"category": "general",
"text": "The import hook in CPython that handles legacy *.pyc files (SourcelessFileLoader) is incorrectly handled in FileLoader (a base class) and so does not use io.open_code() to read the .pyc files. sys.audit handlers for this audit event therefore do not fire.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-2297",
"url": "https://www.suse.com/security/cve/CVE-2026-2297"
},
{
"category": "external",
"summary": "SUSE Bug 1259240 for CVE-2026-2297",
"url": "https://bugzilla.suse.com/1259240"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:libpython3_11-1_0-3.11.15-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:python311-3.11.15-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:python311-base-3.11.15-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:python311-curses-3.11.15-slfo.1.1_2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-31T09:13:02Z",
"details": "moderate"
}
],
"title": "CVE-2026-2297"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…