{"affected":[{"ecosystem_specific":{"binaries":[{"libpython3_6m1_0":"3.6.15-150000.3.138.1","python3":"3.6.15-150000.3.138.1","python3-base":"3.6.15-150000.3.138.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Micro 5.1","name":"python3","purl":"pkg:rpm/suse/python3&distro=SUSE%20Linux%20Enterprise%20Micro%205.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.6.15-150000.3.138.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libpython3_6m1_0":"3.6.15-150000.3.138.1","python3":"3.6.15-150000.3.138.1","python3-base":"3.6.15-150000.3.138.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Micro 5.1","name":"python3-core","purl":"pkg:rpm/suse/python3-core&distro=SUSE%20Linux%20Enterprise%20Micro%205.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.6.15-150000.3.138.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for python3 fixes the following issues:\n\n- CVE-2023-27043: Fixed incorrectly parses e-mail addresses which contain a special character (bsc#1210638).\n- CVE-2022-48566: Use CRYPTO_memcmp() for compare_digest (bsc#1214691).\n","id":"SUSE-SU-2024:0464-1","modified":"2024-02-14T08:21:27Z","published":"2024-02-14T08:21:27Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2024/suse-su-20240464-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1210638"},{"type":"REPORT","url":"https://bugzilla.suse.com/1214691"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-48566"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-27043"}],"related":["CVE-2022-48566","CVE-2023-27043"],"summary":"Security update for python3","upstream":["CVE-2022-48566","CVE-2023-27043"]}