{"affected":[{"ecosystem_specific":{"binaries":[{"libpython3_6m1_0":"3.6.15-150000.3.158.1","python3":"3.6.15-150000.3.158.1","python3-base":"3.6.15-150000.3.158.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Micro 5.1","name":"python3","purl":"pkg:rpm/suse/python3&distro=SUSE%20Linux%20Enterprise%20Micro%205.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.6.15-150000.3.158.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libpython3_6m1_0":"3.6.15-150000.3.158.1","python3":"3.6.15-150000.3.158.1","python3-base":"3.6.15-150000.3.158.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Micro 5.1","name":"python3-core","purl":"pkg:rpm/suse/python3-core&distro=SUSE%20Linux%20Enterprise%20Micro%205.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.6.15-150000.3.158.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for python3 fixes the following issues:\n\n- CVE-2024-5642: buffer overread when NPN is used and invalid values are sent to the OpenSSL API. (bsc#1227233)\n","id":"SUSE-SU-2024:3351-1","modified":"2024-09-20T07:58:24Z","published":"2024-09-20T07:58:24Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2024/suse-su-20243351-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1227233"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2024-5642"}],"related":["CVE-2024-5642"],"summary":"Security update for python3","upstream":["CVE-2024-5642"]}