USN-6941-1
See a problem?- Source
- https://ubuntu.com/security/notices/USN-6941-1
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6941-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/USN-6941-1
- Related
- Published
- 2024-08-01T11:32:50.463367Z
- Modified
- 2024-08-01T11:32:50.463367Z
- Summary
- python3.12 vulnerability
- Details
-
It was discovered that the Python ipaddress module contained incorrect information about which IP address ranges were considered “private” or “globally reachable”. This could possibly result in applications applying incorrect security policies.
- References
Affected packages
Ubuntu:24.04:LTS / python3.12
Package
- Name
- python3.12
- Purl
- pkg:deb/ubuntu/python3.12@3.12.3-1ubuntu0.1?arch=src?distro=noble
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.12.3-1ubuntu0.1
Affected versions
3.*
3.12.0-1
3.12.0-5
3.12.0-6
3.12.0-7
3.12.1-2
3.12.2-1
3.12.2-4build3
3.12.2-4build4
3.12.2-5ubuntu3
3.12.3-1
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"python3.12-dbg": "3.12.3-1ubuntu0.1",
"libpython3.12t64": "3.12.3-1ubuntu0.1",
"python3.12-doc": "3.12.3-1ubuntu0.1",
"python3.12": "3.12.3-1ubuntu0.1",
"python3.12-minimal": "3.12.3-1ubuntu0.1",
"python3.12-nopie": "3.12.3-1ubuntu0.1",
"libpython3.12t64-dbg": "3.12.3-1ubuntu0.1",
"libpython3.12-testsuite": "3.12.3-1ubuntu0.1",
"python3.12-examples": "3.12.3-1ubuntu0.1",
"python3.12-dev": "3.12.3-1ubuntu0.1",
"idle-python3.12": "3.12.3-1ubuntu0.1",
"libpython3.12-stdlib": "3.12.3-1ubuntu0.1",
"libpython3.12-minimal": "3.12.3-1ubuntu0.1",
"python3.12-venv": "3.12.3-1ubuntu0.1",
"libpython3.12-dev": "3.12.3-1ubuntu0.1",
"python3.12-full": "3.12.3-1ubuntu0.1"
}
]
}