-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] python3 ...

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security] python3 (SSA:2023-258-01)

New python3 packages are available for Slackware 15.0 and -current to
fix a security issue.

Here are the details from the Slackware 15.0 ChangeLog:
+--------------------------+
patches/packages/python3-3.9.18-i586-1_slack15.0.txz: Upgraded.
This update fixes a security issue:
Fixed an issue where instances of ssl.SSLSocket were vulnerable to a bypass
of the TLS handshake and included protections (like certificate verification)
and treating sent unencrypted data as if it were post-handshake TLS encrypted
data. Security issue reported by Aapo Oksman; patch by Gregory P. Smith.
For more information, see:
https://www.cve.org/CVERecord?id=CVE-2023-40217
(* Security fix *)
+--------------------------+

tallship on Nostr: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] python3 ...