SUSE-SU-2023:4909-1

Advisory lineage Upstream: 1 Downstream: 0

Upstream

CVE-2023-47641

Published: 19 Dec 2023, 15:01

Last modified:04 Feb 2026, 03:53

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

19 Dec 2023, 15:01

Published

Vulnerability first disclosed

04 Feb 2026, 03:53

Last Modified

Vulnerability information updated

Description

Security update for python-aiohttp This update for python-aiohttp fixes the following issues: - CVE-2023-47641: Fixed inconsistent interpretation of the http protocol, if content-length and transport-encoding are in the same header with transport-encoding value of 'chunked*' (bsc#1217174)

Affected Systems

opensuse•python-aiohttp&distro=openSUSE Leap 15.4
< 3.6.0-150100.3.12.1
opensuse•python-aiohttp&distro=openSUSE Leap 15.5
< 3.6.0-150100.3.12.1
suse•python-aiohttp&distro=SUSE Linux Enterprise Module for Public Cloud 15 SP1
< 3.6.0-150100.3.12.1
suse•python-aiohttp&distro=SUSE Linux Enterprise Module for Public Cloud 15 SP2
< 3.6.0-150100.3.12.1
suse•python-aiohttp&distro=SUSE Linux Enterprise Module for Public Cloud 15 SP3
< 3.6.0-150100.3.12.1
suse•python-aiohttp&distro=SUSE Linux Enterprise Module for Public Cloud 15 SP4
< 3.6.0-150100.3.12.1
suse•python-aiohttp&distro=SUSE Linux Enterprise Module for Public Cloud 15 SP5
< 3.6.0-150100.3.12.1

SUSE-SU-2023:4909-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (3)