SUSE-SU-2024:4327-1

Advisory lineage Upstream: 1 Downstream: 0
Upstream
CVE-2024-30251
Published: 16 Dec 2024, 13:14
Last modified:04 Feb 2026, 04:07

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

16 Dec 2024, 13:14
Published
Vulnerability first disclosed
04 Feb 2026, 04:07
Last Modified
Vulnerability information updated

Description

Security update for python-aiohttp This update for python-aiohttp fixes the following issues: - CVE-2024-30251: Fixed infinite loop on specially crafted POST request (bsc#1223726).

Affected Systems

  • opensusepython-aiohttp&distro=openSUSE Leap 15.5

    < 3.9.3-150400.10.30.1

  • opensusepython-aiohttp&distro=openSUSE Leap 15.6

    < 3.9.3-150400.10.30.1

  • susepython-aiohttp&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS

    < 3.9.3-150400.10.30.1

  • susepython-aiohttp&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS

    < 3.9.3-150400.10.30.1

  • susepython-aiohttp&distro=SUSE Linux Enterprise Module for Public Cloud 15 SP4

    < 3.9.3-150400.10.30.1

  • susepython-aiohttp&distro=SUSE Linux Enterprise Module for Python 3 15 SP5

    < 3.9.3-150400.10.30.1

  • susepython-aiohttp&distro=SUSE Linux Enterprise Module for Python 3 15 SP6

    < 3.9.3-150400.10.30.1

  • susepython-aiohttp&distro=SUSE Linux Enterprise Server 15 SP4-LTSS

    < 3.9.3-150400.10.30.1

  • susepython-aiohttp&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4

    < 3.9.3-150400.10.30.1

References (3)