SUSE Package Hub - openSUSE-2026-9

Update Info

openSUSE-2026-9

Security update for python-cbor2

Type: security

Severity: moderate

Issued: 2026-01-12

Description:

This update for python-cbor2 fixes the following issues:

- CVE-2025-68131: Fixed that a attacker-controlled message can read data from previously decoded messages if the decoder is reused across trust boundaries (boo#1255783)

References

CVE: CVE-2025-68131
Bugzilla: 1255783 VUL-0: CVE-2025-68131: python-cbor2: attacker-controlled message can read data from previously decoded messages if the decoder is reused across trust boundaries

Packages

python-cbor2-5.5.1-bp157.2.3.1