Opened 3 weeks ago
Closed 9 days ago
#838 closed defect (fixed)
Python 3.12.3 vulnerable to CVE-2024-4030
| Reported by: | ascottwwf | Owned by: | |
|---|---|---|---|
| Priority: | normal | Component: | Package |
| Version: | Keywords: | ||
| Cc: |
Description
When using the OSGEO4W installer, Python 3.12.3 is included with QGIS LTR 3.34.7
It has come to my attention that this version of Python is now vulnerable to CVE-2024-4030.
According to the Next version release notes, a fix will be included with Python 3.12.4
Release Notes: https://docs.python.org/3/whatsnew/changelog.html#changelog
This is due to be released tomorrow (Tuesday 4th June 2024): https://peps.python.org/pep-0693/#bugfix-releases
Please could you update the Python version so it is included with the next release of QGIS?
Note:
See TracTickets
for help on using tickets.
