CVE-2024-0397

EUVD-2024-16193

17.06.2024, 16:15

A defect was discovered in the Python “ssl” module where there is a memory
race condition with the ssl.SSLContext methods “cert_store_stats()” and
“get_ca_certs()”. The race condition can be triggered if the methods are
called at the same time as certificates are loaded into the SSLContext,
such as during the TLS handshake with a certificate directory configured.
This issue is fixed in CPython 3.10.14, 3.11.9, 3.12.3, and 3.13.0a5.

Race Condition

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
PSF	CNA	7.4 HIGH	NETWORK	HIGH	NONE	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 60%

Early Detection

Affected products identified ahead of NVD analysis through intelligence sources.

Vendor	Product	Version	Source
python_software_foundation	cpython	𝑥 < 3.8.20	ADP
python_software_foundation	cpython	3.9.0 ≤ 𝑥 < 3.9.20	ADP
python_software_foundation	cpython	3.10.0 ≤ 𝑥 < 3.10.14	ADP
python_software_foundation	cpython	3.11.0 ≤ 𝑥 < 3.11.9	ADP
python_software_foundation	cpython	3.12.0 ≤ 𝑥 < 3.12.3	ADP
python_software_foundation	cpython	3.13.0a1 ≤ 𝑥 < 3.13.0a5	ADP
python	cpython	𝑥 < 3.8.20	CNA
python	cpython	3.9.0 ≤ 𝑥 < 3.9.20	CNA
python	cpython	3.10.0 ≤ 𝑥 < 3.10.14	CNA
python	cpython	3.11.0 ≤ 𝑥 < 3.11.9	CNA
python	cpython	3.12.0 ≤ 𝑥 < 3.12.3	CNA

Debian Releases

Debian Product

Codename

pypy3

bookworm	no-dsa
bullseye	ignored
bullseye (security)	vulnerable
forky	7.3.20+dfsg-4 fixed
sid	7.3.20+dfsg-4 fixed
trixie	7.3.19+dfsg-2 fixed

python2.7

bookworm	no-dsa
bullseye	vulnerable

python3.11

bookworm	3.11.2-6+deb12u6 no-dsa
bookworm (security)	3.11.2-6+deb12u3 fixed
bullseye	ignored

python3.13

bookworm	no-dsa
bullseye	ignored
forky	3.13.11-1 fixed
sid	3.13.11-1 fixed
trixie	3.13.5-2 fixed

python3.9

bookworm	no-dsa
bullseye	ignored
bullseye (security)	3.9.2-1+deb11u3 fixed

Ubuntu Releases

Ubuntu Product

Codename

python2.7

bionic	needs-triage
focal	needs-triage
jammy	needs-triage
mantic	dne
noble	dne
oracular	dne
plucky	dne
questing	dne
trusty	needs-triage
xenial	needs-triage

python3.4

focal	dne
jammy	dne
mantic	dne
noble	dne
oracular	dne
plucky	dne
questing	dne
trusty	needs-triage

python3.5

focal	dne
jammy	dne
mantic	dne
noble	dne
oracular	dne
plucky	dne
questing	dne
trusty	not-affected
xenial	not-affected

python3.6

bionic	needs-triage
focal	dne
jammy	dne
mantic	dne
noble	dne
oracular	dne
plucky	dne
questing	dne

python3.7

bionic	needs-triage
focal	dne
jammy	dne
mantic	dne
noble	dne
oracular	dne
plucky	dne
questing	dne

python3.8

bionic	needs-triage
focal	Fixed 3.8.10-0ubuntu1~20.04.11 released
jammy	dne
mantic	dne
noble	dne
oracular	dne
plucky	dne
questing	dne

python3.9

focal	needs-triage
jammy	dne
mantic	dne
noble	dne
oracular	dne
plucky	dne
questing	dne

python3.10

focal	dne
jammy	Fixed 3.10.12-1~22.04.5 released
mantic	dne
noble	dne
oracular	dne
plucky	dne
questing	dne

python3.11

focal	dne
jammy	needs-triage
mantic	ignored
noble	dne
oracular	dne
plucky	dne
questing	dne

python3.12

focal	dne
jammy	dne
mantic	ignored
noble	not-affected
oracular	not-affected
plucky	dne
questing	dne

openSUSE / SLES Releases

openSUSE Product

Release

libpython3_11-1_0

suse enterprise desktop 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise desktop 15 SP7	3.11.9-150600.3.3.1 fixed
suse enterprise sap 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise sap 15 SP7	3.11.9-150600.3.3.1 fixed
suse enterprise server 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise server 15 SP7	3.11.9-150600.3.3.1 fixed

libpython3_12-1_0

suse enterprise desktop 15 SP6	3.12.4-150600.3.3.1 fixed
suse enterprise sap 15 SP6	3.12.4-150600.3.3.1 fixed
suse enterprise server 15 SP6	3.12.4-150600.3.3.1 fixed

libpython3_6m1_0

suse enterprise desktop 15 SP5	3.6.15-150300.10.65.1 fixed
suse enterprise desktop 15 SP6	3.6.15-150300.10.65.1 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.65.1 fixed
suse enterprise sap 15 SP5	3.6.15-150300.10.65.1 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.65.1 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.65.1 fixed
suse enterprise server 12 SP3	3.6.15-6.106.1 fixed
suse enterprise server 15 SP3	3.6.15-150300.10.65.1 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.65.1 fixed
suse enterprise server 15 SP5	3.6.15-150300.10.65.1 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.65.1 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.65.1 fixed

libpython3_9-1_0

suse enterprise sap 15 SP5	3.9.19-150300.4.46.1 fixed
suse enterprise server 15 SP5	3.9.19-150300.4.46.1 fixed

python3

suse enterprise desktop 15 SP5	3.6.15-150300.10.65.2 fixed
suse enterprise desktop 15 SP6	3.6.15-150300.10.65.2 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.65.2 fixed
suse enterprise sap 15 SP5	3.6.15-150300.10.65.2 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.65.2 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP3	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP5	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.65.2 fixed

python3-base

suse enterprise desktop 15 SP5	3.6.15-150300.10.65.1 fixed
suse enterprise desktop 15 SP6	3.6.15-150300.10.65.1 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.65.1 fixed
suse enterprise sap 15 SP5	3.6.15-150300.10.65.1 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.65.1 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.65.1 fixed
suse enterprise server 15 SP3	3.6.15-150300.10.65.1 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.65.1 fixed
suse enterprise server 15 SP5	3.6.15-150300.10.65.1 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.65.1 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.65.1 fixed

python3-curses

suse enterprise desktop 15 SP5	3.6.15-150300.10.65.2 fixed
suse enterprise desktop 15 SP6	3.6.15-150300.10.65.2 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.65.2 fixed
suse enterprise sap 15 SP5	3.6.15-150300.10.65.2 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.65.2 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP3	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP5	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.65.2 fixed

python3-dbm

suse enterprise desktop 15 SP5	3.6.15-150300.10.65.2 fixed
suse enterprise desktop 15 SP6	3.6.15-150300.10.65.2 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.65.2 fixed
suse enterprise sap 15 SP5	3.6.15-150300.10.65.2 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.65.2 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP3	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP5	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.65.2 fixed

python3-devel

suse enterprise desktop 15 SP5	3.6.15-150300.10.65.1 fixed
suse enterprise desktop 15 SP6	3.6.15-150300.10.65.1 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.65.1 fixed
suse enterprise sap 15 SP5	3.6.15-150300.10.65.1 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.65.1 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.65.1 fixed
suse enterprise server 15 SP3	3.6.15-150300.10.65.1 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.65.1 fixed
suse enterprise server 15 SP5	3.6.15-150300.10.65.1 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.65.1 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.65.1 fixed

python3-idle

suse enterprise desktop 15 SP5	3.6.15-150300.10.65.2 fixed
suse enterprise desktop 15 SP6	3.6.15-150300.10.65.2 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.65.2 fixed
suse enterprise sap 15 SP5	3.6.15-150300.10.65.2 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.65.2 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP3	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP5	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.65.2 fixed

python3-tk

suse enterprise desktop 15 SP5	3.6.15-150300.10.65.2 fixed
suse enterprise desktop 15 SP6	3.6.15-150300.10.65.2 fixed
suse enterprise desktop 15 SP7	3.6.15-150300.10.65.2 fixed
suse enterprise sap 15 SP5	3.6.15-150300.10.65.2 fixed
suse enterprise sap 15 SP6	3.6.15-150300.10.65.2 fixed
suse enterprise sap 15 SP7	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP3	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP5	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP6	3.6.15-150300.10.65.2 fixed
suse enterprise server 15 SP7	3.6.15-150300.10.65.2 fixed

python3-tools

suse enterprise server 15 SP3	3.6.15-150300.10.65.1 fixed
suse enterprise server 15 SP4	3.6.15-150300.10.65.1 fixed

python311

suse enterprise desktop 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise desktop 15 SP7	3.11.9-150600.3.3.1 fixed
suse enterprise sap 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise sap 15 SP7	3.11.9-150600.3.3.1 fixed
suse enterprise server 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise server 15 SP7	3.11.9-150600.3.3.1 fixed

python311-base

suse enterprise desktop 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise desktop 15 SP7	3.11.9-150600.3.3.1 fixed
suse enterprise sap 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise sap 15 SP7	3.11.9-150600.3.3.1 fixed
suse enterprise server 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise server 15 SP7	3.11.9-150600.3.3.1 fixed

python311-curses

suse enterprise desktop 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise desktop 15 SP7	3.11.9-150600.3.3.1 fixed
suse enterprise sap 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise sap 15 SP7	3.11.9-150600.3.3.1 fixed
suse enterprise server 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise server 15 SP7	3.11.9-150600.3.3.1 fixed

python311-dbm

suse enterprise desktop 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise desktop 15 SP7	3.11.9-150600.3.3.1 fixed
suse enterprise sap 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise sap 15 SP7	3.11.9-150600.3.3.1 fixed
suse enterprise server 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise server 15 SP7	3.11.9-150600.3.3.1 fixed

python311-devel

suse enterprise desktop 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise desktop 15 SP7	3.11.9-150600.3.3.1 fixed
suse enterprise sap 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise sap 15 SP7	3.11.9-150600.3.3.1 fixed
suse enterprise server 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise server 15 SP7	3.11.9-150600.3.3.1 fixed

python311-idle

suse enterprise desktop 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise desktop 15 SP7	3.11.9-150600.3.3.1 fixed
suse enterprise sap 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise sap 15 SP7	3.11.9-150600.3.3.1 fixed
suse enterprise server 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise server 15 SP7	3.11.9-150600.3.3.1 fixed

python311-tk

suse enterprise desktop 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise desktop 15 SP7	3.11.9-150600.3.3.1 fixed
suse enterprise sap 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise sap 15 SP7	3.11.9-150600.3.3.1 fixed
suse enterprise server 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise server 15 SP7	3.11.9-150600.3.3.1 fixed

python311-tools

suse enterprise desktop 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise desktop 15 SP7	3.11.9-150600.3.3.1 fixed
suse enterprise sap 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise sap 15 SP7	3.11.9-150600.3.3.1 fixed
suse enterprise server 15 SP6	3.11.9-150600.3.3.1 fixed
suse enterprise server 15 SP7	3.11.9-150600.3.3.1 fixed

python312

suse enterprise desktop 15 SP6	3.12.4-150600.3.3.1 fixed
suse enterprise sap 15 SP6	3.12.4-150600.3.3.1 fixed
suse enterprise server 15 SP6	3.12.4-150600.3.3.1 fixed

python312-base

suse enterprise desktop 15 SP6	3.12.4-150600.3.3.1 fixed
suse enterprise sap 15 SP6	3.12.4-150600.3.3.1 fixed
suse enterprise server 15 SP6	3.12.4-150600.3.3.1 fixed

python312-curses

suse enterprise desktop 15 SP6	3.12.4-150600.3.3.1 fixed
suse enterprise sap 15 SP6	3.12.4-150600.3.3.1 fixed
suse enterprise server 15 SP6	3.12.4-150600.3.3.1 fixed

python312-dbm

suse enterprise desktop 15 SP6	3.12.4-150600.3.3.1 fixed
suse enterprise sap 15 SP6	3.12.4-150600.3.3.1 fixed
suse enterprise server 15 SP6	3.12.4-150600.3.3.1 fixed

python312-devel

suse enterprise desktop 15 SP6	3.12.4-150600.3.3.1 fixed
suse enterprise sap 15 SP6	3.12.4-150600.3.3.1 fixed
suse enterprise server 15 SP6	3.12.4-150600.3.3.1 fixed

python312-idle

suse enterprise desktop 15 SP6	3.12.4-150600.3.3.1 fixed
suse enterprise sap 15 SP6	3.12.4-150600.3.3.1 fixed
suse enterprise server 15 SP6	3.12.4-150600.3.3.1 fixed

python312-tk

suse enterprise desktop 15 SP6	3.12.4-150600.3.3.1 fixed
suse enterprise sap 15 SP6	3.12.4-150600.3.3.1 fixed
suse enterprise server 15 SP6	3.12.4-150600.3.3.1 fixed

python312-tools

suse enterprise desktop 15 SP6	3.12.4-150600.3.3.1 fixed
suse enterprise sap 15 SP6	3.12.4-150600.3.3.1 fixed
suse enterprise server 15 SP6	3.12.4-150600.3.3.1 fixed

python36

suse enterprise server 12 SP3

3.6.15-6.106.1

fixed

python36-base

suse enterprise server 12 SP3

3.6.15-6.106.1

fixed

python36-curses

suse enterprise server 12 SP3

3.6.15-6.106.1

fixed

python36-dbm

suse enterprise server 12 SP3

3.6.15-6.106.1

fixed

python36-devel

suse enterprise server 12 SP3

3.6.15-6.106.1

fixed

python36-idle

suse enterprise server 12 SP3

3.6.15-6.106.1

fixed

python36-testsuite

suse enterprise server 12 SP3

3.6.15-6.106.1

fixed

python36-tk

suse enterprise server 12 SP3

3.6.15-6.106.1

fixed

python36-tools

suse enterprise server 12 SP3

3.6.15-6.106.1

fixed

python39

suse enterprise sap 15 SP5	3.9.19-150300.4.46.1 fixed
suse enterprise server 15 SP5	3.9.19-150300.4.46.1 fixed

python39-base

suse enterprise sap 15 SP5	3.9.19-150300.4.46.1 fixed
suse enterprise server 15 SP5	3.9.19-150300.4.46.1 fixed

python39-curses

suse enterprise sap 15 SP5	3.9.19-150300.4.46.1 fixed
suse enterprise server 15 SP5	3.9.19-150300.4.46.1 fixed

python39-dbm

suse enterprise sap 15 SP5	3.9.19-150300.4.46.1 fixed
suse enterprise server 15 SP5	3.9.19-150300.4.46.1 fixed

Red Hat Enterprise Linux Releases

Red Hat Product

Release

python-unversioned-command

RHEL 9

0:3.9.21-1.el9_5

fixed

python3

RHEL 9

0:3.9.21-1.el9_5

fixed

python3-debug

RHEL 9

0:3.9.21-1.el9_5

fixed

python3-devel

RHEL 9

0:3.9.21-1.el9_5

fixed

python3-idle

RHEL 9

0:3.9.21-1.el9_5

fixed

python3-libs

RHEL 9

0:3.9.21-1.el9_5

fixed

python3-test

RHEL 9

0:3.9.21-1.el9_5

fixed

python3-tkinter

RHEL 9

0:3.9.21-1.el9_5

fixed

python3.11

RHEL 9

0:3.11.9-7.el9

fixed

python3.11-debug

RHEL 9

0:3.11.9-7.el9

fixed

python3.11-devel

RHEL 9

0:3.11.9-7.el9

fixed

python3.11-idle

RHEL 9

0:3.11.9-7.el9

fixed

python3.11-libs

RHEL 9

0:3.11.9-7.el9

fixed

python3.11-test

RHEL 9

0:3.11.9-7.el9

fixed

python3.11-tkinter

RHEL 9

0:3.11.9-7.el9

fixed

python3.12

RHEL 9

0:3.12.5-2.el9

fixed

python3.12-debug

RHEL 9

0:3.12.5-2.el9

fixed

python3.12-devel

RHEL 9

0:3.12.5-2.el9

fixed

python3.12-idle

RHEL 9

0:3.12.5-2.el9

fixed

python3.12-libs

RHEL 9

0:3.12.5-2.el9

fixed

python3.12-test

RHEL 9

0:3.12.5-2.el9

fixed

python3.12-tkinter

RHEL 9

0:3.12.5-2.el9

fixed

Common Weakness Enumeration

CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
The program contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently.

References

http://www.openwall.com/lists/oss-security/2024/06/17/2

https://github.com/python/cpython/commit/01c37f1d0714f5822d34063ca7180b595abf589d

https://github.com/python/cpython/commit/29c97287d205bf2f410f4895ebce3f43b5160524

https://github.com/python/cpython/commit/37324b421b72b7bc9934e27aba85d48d4773002e

https://github.com/python/cpython/commit/542f3272f56f31ed04e74c40635a913fbc12d286

https://github.com/python/cpython/commit/b228655c227b2ca298a8ffac44d14ce3d22f6faa

https://github.com/python/cpython/commit/bce693111bff906ccf9281c22371331aaff766ab

https://github.com/python/cpython/issues/114572

https://github.com/python/cpython/pull/114573

https://mail.python.org/archives/list/security-announce@python.org/thread/BMAK5BCGKYWNJOACVUSLUF6SFGBIM4VP/

http://www.openwall.com/lists/oss-security/2024/06/17/2

https://github.com/python/cpython/commit/01c37f1d0714f5822d34063ca7180b595abf589d

https://github.com/python/cpython/commit/29c97287d205bf2f410f4895ebce3f43b5160524

https://github.com/python/cpython/commit/37324b421b72b7bc9934e27aba85d48d4773002e

https://github.com/python/cpython/commit/542f3272f56f31ed04e74c40635a913fbc12d286

https://github.com/python/cpython/commit/b228655c227b2ca298a8ffac44d14ce3d22f6faa

https://github.com/python/cpython/commit/bce693111bff906ccf9281c22371331aaff766ab

https://github.com/python/cpython/issues/114572

https://github.com/python/cpython/pull/114573

https://lists.debian.org/debian-lts-announce/2024/12/msg00000.html

https://mail.python.org/archives/list/security-announce@python.org/thread/BMAK5BCGKYWNJOACVUSLUF6SFGBIM4VP/

https://security.netapp.com/advisory/ntap-20250411-0006/