Python -- multiple vulnerabilities found on OPNsense to v22.7.9_3

[Johnwoocs]

Hi,

I have just updated OPNsense to v22.7.9_3 and on running a security audit it shows the following vulnerability discovery:-

***GOT REQUEST TO AUDIT SECURITY***
Currently running OPNsense 22.7.9_3 (amd64/OpenSSL) at Sun Dec 11 11:17:40 HKT 2022
vulnxml file up-to-date
python39-3.9.15_1 is vulnerable:
  Python -- multiple vulnerabilities
  WWW: https://vuxml.FreeBSD.org/freebsd/050eba46-7638-11ed-820d-080027d3a315.html

1 problem(s) in 1 installed package(s) found.
***DONE***

In the case like the above, where can we find a patch to remediate the vulnerability?

Thanks and regards,
John

[allebone]

You have to wait for an update to opnsense. When a problem is found there is a period of time that must pass between a solution being found to mitigate it and then that solution to then make it into the various applications that use it including opnsense so you are being informed of an issue in case its such a problem that you need to make another arrangement because you cannot wait (ie pay someone to code a fix for you immediately because its so critical no waiting is possible). Or like the rest of us you can wait if you are not in that situation.