{"affected":[{"ecosystem_specific":{"binaries":[{"micropython":"1.26.0-bp160.1.1","mpremote":"1.26.0-bp160.1.1","mpy-tools":"1.26.0-bp160.1.1"}]},"package":{"ecosystem":"openSUSE:Leap 16.0","name":"micropython","purl":"pkg:rpm/opensuse/micropython&distro=openSUSE%20Leap%2016.0"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.26.0-bp160.1.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for micropython fixes the following issues:\n\nChanges in micropython:\n\n- Build with mbedtls-3.6.5 instead of bundled 3.6.2 to fix CVE-2025-59438\n\nVersion 1.26.0:\n\n  * Added machine.I2CTarget for creating I2C target devices on multiple ports.\n  * New MCU support: STM32N6xx (800 MHz, ML accel) & ESP32-C2 (WiFi + BLE).\n  * Major float accuracy boost (~28% → ~98%), constant folding in compiler.\n  * Optimized native/Viper emitters; reduced heap use for slices.\n  * Time functions standardized (1970–2099); new boards across ESP32, SAMD, STM32, Zephyr.\n  * ESP32: ESP-IDF 5.4.2, flash auto-detect, PCNT class, LAN8670 PHY.\n  * RP2: compressed errors, better lightsleep, hard IRQ timers.\n  * Zephyr v4.0.0: PWM, SoftI2C/SPI, BLE runtime services, boot.py/main.py support.\n  * mpremote adds fs tree, improved df, portable config paths.\n  * Updated lwIP, LittleFS, libhydrogen, stm32lib; expanded hardware/CI tests.\n","id":"openSUSE-SU-2025-20035-1","modified":"2025-11-10T15:52:16Z","published":"2025-11-10T15:52:16Z","references":[{"type":"ADVISORY","url":null},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-59438"}],"related":["CVE-2025-59438"],"summary":"Security update for micropython","upstream":["CVE-2025-59438"]}