Oval Definition:oval:org.opensuse.security:def:100032
Revision Date:2021-12-16Version:1
Title: (Moderate)
Description:

This update for python3 fixes the following issues:

- CVE-2021-3426: Fixed information disclosure via pydoc (bsc#1183374). - CVE-2021-3733: Fixed infinitely reading potential HTTP headers after a 100 Continue status response from the server (bsc#1189241). - CVE-2021-3737: Fixed ReDoS in urllib.request (bsc#1189287).

- We do not require python-rpm-macros package (bsc#1180125). - Use versioned python-Sphinx to avoid dependency on other version of Python (bsc#1183858). - Stop providing 'python' symbol, which means python2 currently (bsc#1185588). - Modify Lib/ensurepip/__init__.py to contain the same version numbers as are in reality the ones in the bundled wheels (bsc#1187668).
Family:unixClass:patch
Status:Reference(s):1180125
1183374
1183858
1185588
1187668
1187869
1189241
1189287
CVE-2021-3426
CVE-2021-3630
CVE-2021-3733
CVE-2021-3737
SUSE-SU-2021:2796-1
Platform(s):Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure
SUSE Enterprise Storage 6
Product(s):
Definition Synopsis
  • Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure is installed
  • AND Package Information
  • libpython3_6m1_0-3.6.15-10.9.1 is installed
  • OR python3-3.6.15-10.9.1 is installed
  • OR python3-base-3.6.15-10.9.1 is installed
  • OR python3-curses-3.6.15-10.9.1 is installed
    • Definition Synopsis
  • SUSE Enterprise Storage 6 is installed
  • AND Package Information
  • libdjvulibre-devel-3.5.27-3.19.1 is installed
  • OR libdjvulibre21-3.5.27-3.19.1 is installed
    • BACK