Oval Definition:oval:org.opensuse.security:def:100321
Revision Date:2021-08-23Version:1
Title: (Moderate)
Description:

This patch updates the Python AWS SDK stack in SLE 15:

General:

# aws-cli

- Version updated to upstream release v1.19.9 For a detailed list of all changes, please refer to the changelog file of this package.

# python-boto3

- Version updated to upstream release 1.17.9 For a detailed list of all changes, please refer to the changelog file of this package.

# python-botocore

- Version updated to upstream release 1.20.9 For a detailed list of all changes, please refer to the changelog file of this package.

# python-urllib3

- Version updated to upstream release 1.25.10 For a detailed list of all changes, please refer to the changelog file of this package.

# python-service_identity

- Added this new package to resolve runtime dependencies for other packages. Version: 18.1.0

# python-trustme

- Added this new package to resolve runtime dependencies for other packages. Version: 0.6.0

Security fixes:

# python-urllib3: - CVE-2020-26137: urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of putrequest() (bsc#1177120)
Family:unixClass:patch
Status:Reference(s):1101357
1102408
1119784
1119785
1119799
1119800
1119801
1138715
1138746
1176389
1177120
1182421
1182422
CVE-2018-18246
CVE-2018-18247
CVE-2018-18248
CVE-2018-18249
CVE-2018-18250
CVE-2020-26137
openSUSE-SU-2020:0067-1
Platform(s):Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Storage 6
SUSE Manager Proxy 4.0
SUSE Manager Server 4.0
SUSE Package Hub for SUSE Linux Enterprise 15 SP1
Product(s):
Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed
  • AND Package Information
  • icingacli-2.7.3-bp151.5.3.1 is installed
  • OR icingaweb2-2.7.3-bp151.5.3.1 is installed
  • OR icingaweb2-common-2.7.3-bp151.5.3.1 is installed
  • OR icingaweb2-vendor-HTMLPurifier-2.7.3-bp151.5.3.1 is installed
  • OR icingaweb2-vendor-JShrink-2.7.3-bp151.5.3.1 is installed
  • OR icingaweb2-vendor-Parsedown-2.7.3-bp151.5.3.1 is installed
  • OR icingaweb2-vendor-dompdf-2.7.3-bp151.5.3.1 is installed
  • OR icingaweb2-vendor-lessphp-2.7.3-bp151.5.3.1 is installed
  • OR icingaweb2-vendor-zf1-2.7.3-bp151.5.3.1 is installed
  • OR php-Icinga-2.7.3-bp151.5.3.1 is installed
    • Definition Synopsis
  • Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM is installed
  • AND Package Information
  • aws-cli-1.19.9-26.1 is installed
  • OR python2-asn1crypto-0.24.0-3.2.1 is installed
  • OR python2-cffi-1.13.2-3.2.5 is installed
  • OR python2-cryptography-2.8-10.1 is installed
  • OR python2-pyasn1-0.4.2-3.2.1 is installed
  • OR python2-pycparser-2.17-3.2.1 is installed
  • OR python2-urllib3-1.25.10-9.14.1 is installed
  • OR python3-asn1crypto-0.24.0-3.2.1 is installed
  • OR python3-boto3-1.17.9-19.1 is installed
  • OR python3-botocore-1.20.9-33.1 is installed
  • OR python3-cffi-1.13.2-3.2.5 is installed
  • OR python3-cryptography-2.8-10.1 is installed
  • OR python3-pyasn1-0.4.2-3.2.1 is installed
  • OR python3-pycparser-2.17-3.2.1 is installed
    • BACK