Oval Definition:oval:org.opensuse.security:def:1549
Revision Date:2021-08-23Version:1
Title:Security update for aws-cli, python-boto3, python-botocore, python-service_identity, python-trustme, python-urllib3 (Moderate)
Description:

This patch updates the Python AWS SDK stack in SLE 15:

General:

# aws-cli

- Version updated to upstream release v1.19.9 For a detailed list of all changes, please refer to the changelog file of this package.

# python-boto3

- Version updated to upstream release 1.17.9 For a detailed list of all changes, please refer to the changelog file of this package.

# python-botocore

- Version updated to upstream release 1.20.9 For a detailed list of all changes, please refer to the changelog file of this package.

# python-urllib3

- Version updated to upstream release 1.25.10 For a detailed list of all changes, please refer to the changelog file of this package.

# python-service_identity

- Added this new package to resolve runtime dependencies for other packages. Version: 18.1.0

# python-trustme

- Added this new package to resolve runtime dependencies for other packages. Version: 0.6.0

Security fixes:

# python-urllib3: - CVE-2020-26137: urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of putrequest() (bsc#1177120)
Family:unixClass:patch
Status:Reference(s):1082318
1102408
1138715
1138746
1140255
1176389
1177120
1182421
1182422
CVE-2008-5519
CVE-2014-8111
CVE-2016-10198
CVE-2016-10199
CVE-2017-5837
CVE-2017-5838
CVE-2017-5839
CVE-2017-5840
CVE-2017-5841
CVE-2017-5842
CVE-2017-5843
CVE-2017-5844
CVE-2017-5845
CVE-2017-5846
CVE-2017-5847
CVE-2017-5848
CVE-2018-11759
CVE-2018-1323
CVE-2019-13132
CVE-2019-13132
CVE-2020-26137
SUSE-SU-2019:1776-1
SUSE-SU-2021:2817-1
Platform(s):SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for CAP 15 SP1
SUSE Linux Enterprise Module for Containers 15
SUSE Linux Enterprise Module for Containers 15 SP1
SUSE Linux Enterprise Module for Desktop Applications 15
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
SUSE Linux Enterprise Module for Desktop Applications 15 SP2
SUSE Linux Enterprise Module for Development Tools 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Public Cloud 15 SP3
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Server 11-SECURITY
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Linux Enterprise Software Development Kit 11 SP2
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Storage 7
SUSE Linux Enterprise Storage 7.1
SUSE Manager Proxy 4.1
SUSE Manager Proxy 4.2
SUSE Manager Retail Branch Server 4.2
SUSE Manager Server 4.1
SUSE Manager Server 4.2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • alsa-1.0.27.2-11 is installed
  • OR libasound2-1.0.27.2-11 is installed
  • OR libasound2-32bit-1.0.27.2-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND autofs-5.0.9-21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed
  • AND Package Information
  • gstreamer-devel-1.16.2-1.53 is installed
  • OR gstreamer-utils-1.16.2-1.53 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Public Cloud 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Server 4.2 is installed
  • AND aws-cli-1.19.9-26.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • libzmq5-4.2.3-3.8 is installed
  • OR zeromq-4.2.3-3.8 is installed
  • OR zeromq-devel-4.2.3-3.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for CAP 15 SP1 is installed
  • AND cf-cli-6.43.0-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 15 is installed
  • AND Package Information
  • containerd-1.2.5-5.13 is installed
  • OR docker-18.09.6_ce-6.17 is installed
  • OR docker-bash-completion-18.09.6_ce-6.17 is installed
  • OR docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed
  • OR docker-runc-1.0.0rc6+gitr3804_2b18fe1d885e-6.18 is installed
  • OR golang-github-docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 15 SP1 is installed
  • AND Package Information
  • containerd-1.2.6-5.16 is installed
  • OR docker-19.03.1_ce-6.26 is installed
  • OR docker-bash-completion-19.03.1_ce-6.26 is installed
  • OR docker-libnetwork-0.7.0.1+gitr2800_fc5a7d91d54c-4.15 is installed
  • OR docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.21 is installed
  • OR golang-github-docker-libnetwork-0.7.0.1+gitr2800_fc5a7d91d54c-4.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 is installed
  • AND Package Information
  • libmodplug-devel-0.3.9-3.3 is installed
  • OR libmodplug1-0.3.9-3.3 is installed
  • OR libopenmpt-0.3.9-3.3 is installed
  • OR libopenmpt-devel-0.3.9-3.3 is installed
  • OR libopenmpt0-0.3.9-3.3 is installed
  • OR libopenmpt_modplug1-0.3.9-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • libtag-devel-1.11.1-4.3 is installed
  • OR libtag_c0-1.11.1-4.3 is installed
  • OR taglib-1.11.1-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 is installed
  • AND Package Information
  • git-2.16.4-3.3 is installed
  • OR git-arch-2.16.4-3.3 is installed
  • OR git-cvs-2.16.4-3.3 is installed
  • OR git-daemon-2.16.4-3.3 is installed
  • OR git-doc-2.16.4-3.3 is installed
  • OR git-email-2.16.4-3.3 is installed
  • OR git-gui-2.16.4-3.3 is installed
  • OR git-svn-2.16.4-3.3 is installed
  • OR git-web-2.16.4-3.3 is installed
  • OR gitk-2.16.4-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • tomcat-9.0.10-3.7 is installed
  • OR tomcat-docs-webapp-9.0.10-3.7 is installed
  • OR tomcat-embed-9.0.10-3.7 is installed
  • OR tomcat-javadoc-9.0.10-3.7 is installed
  • OR tomcat-jsvc-9.0.10-3.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • subversion-1.10.6-3.6 is installed
  • OR subversion-server-1.10.6-3.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND apache2-mod_jk-1.2.43-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 is installed
  • AND Package Information
  • apache2-mod_php7-7.2.5-4.35 is installed
  • OR php7-7.2.5-4.35 is installed
  • OR php7-bcmath-7.2.5-4.35 is installed
  • OR php7-bz2-7.2.5-4.35 is installed
  • OR php7-calendar-7.2.5-4.35 is installed
  • OR php7-ctype-7.2.5-4.35 is installed
  • OR php7-curl-7.2.5-4.35 is installed
  • OR php7-dba-7.2.5-4.35 is installed
  • OR php7-devel-7.2.5-4.35 is installed
  • OR php7-dom-7.2.5-4.35 is installed
  • OR php7-enchant-7.2.5-4.35 is installed
  • OR php7-exif-7.2.5-4.35 is installed
  • OR php7-fastcgi-7.2.5-4.35 is installed
  • OR php7-fileinfo-7.2.5-4.35 is installed
  • OR php7-fpm-7.2.5-4.35 is installed
  • OR php7-ftp-7.2.5-4.35 is installed
  • OR php7-gd-7.2.5-4.35 is installed
  • OR php7-gettext-7.2.5-4.35 is installed
  • OR php7-gmp-7.2.5-4.35 is installed
  • OR php7-iconv-7.2.5-4.35 is installed
  • OR php7-intl-7.2.5-4.35 is installed
  • OR php7-json-7.2.5-4.35 is installed
  • OR php7-ldap-7.2.5-4.35 is installed
  • OR php7-mbstring-7.2.5-4.35 is installed
  • OR php7-mysql-7.2.5-4.35 is installed
  • OR php7-odbc-7.2.5-4.35 is installed
  • OR php7-opcache-7.2.5-4.35 is installed
  • OR php7-openssl-7.2.5-4.35 is installed
  • OR php7-pcntl-7.2.5-4.35 is installed
  • OR php7-pdo-7.2.5-4.35 is installed
  • OR php7-pear-7.2.5-4.35 is installed
  • OR php7-pear-Archive_Tar-7.2.5-4.35 is installed
  • OR php7-pgsql-7.2.5-4.35 is installed
  • OR php7-phar-7.2.5-4.35 is installed
  • OR php7-posix-7.2.5-4.35 is installed
  • OR php7-shmop-7.2.5-4.35 is installed
  • OR php7-snmp-7.2.5-4.35 is installed
  • OR php7-soap-7.2.5-4.35 is installed
  • OR php7-sockets-7.2.5-4.35 is installed
  • OR php7-sodium-7.2.5-4.35 is installed
  • OR php7-sqlite-7.2.5-4.35 is installed
  • OR php7-sysvmsg-7.2.5-4.35 is installed
  • OR php7-sysvsem-7.2.5-4.35 is installed
  • OR php7-sysvshm-7.2.5-4.35 is installed
  • OR php7-tokenizer-7.2.5-4.35 is installed
  • OR php7-wddx-7.2.5-4.35 is installed
  • OR php7-xmlreader-7.2.5-4.35 is installed
  • OR php7-xmlrpc-7.2.5-4.35 is installed
  • OR php7-xmlwriter-7.2.5-4.35 is installed
  • OR php7-xsl-7.2.5-4.35 is installed
  • OR php7-zip-7.2.5-4.35 is installed
  • OR php7-zlib-7.2.5-4.35 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND libksba8-1.3.0-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • ntp-4.2.8p8-14.1 is installed
  • OR ntp-doc-4.2.8p8-14.1 is installed
    • BACK