Oval Definition:oval:org.opensuse.security:def:20191010083
Revision Date:2022-05-22Version:1
Title:CVE-2019-1010083
Description:

The Pallets Project Flask before 1.0 is affected by: unexpected memory usage. The impact is: denial of service. The attack vector is: crafted encoded JSON data. The fixed version is: 1. NOTE: this may overlap CVE-2018-1000656.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2019-1010083
SUSE-SU-2020:1901-1
Mitre CVE-2019-1010083
SUSE CVE-2019-1010083
SUSE-SU-2020:1901-1
Platform(s):SUSE Linux Enterprise Desktop 15
SUSE Linux Enterprise Desktop 15 SP1
SUSE Linux Enterprise High Performance Computing 15
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Basesystem 15
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Server 15
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Storage 6
SUSE Manager Proxy 4.0
SUSE Manager Retail Branch Server 4.0
SUSE Manager Server 4.0
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • Release Information
  • SUSE OpenStack Cloud 8 is installed
  • AND
  • ansible-2.4.6.0-3.9.1 is installed
  • OR ansible1-1.9.6-7.3.1 is installed
  • OR ardana-ansible-8.0+git.1589740980.6c3bcdc-3.73.1 is installed
  • OR ardana-cluster-8.0+git.1585685203.3e71e49-3.36.1 is installed
  • OR ardana-freezer-8.0+git.1586539529.b7d295f-3.21.1 is installed
  • OR ardana-input-model-8.0+git.1589740934.0e0ad61-3.39.1 is installed
  • OR ardana-logging-8.0+git.1591194866.b7375d0-3.24.1 is installed
  • OR ardana-mq-8.0+git.1589715269.62ad6df-3.22.1 is installed
  • OR ardana-neutron-8.0+git.1590756744.ba84abc-3.42.1 is installed
  • OR ardana-octavia-8.0+git.1590100427.cf4cc8f-3.29.1 is installed
  • OR ardana-osconfig-8.0+git.1587034587.eac37b8-3.45.1 is installed
  • OR caasp-openstack-heat-templates-1.0+git.1560518045.ad7dc6d-4.18.1 is installed
  • OR documentation-suse-openstack-cloud-installation-8.20200527-1.26.1 is installed
  • OR documentation-suse-openstack-cloud-operations-8.20200527-1.26.1 is installed
  • OR documentation-suse-openstack-cloud-opsconsole-8.20200527-1.26.1 is installed
  • OR documentation-suse-openstack-cloud-planning-8.20200527-1.26.1 is installed
  • OR documentation-suse-openstack-cloud-security-8.20200527-1.26.1 is installed
  • OR documentation-suse-openstack-cloud-supplement-8.20200527-1.26.1 is installed
  • OR documentation-suse-openstack-cloud-upstream-admin-8.20200527-1.26.1 is installed
  • OR documentation-suse-openstack-cloud-upstream-user-8.20200527-1.26.1 is installed
  • OR documentation-suse-openstack-cloud-user-8.20200527-1.26.1 is installed
  • OR grafana-4.6.5-4.9.1 is installed
  • OR kibana-4.6.3-3.3.1 is installed
  • OR openstack-dashboard-12.0.5~dev3-3.26.1 is installed
  • OR openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.15.1 is installed
  • OR openstack-keystone-12.0.4~dev11-5.33.2 is installed
  • OR openstack-keystone-doc-12.0.4~dev11-5.33.2 is installed
  • OR openstack-monasca-agent-2.2.6~dev4-3.18.1 is installed
  • OR openstack-monasca-installer-20190923_16.32-3.12.1 is installed
  • OR openstack-neutron-11.0.9~dev65-3.33.2 is installed
  • OR openstack-neutron-dhcp-agent-11.0.9~dev65-3.33.2 is installed
  • OR openstack-neutron-doc-11.0.9~dev65-3.33.2 is installed
  • OR openstack-neutron-ha-tool-11.0.9~dev65-3.33.2 is installed
  • OR openstack-neutron-l3-agent-11.0.9~dev65-3.33.2 is installed
  • OR openstack-neutron-linuxbridge-agent-11.0.9~dev65-3.33.2 is installed
  • OR openstack-neutron-macvtap-agent-11.0.9~dev65-3.33.2 is installed
  • OR openstack-neutron-metadata-agent-11.0.9~dev65-3.33.2 is installed
  • OR openstack-neutron-metering-agent-11.0.9~dev65-3.33.2 is installed
  • OR openstack-neutron-openvswitch-agent-11.0.9~dev65-3.33.2 is installed
  • OR openstack-neutron-server-11.0.9~dev65-3.33.2 is installed
  • OR openstack-octavia-amphora-image-x86_64-0.1.4-3.12.2 is installed
  • OR python-Django-1.11.23-3.15.1 is installed
  • OR python-Flask-0.12.1-3.3.1 is installed
  • OR python-GitPython-2.1.8-3.3.1 is installed
  • OR python-Pillow-4.2.1-3.5.1 is installed
  • OR python-amqp-2.4.2-3.12.1 is installed
  • OR python-apicapi-1.6.0-3.6.1 is installed
  • OR python-horizon-12.0.5~dev3-3.26.1 is installed
  • OR python-keystone-12.0.4~dev11-5.33.2 is installed
  • OR python-keystoneauth1-3.1.2~dev2-3.3.1 is installed
  • OR python-monasca-agent-2.2.6~dev4-3.18.1 is installed
  • OR python-neutron-11.0.9~dev65-3.33.2 is installed
  • OR python-oslo.messaging-5.30.8-3.11.1 is installed
  • OR python-psutil-5.2.2-3.3.1 is installed
  • OR python-pyroute2-0.4.21-3.3.1 is installed
  • OR python-pysaml2-4.0.2-5.6.1 is installed
  • OR python-tooz-1.58.1-3.3.1 is installed
  • OR python-waitress-1.4.3-3.3.1 is installed
  • OR storm-1.1.3-3.3.1 is installed
  • OR storm-nimbus-1.1.3-3.3.1 is installed
  • OR storm-supervisor-1.1.3-3.3.1 is installed
  • OR venv-openstack-aodh-x86_64-5.1.1~dev7-12.26.2 is installed
  • OR venv-openstack-barbican-x86_64-5.0.2~dev3-12.27.2 is installed
  • OR venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.24.2 is installed
  • OR venv-openstack-cinder-x86_64-11.2.3~dev23-14.27.2 is installed
  • OR venv-openstack-designate-x86_64-5.0.3~dev7-12.25.2 is installed
  • OR venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.22.1 is installed
  • OR venv-openstack-glance-x86_64-15.0.3~dev3-12.25.1 is installed
  • OR venv-openstack-heat-x86_64-9.0.8~dev22-12.27.1 is installed
  • OR venv-openstack-horizon-x86_64-12.0.5~dev3-14.30.1 is installed
  • OR venv-openstack-ironic-x86_64-9.1.8~dev8-12.27.2 is installed
  • OR venv-openstack-keystone-x86_64-12.0.4~dev11-11.28.2 is installed
  • OR venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.26.2 is installed
  • OR venv-openstack-manila-x86_64-5.1.1~dev5-12.31.2 is installed
  • OR venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.22.2 is installed
  • OR venv-openstack-monasca-x86_64-2.2.2~dev1-11.22.3 is installed
  • OR venv-openstack-murano-x86_64-4.0.2~dev2-12.22.1 is installed
  • OR venv-openstack-neutron-x86_64-11.0.9~dev65-13.30.2 is installed
  • OR venv-openstack-nova-x86_64-16.1.9~dev61-11.28.2 is installed
  • OR venv-openstack-octavia-x86_64-1.0.6~dev3-12.27.2 is installed
  • OR venv-openstack-sahara-x86_64-7.0.5~dev4-11.26.2 is installed
  • OR venv-openstack-swift-x86_64-2.15.2_2.15.2_2.15.2~dev32-11.18.1 is installed
  • OR venv-openstack-trove-x86_64-8.0.2~dev2-11.26.1 is installed
  • OR Package Information
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND
  • ansible-2.4.6.0-3.9.1 is installed
  • OR caasp-openstack-heat-templates-1.0+git.1560518045.ad7dc6d-4.18.1 is installed
  • OR crowbar-core-5.0+git.1593156248.55bbdb26d-3.41.2 is installed
  • OR crowbar-core-branding-upstream-5.0+git.1593156248.55bbdb26d-3.41.2 is installed
  • OR crowbar-openstack-5.0+git.1593085772.64c4ab43c-4.40.2 is installed
  • OR documentation-suse-openstack-cloud-deployment-8.20200527-1.26.1 is installed
  • OR documentation-suse-openstack-cloud-supplement-8.20200527-1.26.1 is installed
  • OR documentation-suse-openstack-cloud-upstream-admin-8.20200527-1.26.1 is installed
  • OR documentation-suse-openstack-cloud-upstream-user-8.20200527-1.26.1 is installed
  • OR grafana-4.6.5-4.9.1 is installed
  • OR kibana-4.6.3-3.3.1 is installed
  • OR openstack-dashboard-12.0.5~dev3-3.26.1 is installed
  • OR openstack-heat-templates-0.0.0+git.1582270132.8a20477-3.15.1 is installed
  • OR openstack-keystone-12.0.4~dev11-5.33.2 is installed
  • OR openstack-keystone-doc-12.0.4~dev11-5.33.2 is installed
  • OR openstack-monasca-agent-2.2.6~dev4-3.18.1 is installed
  • OR openstack-monasca-installer-20190923_16.32-3.12.1 is installed
  • OR openstack-neutron-11.0.9~dev65-3.33.2 is installed
  • OR openstack-neutron-dhcp-agent-11.0.9~dev65-3.33.2 is installed
  • OR openstack-neutron-doc-11.0.9~dev65-3.33.2 is installed
  • OR openstack-neutron-ha-tool-11.0.9~dev65-3.33.2 is installed
  • OR openstack-neutron-l3-agent-11.0.9~dev65-3.33.2 is installed
  • OR openstack-neutron-linuxbridge-agent-11.0.9~dev65-3.33.2 is installed
  • OR openstack-neutron-macvtap-agent-11.0.9~dev65-3.33.2 is installed
  • OR openstack-neutron-metadata-agent-11.0.9~dev65-3.33.2 is installed
  • OR openstack-neutron-metering-agent-11.0.9~dev65-3.33.2 is installed
  • OR openstack-neutron-openvswitch-agent-11.0.9~dev65-3.33.2 is installed
  • OR openstack-neutron-server-11.0.9~dev65-3.33.2 is installed
  • OR openstack-octavia-amphora-image-x86_64-0.1.4-3.12.2 is installed
  • OR python-Django-1.11.23-3.15.1 is installed
  • OR python-Flask-0.12.1-3.3.1 is installed
  • OR python-Pillow-4.2.1-3.5.1 is installed
  • OR python-amqp-2.4.2-3.12.1 is installed
  • OR python-apicapi-1.6.0-3.6.1 is installed
  • OR python-horizon-12.0.5~dev3-3.26.1 is installed
  • OR python-keystone-12.0.4~dev11-5.33.2 is installed
  • OR python-keystoneauth1-3.1.2~dev2-3.3.1 is installed
  • OR python-monasca-agent-2.2.6~dev4-3.18.1 is installed
  • OR python-neutron-11.0.9~dev65-3.33.2 is installed
  • OR python-oslo.messaging-5.30.8-3.11.1 is installed
  • OR python-psutil-5.2.2-3.3.1 is installed
  • OR python-pyroute2-0.4.21-3.3.1 is installed
  • OR python-pysaml2-4.0.2-5.6.1 is installed
  • OR python-tooz-1.58.1-3.3.1 is installed
  • OR python-waitress-1.4.3-3.3.1 is installed
  • OR ruby2.1-rubygem-activeresource-4.0.0-3.3.1 is installed
  • OR ruby2.1-rubygem-crowbar-client-3.9.2-3.12.1 is installed
  • OR ruby2.1-rubygem-json-1_7-1.7.7-3.3.1 is installed
  • OR ruby2.1-rubygem-puma-2.16.0-3.9.1 is installed
  • OR storm-1.1.3-3.3.1 is installed
  • OR storm-nimbus-1.1.3-3.3.1 is installed
  • OR storm-supervisor-1.1.3-3.3.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND python-Flask is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Module for Basesystem 15 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND python-Flask is not affected
    • Definition Synopsis
  • Release Information
  • SUSE OpenStack Cloud 9 is installed
  • OR SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-Flask is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP1 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP1 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • OR SUSE Linux Enterprise Server 15 SP1 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • OR SUSE Linux Enterprise Storage 6 is installed
  • OR SUSE Manager Proxy 4.0 is installed
  • OR SUSE Manager Retail Branch Server 4.0 is installed
  • OR SUSE Manager Server 4.0 is installed
  • AND python-Flask is not affected
    • BACK