OVAL Reference oval:org.opensuse.security:def:2569

Oval Definition:

oval:org.opensuse.security:def:2569

Revision Date:	2020-12-02	Version:	1
Title:	Security update for python-waitress (Moderate)
Description:	This update for python-waitress to 1.4.3 fixes the following security issues: - CVE-2019-16785: HTTP request smuggling through LF vs CRLF handling (bsc#1161088). - CVE-2019-16786: HTTP request smuggling through invalid Transfer-Encoding (bsc#1161089). - CVE-2019-16789: HTTP request smuggling through invalid whitespace characters (bsc#1160790). - CVE-2019-16792: HTTP request smuggling by sending the Content-Length header twice (bsc#1161670).
Family:	unix	Class:	patch
Status:		Reference(s):	1051510 1054914 1055117 1061840 1065600 1065729 1071995 1082555 1104967 1109158 1113722 1114279 1119086 1122794 1123034 1127988 1130840 1131291 1131304 1133037 1137069 1137792 1137865 1137959 1138425 1138464 1138614 1139959 1140155 1141013 1141853 1142076 1142635 1145092 1145383 1146042 1146519 1146540 1146569 1146571 1146572 1146664 1146702 1148133 1148712 1148868 1149313 1149446 1149555 1149651 1149955 1150003 1150250 1150381 1150423 1151350 1151610 1151667 1151680 1151891 1151955 1152024 1152025 1152026 1152161 1152325 1152457 1152460 1152466 1152972 1152974 1152975 1153238 1160790 1161088 1161089 1161670 1178671 CVE-2017-18595 CVE-2018-20852 CVE-2019-10208 CVE-2019-11459 CVE-2019-11597 CVE-2019-11707 CVE-2019-13012 CVE-2019-14806 CVE-2019-14821 CVE-2019-15142 CVE-2019-15143 CVE-2019-15144 CVE-2019-15145 CVE-2019-15291 CVE-2019-1547 CVE-2019-1563 CVE-2019-16056 CVE-2019-16785 CVE-2019-16786 CVE-2019-16789 CVE-2019-16792 CVE-2019-16935 CVE-2019-9506 CVE-2019-9947 CVE-2020-12321 SUSE-SU-2019:1629-1 SUSE-SU-2019:1648-1 SUSE-SU-2019:1773-1 SUSE-SU-2019:1833-1 SUSE-SU-2019:2114-1 SUSE-SU-2019:2228-1 SUSE-SU-2019:2308-1 SUSE-SU-2019:2452-1 SUSE-SU-2019:2561-1 SUSE-SU-2019:2706-1 SUSE-SU-2019:2743-1 SUSE-SU-2020:3269-1 SUSE-SU-2020:3330-1
Platform(s):	SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise High Availability 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Package Hub for SUSE Linux Enterprise 12	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information python-keystoneclient-1.0.0-14 is installed OR python-keystoneclient-doc-1.0.0-14 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information ImageMagick-6.8.8.1-5 is installed OR libMagick++-6_Q16-3-6.8.8.1-5 is installed OR libMagickCore-6_Q16-1-6.8.8.1-5 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-5 is installed OR libMagickWand-6_Q16-1-6.8.8.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information MozillaFirefox-45.7.0esr-99 is installed OR MozillaFirefox-translations-45.7.0esr-99 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information MozillaFirefox-45.5.0esr-88 is installed OR MozillaFirefox-translations-45.5.0esr-88 is installed OR libfreebl3-3.21.3-50 is installed OR libfreebl3-32bit-3.21.3-50 is installed OR libsoftokn3-3.21.3-50 is installed OR libsoftokn3-32bit-3.21.3-50 is installed OR mozilla-nss-3.21.3-50 is installed OR mozilla-nss-32bit-3.21.3-50 is installed OR mozilla-nss-certs-3.21.3-50 is installed OR mozilla-nss-certs-32bit-3.21.3-50 is installed OR mozilla-nss-sysinit-3.21.3-50 is installed OR mozilla-nss-sysinit-32bit-3.21.3-50 is installed OR mozilla-nss-tools-3.21.3-50 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libXext6-1.3.2-4.3 is installed OR libXext6-32bit-1.3.2-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND haproxy-1.6.5-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND Package Information libpacemaker3-1.1.16-4 is installed OR pacemaker-1.1.16-4 is installed OR pacemaker-cli-1.1.16-4 is installed OR pacemaker-cts-1.1.16-4 is installed OR pacemaker-remote-1.1.16-4 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP4 is installed AND Package Information libpacemaker3-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-cli-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-cts-1.1.19+20180928.0d2680780-1 is installed OR pacemaker-remote-1.1.19+20180928.0d2680780-1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 is installed AND haproxy-1.8.17~git0.e89d25b2-3.9 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 SP1 is installed AND Package Information cluster-md-kmp-default-4.12.14-197.7 is installed OR dlm-kmp-default-4.12.14-197.7 is installed OR gfs2-kmp-default-4.12.14-197.7 is installed OR kernel-default-4.12.14-197.7 is installed OR ocfs2-kmp-default-4.12.14-197.7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND Package Information python-waitress-1.4.3-3.3 is installed OR python3-waitress-1.4.3-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information libpmi0-17.11.7-6.3 is installed OR libslurm32-17.11.7-6.3 is installed OR perl-slurm-17.11.7-6.3 is installed OR slurm-17.11.7-6.3 is installed OR slurm-auth-none-17.11.7-6.3 is installed OR slurm-config-17.11.7-6.3 is installed OR slurm-devel-17.11.7-6.3 is installed OR slurm-doc-17.11.7-6.3 is installed OR slurm-lua-17.11.7-6.3 is installed OR slurm-munge-17.11.7-6.3 is installed OR slurm-node-17.11.7-6.3 is installed OR slurm-pam_slurm-17.11.7-6.3 is installed OR slurm-plugins-17.11.7-6.3 is installed OR slurm-slurmdbd-17.11.7-6.3 is installed OR slurm-sql-17.11.7-6.3 is installed OR slurm-torque-17.11.7-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information libslurm32-17.11.13-6.18 is installed OR slurm-17.11.13-6.18 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information libopenssl0_9_8-0.9.8j-59 is installed OR libopenssl0_9_8-32bit-0.9.8j-59 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information libopenssl-1_0_0-devel-1.0.2p-3.8 is installed OR libopenssl1_0_0-1.0.2p-3.8 is installed OR openssl-1_0_0-1.0.2p-3.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.4 is installed OR reiserfs-kmp-default-4.12.14-197.4 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-25.13 is installed OR kernel-default-livepatch-4.12.14-25.13 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information MozillaFirefox-60.7.1-3.45 is installed OR MozillaFirefox-branding-upstream-60.7.1-3.45 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information jakarta-commons-fileupload-1.1.1-4.3 is installed OR jakarta-commons-fileupload-javadoc-1.1.1-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information rsyslog-8.33.1-3.3 is installed OR rsyslog-module-gssapi-8.33.1-3.3 is installed OR rsyslog-module-mysql-8.33.1-3.3 is installed OR rsyslog-module-pgsql-8.33.1-3.3 is installed OR rsyslog-module-relp-8.33.1-3.3 is installed OR rsyslog-module-snmp-8.33.1-3.3 is installed OR rsyslog-module-udpspoof-8.33.1-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information util-linux-systemd-2.33.1-4.5 is installed OR uuidd-2.33.1-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php7-7.0.7-25.1 is installed OR php7-7.0.7-25.1 is installed OR php7-bcmath-7.0.7-25.1 is installed OR php7-bz2-7.0.7-25.1 is installed OR php7-calendar-7.0.7-25.1 is installed OR php7-ctype-7.0.7-25.1 is installed OR php7-curl-7.0.7-25.1 is installed OR php7-dba-7.0.7-25.1 is installed OR php7-dom-7.0.7-25.1 is installed OR php7-enchant-7.0.7-25.1 is installed OR php7-exif-7.0.7-25.1 is installed OR php7-fastcgi-7.0.7-25.1 is installed OR php7-fileinfo-7.0.7-25.1 is installed OR php7-fpm-7.0.7-25.1 is installed OR php7-ftp-7.0.7-25.1 is installed OR php7-gd-7.0.7-25.1 is installed OR php7-gettext-7.0.7-25.1 is installed OR php7-gmp-7.0.7-25.1 is installed OR php7-iconv-7.0.7-25.1 is installed OR php7-imap-7.0.7-25.1 is installed OR php7-intl-7.0.7-25.1 is installed OR php7-json-7.0.7-25.1 is installed OR php7-ldap-7.0.7-25.1 is installed OR php7-mbstring-7.0.7-25.1 is installed OR php7-mcrypt-7.0.7-25.1 is installed OR php7-mysql-7.0.7-25.1 is installed OR php7-odbc-7.0.7-25.1 is installed OR php7-opcache-7.0.7-25.1 is installed OR php7-openssl-7.0.7-25.1 is installed OR php7-pcntl-7.0.7-25.1 is installed OR php7-pdo-7.0.7-25.1 is installed OR php7-pear-7.0.7-25.1 is installed OR php7-pear-Archive_Tar-7.0.7-25.1 is installed OR php7-pgsql-7.0.7-25.1 is installed OR php7-phar-7.0.7-25.1 is installed OR php7-posix-7.0.7-25.1 is installed OR php7-pspell-7.0.7-25.1 is installed OR php7-shmop-7.0.7-25.1 is installed OR php7-snmp-7.0.7-25.1 is installed OR php7-soap-7.0.7-25.1 is installed OR php7-sockets-7.0.7-25.1 is installed OR php7-sqlite-7.0.7-25.1 is installed OR php7-sysvmsg-7.0.7-25.1 is installed OR php7-sysvsem-7.0.7-25.1 is installed OR php7-sysvshm-7.0.7-25.1 is installed OR php7-tokenizer-7.0.7-25.1 is installed OR php7-wddx-7.0.7-25.1 is installed OR php7-xmlreader-7.0.7-25.1 is installed OR php7-xmlrpc-7.0.7-25.1 is installed OR php7-xmlwriter-7.0.7-25.1 is installed OR php7-xsl-7.0.7-25.1 is installed OR php7-zip-7.0.7-25.1 is installed OR php7-zlib-7.0.7-25.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information apache2-mod_php7-7.2.5-4.3 is installed OR php7-7.2.5-4.3 is installed OR php7-bcmath-7.2.5-4.3 is installed OR php7-bz2-7.2.5-4.3 is installed OR php7-calendar-7.2.5-4.3 is installed OR php7-ctype-7.2.5-4.3 is installed OR php7-curl-7.2.5-4.3 is installed OR php7-dba-7.2.5-4.3 is installed OR php7-devel-7.2.5-4.3 is installed OR php7-dom-7.2.5-4.3 is installed OR php7-enchant-7.2.5-4.3 is installed OR php7-exif-7.2.5-4.3 is installed OR php7-fastcgi-7.2.5-4.3 is installed OR php7-fileinfo-7.2.5-4.3 is installed OR php7-fpm-7.2.5-4.3 is installed OR php7-ftp-7.2.5-4.3 is installed OR php7-gd-7.2.5-4.3 is installed OR php7-gettext-7.2.5-4.3 is installed OR php7-gmp-7.2.5-4.3 is installed OR php7-iconv-7.2.5-4.3 is installed OR php7-intl-7.2.5-4.3 is installed OR php7-json-7.2.5-4.3 is installed OR php7-ldap-7.2.5-4.3 is installed OR php7-mbstring-7.2.5-4.3 is installed OR php7-mysql-7.2.5-4.3 is installed OR php7-odbc-7.2.5-4.3 is installed OR php7-opcache-7.2.5-4.3 is installed OR php7-openssl-7.2.5-4.3 is installed OR php7-pcntl-7.2.5-4.3 is installed OR php7-pdo-7.2.5-4.3 is installed OR php7-pear-7.2.5-4.3 is installed OR php7-pear-Archive_Tar-7.2.5-4.3 is installed OR php7-pgsql-7.2.5-4.3 is installed OR php7-phar-7.2.5-4.3 is installed OR php7-posix-7.2.5-4.3 is installed OR php7-shmop-7.2.5-4.3 is installed OR php7-snmp-7.2.5-4.3 is installed OR php7-soap-7.2.5-4.3 is installed OR php7-sockets-7.2.5-4.3 is installed OR php7-sqlite-7.2.5-4.3 is installed OR php7-sysvmsg-7.2.5-4.3 is installed OR php7-sysvsem-7.2.5-4.3 is installed OR php7-sysvshm-7.2.5-4.3 is installed OR php7-tokenizer-7.2.5-4.3 is installed OR php7-wddx-7.2.5-4.3 is installed OR php7-xmlreader-7.2.5-4.3 is installed OR php7-xmlrpc-7.2.5-4.3 is installed OR php7-xmlwriter-7.2.5-4.3 is installed OR php7-xsl-7.2.5-4.3 is installed OR php7-zip-7.2.5-4.3 is installed OR php7-zlib-7.2.5-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information MozillaFirefox-31.1.0esr-1 is installed OR MozillaFirefox-translations-31.1.0esr-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information fetchmail-6.3.26-12 is installed OR fetchmailconf-6.3.26-12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND mozilla-nspr-4.12-15 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND osc-0.151.0-8.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND libmspack-devel-0.4-10.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND telepathy-idle-0.2.0-1.62 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.19 is installed OR kernel-default-extra-4.12.14-25.19 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.4 is installed OR kernel-default-extra-4.12.14-197.4 is installed
Definition Synopsis
SUSE Package Hub for SUSE Linux Enterprise 12 is installed AND Package Information chromedriver-54.0.2840.59-109 is installed OR chromium-54.0.2840.59-109 is installed OR chromium-ffmpegsumo-54.0.2840.59-109 is installed

BACK