Oval Definition:	oval:org.opensuse.security:def:2592
Revision Date: 2020-12-02 Version: 1 Title: Security update for python-pip (Important) Description: This update for python-pip fixes the following issues: - Fixed a directory traversal in _download_http_url() (bsc#1176262 CVE-2019-20916) Family: unix Class: patch Status: Reference(s): 1107424 1109465 1112438 1115034 1117473 1117951 1118913 1121967 1122842 1123482 1124525 1125689 1129403 1133810 1134616 1138688 1139884 1139885 1139886 1140100 1140102 1140103 1140104 1140105 1140106 1140110 1140111 1140501 1140513 1140520 1140534 1140538 1140543 1140545 1140547 1140549 1140552 1140554 1140664 1140665 1140666 1140667 1140668 1140669 1140673 1140868 1141171 1141322 1142772 1142825 1142832 1142835 1145665 1145692 1146182 1146184 1149292 1149293 1149294 1149295 1149296 1149297 1149298 1149299 1149302 1149303 1149304 1149323 1150003 1150250 1155321 1156275 1156318 1176262 CVE-2018-0737 CVE-2018-11803 CVE-2018-16548 CVE-2019-1010180 CVE-2019-10181 CVE-2019-10182 CVE-2019-10185 CVE-2019-11710 CVE-2019-11714 CVE-2019-11716 CVE-2019-11718 CVE-2019-11720 CVE-2019-11721 CVE-2019-11723 CVE-2019-11724 CVE-2019-11725 CVE-2019-11727 CVE-2019-11728 CVE-2019-11733 CVE-2019-11735 CVE-2019-11736 CVE-2019-11738 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743 CVE-2019-11744 CVE-2019-11746 CVE-2019-11747 CVE-2019-11748 CVE-2019-11749 CVE-2019-11750 CVE-2019-11751 CVE-2019-11752 CVE-2019-11753 CVE-2019-12974 CVE-2019-12975 CVE-2019-12976 CVE-2019-12977 CVE-2019-12978 CVE-2019-12979 CVE-2019-13133 CVE-2019-13134 CVE-2019-13135 CVE-2019-13136 CVE-2019-13137 CVE-2019-13295 CVE-2019-13296 CVE-2019-13297 CVE-2019-13298 CVE-2019-13299 CVE-2019-13300 CVE-2019-13301 CVE-2019-13302 CVE-2019-13303 CVE-2019-13304 CVE-2019-13305 CVE-2019-13306 CVE-2019-13307 CVE-2019-13308 CVE-2019-13309 CVE-2019-13310 CVE-2019-13311 CVE-2019-13391 CVE-2019-13454 CVE-2019-14869 CVE-2019-1547 CVE-2019-1563 CVE-2019-20916 CVE-2019-5736 CVE-2019-8551 CVE-2019-8558 CVE-2019-8559 CVE-2019-8563 CVE-2019-8625 CVE-2019-8674 CVE-2019-8681 CVE-2019-8684 CVE-2019-8686 CVE-2019-8687 CVE-2019-8688 CVE-2019-8689 CVE-2019-8690 CVE-2019-8707 CVE-2019-8710 CVE-2019-8719 CVE-2019-8720 CVE-2019-8726 CVE-2019-8733 CVE-2019-8735 CVE-2019-8743 CVE-2019-8763 CVE-2019-8764 CVE-2019-8765 CVE-2019-8766 CVE-2019-8768 CVE-2019-8769 CVE-2019-8771 CVE-2019-8782 CVE-2019-8783 CVE-2019-8808 CVE-2019-8811 CVE-2019-8812 CVE-2019-8813 CVE-2019-8814 CVE-2019-8815 CVE-2019-8816 CVE-2019-8819 CVE-2019-8820 CVE-2019-8821 CVE-2019-8822 CVE-2019-8823 CVE-2019-9511 CVE-2019-9513 CVE-2019-9811 CVE-2019-9812 SUSE-SU-2019:0195-1 SUSE-SU-2019:0197-1 SUSE-SU-2019:0362-1 SUSE-SU-2019:2033-1 SUSE-SU-2019:2106-1 SUSE-SU-2019:2410-1 SUSE-SU-2019:2473-1 SUSE-SU-2019:2545-1 SUSE-SU-2019:2750-1 SUSE-SU-2019:2902-1 SUSE-SU-2019:2981-1 SUSE-SU-2019:3044-1 SUSE-SU-2020:3565-1 Platform(s): SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Containers 15 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for Rasperry Pi 12 SP2 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information openstack-cinder-2014.2.3.dev13-1 is installed OR openstack-cinder-volume-2014.2.3.dev13-1 is installed OR python-cinder-2014.2.3.dev13-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information colord-1.1.7-2 is installed OR colord-gtk-lang-0.1.25-3 is installed OR colord-lang-1.1.7-2 is installed OR libcolord-gtk1-0.1.25-3 is installed OR libcolord2-1.1.7-2 is installed OR libcolord2-32bit-1.1.7-2 is installed OR libcolorhug2-1.1.7-2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information gegl-0.2.0-10.3 is installed OR gegl-0_2-0.2.0-10.3 is installed OR gegl-0_2-lang-0.2.0-10.3 is installed OR libgegl-0_2-0-0.2.0-10.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libX11-1.6.2-11 is installed OR libX11-6-1.6.2-11 is installed OR libX11-6-32bit-1.6.2-11 is installed OR libX11-data-1.6.2-11 is installed OR libX11-xcb1-1.6.2-11 is installed OR libX11-xcb1-32bit-1.6.2-11 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libcdio14-0.90-6.3 is installed OR libcdio14-32bit-0.90-6.3 is installed OR libiso9660-8-0.90-6.3 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND Package Information libpacemaker3-1.1.15-19 is installed OR pacemaker-1.1.15-19 is installed OR pacemaker-cli-1.1.15-19 is installed OR pacemaker-cts-1.1.15-19 is installed OR pacemaker-remote-1.1.15-19 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND Package Information cluster-md-kmp-default-4.4.73-5 is installed OR dlm-kmp-default-4.4.73-5 is installed OR gfs2-kmp-default-4.4.73-5 is installed OR ocfs2-kmp-default-4.4.73-5 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND libpcreposix0-8.39-8.3 is installed Definition Synopsis SUSE Linux Enterprise High Availability 15 is installed AND Package Information cluster-md-kmp-default-4.12.14-25.3 is installed OR dlm-kmp-default-4.12.14-25.3 is installed OR gfs2-kmp-default-4.12.14-25.3 is installed OR kernel-default-4.12.14-25.3 is installed OR ocfs2-kmp-default-4.12.14-25.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed AND Package Information python-pip-10.0.1-3.6 is installed OR python3-pip-10.0.1-3.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 15 is installed AND docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.9 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information libslurm32-17.11.13-6.18 is installed OR slurm-17.11.13-6.18 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information libopenssl0_9_8-0.9.8j-59 is installed OR libopenssl0_9_8-32bit-0.9.8j-59 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-3.3 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-3.3 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-3.3 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information java-1_8_0-openjdk-1.8.0.212-3.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.212-3.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.212-3.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.212-3.19 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-23-default-2-4 is installed OR kernel-livepatch-SLE15_Update_0-2-4 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_4-default-4-2 is installed OR kernel-livepatch-SLE15-SP1_Update_1-4-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information libsvn_auth_gnome_keyring-1-0-1.10.0-3.3 is installed OR subversion-1.10.0-3.3 is installed OR subversion-python-ctypes-1.10.0-3.3 is installed OR subversion-ruby-1.10.0-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information bzip2-1.0.6-5.3 is installed OR bzip2-doc-1.0.6-5.3 is installed OR libbz2-devel-32bit-1.0.6-5.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information MozillaFirefox-68.6.0-3.75 is installed OR MozillaFirefox-branding-upstream-68.6.0-3.75 is installed OR MozillaFirefox-buildsymbols-68.6.0-3.75 is installed OR MozillaFirefox-devel-68.6.0-3.75 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information freeradius-server-3.0.16-3.3 is installed OR freeradius-server-devel-3.0.16-3.3 is installed OR freeradius-server-krb5-3.0.16-3.3 is installed OR freeradius-server-ldap-3.0.16-3.3 is installed OR freeradius-server-libs-3.0.16-3.3 is installed OR freeradius-server-mysql-3.0.16-3.3 is installed OR freeradius-server-perl-3.0.16-3.3 is installed OR freeradius-server-postgresql-3.0.16-3.3 is installed OR freeradius-server-python-3.0.16-3.3 is installed OR freeradius-server-sqlite-3.0.16-3.3 is installed OR freeradius-server-utils-3.0.16-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information rmt-server-2.3.1-3.3 is installed OR rmt-server-config-2.3.1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 12 is installed AND python3-3.4.1-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information apache2-mod_php7-7.2.5-4.35 is installed OR php7-7.2.5-4.35 is installed OR php7-bcmath-7.2.5-4.35 is installed OR php7-bz2-7.2.5-4.35 is installed OR php7-calendar-7.2.5-4.35 is installed OR php7-ctype-7.2.5-4.35 is installed OR php7-curl-7.2.5-4.35 is installed OR php7-dba-7.2.5-4.35 is installed OR php7-devel-7.2.5-4.35 is installed OR php7-dom-7.2.5-4.35 is installed OR php7-enchant-7.2.5-4.35 is installed OR php7-exif-7.2.5-4.35 is installed OR php7-fastcgi-7.2.5-4.35 is installed OR php7-fileinfo-7.2.5-4.35 is installed OR php7-fpm-7.2.5-4.35 is installed OR php7-ftp-7.2.5-4.35 is installed OR php7-gd-7.2.5-4.35 is installed OR php7-gettext-7.2.5-4.35 is installed OR php7-gmp-7.2.5-4.35 is installed OR php7-iconv-7.2.5-4.35 is installed OR php7-intl-7.2.5-4.35 is installed OR php7-json-7.2.5-4.35 is installed OR php7-ldap-7.2.5-4.35 is installed OR php7-mbstring-7.2.5-4.35 is installed OR php7-mysql-7.2.5-4.35 is installed OR php7-odbc-7.2.5-4.35 is installed OR php7-opcache-7.2.5-4.35 is installed OR php7-openssl-7.2.5-4.35 is installed OR php7-pcntl-7.2.5-4.35 is installed OR php7-pdo-7.2.5-4.35 is installed OR php7-pear-7.2.5-4.35 is installed OR php7-pear-Archive_Tar-7.2.5-4.35 is installed OR php7-pgsql-7.2.5-4.35 is installed OR php7-phar-7.2.5-4.35 is installed OR php7-posix-7.2.5-4.35 is installed OR php7-shmop-7.2.5-4.35 is installed OR php7-snmp-7.2.5-4.35 is installed OR php7-soap-7.2.5-4.35 is installed OR php7-sockets-7.2.5-4.35 is installed OR php7-sodium-7.2.5-4.35 is installed OR php7-sqlite-7.2.5-4.35 is installed OR php7-sysvmsg-7.2.5-4.35 is installed OR php7-sysvsem-7.2.5-4.35 is installed OR php7-sysvshm-7.2.5-4.35 is installed OR php7-tokenizer-7.2.5-4.35 is installed OR php7-wddx-7.2.5-4.35 is installed OR php7-xmlreader-7.2.5-4.35 is installed OR php7-xmlrpc-7.2.5-4.35 is installed OR php7-xmlwriter-7.2.5-4.35 is installed OR php7-xsl-7.2.5-4.35 is installed OR php7-zip-7.2.5-4.35 is installed OR php7-zlib-7.2.5-4.35 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information apache2-mod_php7-7.2.5-4.35 is installed OR php7-7.2.5-4.35 is installed OR php7-bcmath-7.2.5-4.35 is installed OR php7-bz2-7.2.5-4.35 is installed OR php7-calendar-7.2.5-4.35 is installed OR php7-ctype-7.2.5-4.35 is installed OR php7-curl-7.2.5-4.35 is installed OR php7-dba-7.2.5-4.35 is installed OR php7-devel-7.2.5-4.35 is installed OR php7-dom-7.2.5-4.35 is installed OR php7-enchant-7.2.5-4.35 is installed OR php7-exif-7.2.5-4.35 is installed OR php7-fastcgi-7.2.5-4.35 is installed OR php7-fileinfo-7.2.5-4.35 is installed OR php7-fpm-7.2.5-4.35 is installed OR php7-ftp-7.2.5-4.35 is installed OR php7-gd-7.2.5-4.35 is installed OR php7-gettext-7.2.5-4.35 is installed OR php7-gmp-7.2.5-4.35 is installed OR php7-iconv-7.2.5-4.35 is installed OR php7-intl-7.2.5-4.35 is installed OR php7-json-7.2.5-4.35 is installed OR php7-ldap-7.2.5-4.35 is installed OR php7-mbstring-7.2.5-4.35 is installed OR php7-mysql-7.2.5-4.35 is installed OR php7-odbc-7.2.5-4.35 is installed OR php7-opcache-7.2.5-4.35 is installed OR php7-openssl-7.2.5-4.35 is installed OR php7-pcntl-7.2.5-4.35 is installed OR php7-pdo-7.2.5-4.35 is installed OR php7-pear-7.2.5-4.35 is installed OR php7-pear-Archive_Tar-7.2.5-4.35 is installed OR php7-pgsql-7.2.5-4.35 is installed OR php7-phar-7.2.5-4.35 is installed OR php7-posix-7.2.5-4.35 is installed OR php7-shmop-7.2.5-4.35 is installed OR php7-snmp-7.2.5-4.35 is installed OR php7-soap-7.2.5-4.35 is installed OR php7-sockets-7.2.5-4.35 is installed OR php7-sqlite-7.2.5-4.35 is installed OR php7-sysvmsg-7.2.5-4.35 is installed OR php7-sysvsem-7.2.5-4.35 is installed OR php7-sysvshm-7.2.5-4.35 is installed OR php7-tokenizer-7.2.5-4.35 is installed OR php7-wddx-7.2.5-4.35 is installed OR php7-xmlreader-7.2.5-4.35 is installed OR php7-xmlrpc-7.2.5-4.35 is installed OR php7-xmlwriter-7.2.5-4.35 is installed OR php7-xsl-7.2.5-4.35 is installed OR php7-zip-7.2.5-4.35 is installed OR php7-zlib-7.2.5-4.35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND apache2-mod_perl-2.0.8-8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information gtk2-data-2.24.31-7 is installed OR gtk2-lang-2.24.31-7 is installed OR gtk2-tools-2.24.31-7 is installed OR gtk2-tools-32bit-2.24.31-7 is installed OR libgtk-2_0-0-2.24.31-7 is installed OR libgtk-2_0-0-32bit-2.24.31-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND pigz-2.3-5 is installed Definition Synopsis SUSE Linux Enterprise Server for Rasperry Pi 12 SP2 is installed AND Package Information libblkid1-2.28-42.1 is installed OR libfdisk1-2.28-42.1 is installed OR libmount1-2.28-42.1 is installed OR libsmartcols1-2.28-42.1 is installed OR libuuid1-2.28-42.1 is installed OR python-libmount-2.28-42.4 is installed OR util-linux-2.28-42.1 is installed OR util-linux-lang-2.28-42.1 is installed OR util-linux-systemd-2.28-42.3 is installed OR uuidd-2.28-42.3 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information xorg-x11-server-7.6_1.15.2-17.2 is installed OR xorg-x11-server-sdk-7.6_1.15.2-17.2 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND libspice-server-devel-0.12.5-2.2 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND libIlmImf-Imf_2_1-21-32bit-2.1.0-4.5 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.16 is installed OR kernel-default-extra-4.12.14-25.16 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.4 is installed OR kernel-default-extra-4.12.14-197.4 is installed
BACK