Oval Definition:	oval:org.opensuse.security:def:4678
Revision Date: 2020-12-02 Version: 1 Title: Security update for python-requests (Moderate) Description: This update for python-requests to version 2.20.1 fixes the following issues: Security issue fixed: - CVE-2018-18074: Fixed an information disclosure vulnerability of the HTTP Authorization header (bsc#1111622). Family: unix Class: patch Status: Reference(s): 1012382 1043912 1044189 1046302 1046306 1046307 1046543 1050244 1051510 1054914 1055014 1055117 1058659 1060463 1064232 1065600 1065729 1068032 1069138 1071995 1077761 1077989 1078720 1080157 1082555 1083647 1083663 1084332 1085042 1085262 1086282 1089663 1090528 1092903 1093389 1094244 1095344 1096748 1097105 1098459 1098822 1099922 1099999 1100000 1100001 1100132 1100369 1101557 1101669 1102346 1102870 1102875 1102877 1102879 1102882 1102896 1103363 1103387 1103421 1103948 1103949 1103961 1104172 1104353 1104824 1105247 1105524 1105536 1105597 1105603 1105672 1105907 1106007 1106016 1106105 1106121 1106170 1106178 1106191 1106229 1106230 1106231 1106233 1106235 1106236 1106237 1106238 1106240 1106291 1106297 1106333 1106369 1106426 1106427 1106464 1106509 1106511 1106594 1106636 1106688 1106697 1106743 1106779 1106800 1106890 1106891 1106892 1106893 1106894 1106896 1106897 1106898 1106899 1106900 1106901 1106902 1106903 1106905 1106906 1106948 1106995 1107008 1107060 1107061 1107065 1107073 1107074 1107078 1107265 1107319 1107320 1107522 1107535 1107689 1107735 1107756 1107870 1107924 1107945 1107966 1108010 1108093 1108243 1108520 1108870 1109160 1109269 1109511 1110348 1111622 1112112 1112113 1112114 1116451 1117195 1117300 1118367 1118368 1121874 1123131 1123455 1124062 1124658 1124869 1127760 1127857 1128220 1128845 1135189 1135228 1137595 1144348 1144352 1148643 1149742 1154091 1156205 1157051 1160790 1160903 1160905 1160968 1161088 1161089 1161168 1161670 1162629 1162632 1163985 1165280 1165289 1168994 1170667 1170713 1171313 1171740 1171924 1172021 1172958 1173307 1173311 1173983 1175070 1175071 1175074 1175193 1175194 1175443 1175626 1175656 1176092 1176674 882383 906079 920344 CVE-2017-3136 CVE-2018-10938 CVE-2018-10940 CVE-2018-1128 CVE-2018-1129 CVE-2018-12896 CVE-2018-13093 CVE-2018-13094 CVE-2018-13095 CVE-2018-14613 CVE-2018-14617 CVE-2018-16658 CVE-2018-16858 CVE-2018-18074 CVE-2018-5741 CVE-2018-6554 CVE-2018-6555 CVE-2019-11703 CVE-2019-11704 CVE-2019-11705 CVE-2019-11706 CVE-2019-14491 CVE-2019-14492 CVE-2019-15939 CVE-2019-16785 CVE-2019-16786 CVE-2019-16789 CVE-2019-16792 CVE-2019-18902 CVE-2019-19956 CVE-2019-6477 CVE-2020-10713 CVE-2020-11984 CVE-2020-11993 CVE-2020-14349 CVE-2020-14350 CVE-2020-1720 CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-2654 CVE-2020-2655 CVE-2020-7059 CVE-2020-7060 CVE-2020-7062 CVE-2020-7063 CVE-2020-7216 CVE-2020-8616 CVE-2020-8617 CVE-2020-8618 CVE-2020-8619 CVE-2020-8620 CVE-2020-8621 CVE-2020-8622 CVE-2020-8623 CVE-2020-8624 CVE-2020-9490 SUSE-SU-2018:2980-1 SUSE-SU-2019:1487-1 SUSE-SU-2019:1495-1 SUSE-SU-2019:2003-1 SUSE-SU-2019:3192-1 SUSE-SU-2020:0213-1 SUSE-SU-2020:0263-1 SUSE-SU-2020:0622-1 SUSE-SU-2020:1532-1 SUSE-SU-2020:2149-1 SUSE-SU-2020:2264-1 SUSE-SU-2020:2344-1 SUSE-SU-2020:2914-1 SUSE-SU-2020:3269-1 Platform(s): SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 5 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND haproxy-1.5.4-2.4.1 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND kernel-zfcpdump-4.4.138-94.39 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information coreutils-8.22-5 is installed OR coreutils-lang-8.22-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information bzip2-1.0.6-27 is installed OR libbz2-1-1.0.6-27 is installed OR libbz2-1-32bit-1.0.6-27 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-28 is installed OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information finch-2.12.0-1 is installed OR libpurple-2.12.0-1 is installed OR libpurple-branding-upstream-2.12.0-1 is installed OR libpurple-lang-2.12.0-1 is installed OR libpurple-plugin-sametime-2.12.0-1 is installed OR libpurple-tcl-2.12.0-1 is installed OR pidgin-2.12.0-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 is installed AND haproxy-1.5.4-2.4.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP1 is installed AND Package Information ctdb-4.2.4-26.2 is installed OR samba-4.2.4-26.2 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND python-PyYAML-3.10-17 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND python-requests-2.11.1-6.28 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP5 is installed AND lighttpd-1.4.35-3 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information avahi-0.6.32-32.3 is installed OR avahi-lang-0.6.32-32.3 is installed OR avahi-utils-0.6.32-32.3 is installed OR libavahi-client3-0.6.32-32.3 is installed OR libavahi-client3-32bit-0.6.32-32.3 is installed OR libavahi-common3-0.6.32-32.3 is installed OR libavahi-common3-32bit-0.6.32-32.3 is installed OR libavahi-core7-0.6.32-32.3 is installed OR libdns_sd-0.6.32-32.3 is installed OR libdns_sd-32bit-0.6.32-32.3 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_44-52_10-default-2-2.1 is installed OR kgraft-patch-3_12_44-52_10-xen-2-2.1 is installed OR kgraft-patch-SLE12_Update_6-2-2.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python-requests-2.20.1-6.3 is installed OR python2-requests-2.20.1-6.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information nodejs10-10.16.3-1.12 is installed OR nodejs10-devel-10.16.3-1.12 is installed OR nodejs10-docs-10.16.3-1.12 is installed OR npm10-10.16.3-1.12 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT is installed AND Package Information xen-4.7.6_04-43.39 is installed OR xen-doc-html-4.7.6_04-43.39 is installed OR xen-libs-4.7.6_04-43.39 is installed OR xen-libs-32bit-4.7.6_04-43.39 is installed OR xen-tools-4.7.6_04-43.39 is installed OR xen-tools-domU-4.7.6_04-43.39 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND libfreebl3-3.15.2-0.3.1 is installed OR libfreebl3-32bit-3.15.2-0.3.1 is installed OR libfreebl3-x86-3.15.2-0.3.1 is installed OR mozilla-nspr-4.10.1-0.3.1 is installed OR mozilla-nspr-32bit-4.10.1-0.3.1 is installed OR mozilla-nspr-x86-4.10.1-0.3.1 is installed OR mozilla-nss-3.15.2-0.3.1 is installed OR mozilla-nss-32bit-3.15.2-0.3.1 is installed OR mozilla-nss-tools-3.15.2-0.3.1 is installed OR mozilla-nss-x86-3.15.2-0.3.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP2 is installed AND libfreebl3-3.15.2-0.3.1 is installed OR libfreebl3-32bit-3.15.2-0.3.1 is installed OR libfreebl3-x86-3.15.2-0.3.1 is installed OR mozilla-nspr-4.10.1-0.3.1 is installed OR mozilla-nspr-32bit-4.10.1-0.3.1 is installed OR mozilla-nspr-x86-4.10.1-0.3.1 is installed OR mozilla-nss-3.15.2-0.3.1 is installed OR mozilla-nss-32bit-3.15.2-0.3.1 is installed OR mozilla-nss-tools-3.15.2-0.3.1 is installed OR mozilla-nss-x86-3.15.2-0.3.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND acpid-1.0.6-91.16.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information openvpn-2.3.2-11.1 is installed OR openvpn-auth-pam-plugin-2.3.2-11.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information cyrus-sasl-2.1.26-7 is installed OR cyrus-sasl-32bit-2.1.26-7 is installed OR cyrus-sasl-crammd5-2.1.26-7 is installed OR cyrus-sasl-crammd5-32bit-2.1.26-7 is installed OR cyrus-sasl-digestmd5-2.1.26-7 is installed OR cyrus-sasl-gssapi-2.1.26-7 is installed OR cyrus-sasl-gssapi-32bit-2.1.26-7 is installed OR cyrus-sasl-otp-2.1.26-7 is installed OR cyrus-sasl-otp-32bit-2.1.26-7 is installed OR cyrus-sasl-plain-2.1.26-7 is installed OR cyrus-sasl-plain-32bit-2.1.26-7 is installed OR cyrus-sasl-saslauthd-2.1.26-7 is installed OR cyrus-sasl-sqlauxprop-2.1.26-7 is installed OR cyrus-sasl-sqlauxprop-32bit-2.1.26-7 is installed OR libsasl2-3-2.1.26-7 is installed OR libsasl2-3-32bit-2.1.26-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND ant-1.9.4-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cyrus-sasl-2.1.26-7 is installed OR cyrus-sasl-32bit-2.1.26-7 is installed OR cyrus-sasl-crammd5-2.1.26-7 is installed OR cyrus-sasl-crammd5-32bit-2.1.26-7 is installed OR cyrus-sasl-digestmd5-2.1.26-7 is installed OR cyrus-sasl-gssapi-2.1.26-7 is installed OR cyrus-sasl-gssapi-32bit-2.1.26-7 is installed OR cyrus-sasl-otp-2.1.26-7 is installed OR cyrus-sasl-otp-32bit-2.1.26-7 is installed OR cyrus-sasl-plain-2.1.26-7 is installed OR cyrus-sasl-plain-32bit-2.1.26-7 is installed OR cyrus-sasl-saslauthd-2.1.26-7 is installed OR cyrus-sasl-sqlauxprop-2.1.26-7 is installed OR cyrus-sasl-sqlauxprop-32bit-2.1.26-7 is installed OR libsasl2-3-2.1.26-7 is installed OR libsasl2-3-32bit-2.1.26-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_44-52_18-default-6-2.2 is installed OR kgraft-patch-3_12_44-52_18-xen-6-2.2 is installed OR kgraft-patch-SLE12_Update_7-6-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information java-11-openjdk-11.0.6.0-3.39 is installed OR java-11-openjdk-demo-11.0.6.0-3.39 is installed OR java-11-openjdk-devel-11.0.6.0-3.39 is installed OR java-11-openjdk-headless-11.0.6.0-3.39 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND perl-YAML-LibYAML-0.38-10 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libecpg6-10.13-4.22 is installed OR libpq5-10.13-4.22 is installed OR libpq5-32bit-10.13-4.22 is installed OR postgresql-12.0.1-8.14 is installed OR postgresql-contrib-12.0.1-8.14 is installed OR postgresql-devel-12.0.1-8.14 is installed OR postgresql-docs-12.0.1-8.14 is installed OR postgresql-plperl-12.0.1-8.14 is installed OR postgresql-plpython-12.0.1-8.14 is installed OR postgresql-pltcl-12.0.1-8.14 is installed OR postgresql-server-12.0.1-8.14 is installed OR postgresql10-10.13-4.22 is installed OR postgresql10-contrib-10.13-4.22 is installed OR postgresql10-devel-10.13-4.22 is installed OR postgresql10-docs-10.13-4.22 is installed OR postgresql10-plperl-10.13-4.22 is installed OR postgresql10-plpython-10.13-4.22 is installed OR postgresql10-pltcl-10.13-4.22 is installed OR postgresql10-server-10.13-4.22 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND Package Information xorg-x11-libX11-devel-7.4-5.11.11.1 is installed OR xorg-x11-libX11-devel-32bit-7.4-5.11.11.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information libvirt-devel-1.0.5.9-0.9.1 is installed OR libvirt-devel-32bit-1.0.5.9-0.9.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information libotr-3.2.0-10.5.1 is installed OR libotr-devel-3.2.0-10.5.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND bind-devel-9.9.5P1-1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information DirectFB-devel-1.7.1-4 is installed OR lib++dfb-devel-1.7.1-4 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information FastCGI-2.4.0-167 is installed OR perl-FastCGI-2.4.0-167 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information libmysqlclient_r18-10.0.26-9.2 is installed OR libmysqlclient_r18-32bit-10.0.26-9.2 is installed OR mariadb-10.0.26-9.2 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information gstreamer-0_10-plugins-good-0.10.31-16.1 is installed OR gstreamer-0_10-plugins-good-lang-0.10.31-16.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.19 is installed OR kernel-default-extra-4.12.14-25.19 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-60.7.0-3.36 is installed OR MozillaThunderbird-translations-common-60.7.0-3.36 is installed OR MozillaThunderbird-translations-other-60.7.0-3.36 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information openconnect-7.08-6.9 is installed OR openconnect-devel-7.08-6.9 is installed OR openconnect-lang-7.08-6.9 is installed
BACK