OVAL Reference oval:org.opensuse.security:def:50654

Oval Definition:

oval:org.opensuse.security:def:50654

Revision Date:	2020-12-01	Version:	1
Title:	Security update for python-SQLAlchemy (Important)
Description:	This update for python-SQLAlchemy fixes the following issues: Security issues fixed: - CVE-2019-7164: Fixed SQL Injection via the order_by parameter (bsc#1124593). - CVE-2019-7548: Fixed SQL Injection via the group_by parameter (bsc#1124593).
Family:	unix	Class:	patch
Status:		Reference(s):	1073313 1111388 1114592 1114845 1124593 1133375 1135254 1141844 1141897 1142031 1142649 1142654 1143194 1143273 1144502 1148517 1149145 1159922 1159923 1159924 1159927 1161074 1161312 1162501 1162629 1162632 1165280 1165289 1165548 1168699 1170643 1170771 1171746 1172140 1172437 1173159 CVE-2017-17740 CVE-2018-1000199 CVE-2019-11045 CVE-2019-11046 CVE-2019-11047 CVE-2019-11050 CVE-2019-13057 CVE-2019-13565 CVE-2019-13616 CVE-2019-13626 CVE-2019-14250 CVE-2019-15666 CVE-2019-15847 CVE-2019-20446 CVE-2019-7164 CVE-2019-7548 CVE-2019-9928 CVE-2020-10730 CVE-2020-10757 CVE-2020-12243 CVE-2020-13233 CVE-2020-1699 CVE-2020-1700 CVE-2020-1730 CVE-2020-3899 CVE-2020-7059 CVE-2020-7060 CVE-2020-7062 CVE-2020-7063 SUSE-SU-2019:2253-1 SUSE-SU-2019:2395-1 SUSE-SU-2019:2463-1 SUSE-SU-2019:3061-1 SUSE-SU-2020:0101-1 SUSE-SU-2020:0296-1 SUSE-SU-2020:0622-1 SUSE-SU-2020:0629-2 SUSE-SU-2020:0967-1 SUSE-SU-2020:1198-1 SUSE-SU-2020:1213-1 SUSE-SU-2020:1219-1 SUSE-SU-2020:1300-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information xorg-x11-libX11-7.4-5.11.11 is installed OR xorg-x11-libX11-32bit-7.4-5.11.11 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information MozillaFirefox-38.4.0esr-25 is installed OR MozillaFirefox-branding-SLED-38-15 is installed OR MozillaFirefox-translations-38.4.0esr-25 is installed OR libfreebl3-3.19.2.1-19 is installed OR libfreebl3-32bit-3.19.2.1-19 is installed OR libsoftokn3-3.19.2.1-19 is installed OR libsoftokn3-32bit-3.19.2.1-19 is installed OR mozilla-nspr-4.10.10-16 is installed OR mozilla-nspr-32bit-4.10.10-16 is installed OR mozilla-nss-3.19.2.1-19 is installed OR mozilla-nss-32bit-3.19.2.1-19 is installed OR mozilla-nss-tools-3.19.2.1-19 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information glibc-2.19-17 is installed OR glibc-32bit-2.19-17 is installed OR glibc-devel-2.19-17 is installed OR glibc-devel-32bit-2.19-17 is installed OR glibc-i18ndata-2.19-17 is installed OR glibc-locale-2.19-17 is installed OR glibc-locale-32bit-2.19-17 is installed OR nscd-2.19-17 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND hardlink-1.0-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information dhcp-4.3.3-9 is installed OR dhcp-client-4.3.3-9 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information mozilla-nspr-4.13.1-18 is installed OR mozilla-nspr-32bit-4.13.1-18 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gnome-online-accounts-3.20.5-9 is installed OR gnome-online-accounts-lang-3.20.5-9 is installed OR libgoa-1_0-0-3.20.5-9 is installed OR libgoa-1_0-0-32bit-3.20.5-9 is installed OR libgoa-backend-1_0-1-3.20.5-9 is installed OR typelib-1_0-Goa-1_0-3.20.5-9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed AND Package Information librsvg-2.42.8-3.3 is installed OR rsvg-view-2.42.8-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information python-SQLAlchemy-1.2.14-6.3 is installed OR python3-SQLAlchemy-1.2.14-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information openldap2-2.4.46-9.19 is installed OR openldap2-back-meta-2.4.46-9.19 is installed OR openldap2-back-perl-2.4.46-9.19 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_38-default-7-2 is installed OR kernel-livepatch-SLE15_Update_15-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-195-default-12-34 is installed OR kernel-livepatch-SLE15-SP1_Update_0-12-34 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information SDL2-2.0.8-3.15 is installed OR libSDL2-2_0-0-32bit-2.0.8-3.15 is installed OR libSDL2-devel-32bit-2.0.8-3.15 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information rmt-server-2.5.7-3.15 is installed OR rmt-server-config-2.5.7-3.15 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information apache2-mod_php7-7.2.5-4.52 is installed OR php7-7.2.5-4.52 is installed OR php7-bcmath-7.2.5-4.52 is installed OR php7-bz2-7.2.5-4.52 is installed OR php7-calendar-7.2.5-4.52 is installed OR php7-ctype-7.2.5-4.52 is installed OR php7-curl-7.2.5-4.52 is installed OR php7-dba-7.2.5-4.52 is installed OR php7-devel-7.2.5-4.52 is installed OR php7-dom-7.2.5-4.52 is installed OR php7-enchant-7.2.5-4.52 is installed OR php7-exif-7.2.5-4.52 is installed OR php7-fastcgi-7.2.5-4.52 is installed OR php7-fileinfo-7.2.5-4.52 is installed OR php7-fpm-7.2.5-4.52 is installed OR php7-ftp-7.2.5-4.52 is installed OR php7-gd-7.2.5-4.52 is installed OR php7-gettext-7.2.5-4.52 is installed OR php7-gmp-7.2.5-4.52 is installed OR php7-iconv-7.2.5-4.52 is installed OR php7-intl-7.2.5-4.52 is installed OR php7-json-7.2.5-4.52 is installed OR php7-ldap-7.2.5-4.52 is installed OR php7-mbstring-7.2.5-4.52 is installed OR php7-mysql-7.2.5-4.52 is installed OR php7-odbc-7.2.5-4.52 is installed OR php7-opcache-7.2.5-4.52 is installed OR php7-openssl-7.2.5-4.52 is installed OR php7-pcntl-7.2.5-4.52 is installed OR php7-pdo-7.2.5-4.52 is installed OR php7-pear-7.2.5-4.52 is installed OR php7-pear-Archive_Tar-7.2.5-4.52 is installed OR php7-pgsql-7.2.5-4.52 is installed OR php7-phar-7.2.5-4.52 is installed OR php7-posix-7.2.5-4.52 is installed OR php7-shmop-7.2.5-4.52 is installed OR php7-snmp-7.2.5-4.52 is installed OR php7-soap-7.2.5-4.52 is installed OR php7-sockets-7.2.5-4.52 is installed OR php7-sodium-7.2.5-4.52 is installed OR php7-sqlite-7.2.5-4.52 is installed OR php7-sysvmsg-7.2.5-4.52 is installed OR php7-sysvsem-7.2.5-4.52 is installed OR php7-sysvshm-7.2.5-4.52 is installed OR php7-tokenizer-7.2.5-4.52 is installed OR php7-wddx-7.2.5-4.52 is installed OR php7-xmlreader-7.2.5-4.52 is installed OR php7-xmlrpc-7.2.5-4.52 is installed OR php7-xmlwriter-7.2.5-4.52 is installed OR php7-xsl-7.2.5-4.52 is installed OR php7-zip-7.2.5-4.52 is installed OR php7-zlib-7.2.5-4.52 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information fetchmail-6.3.26-5 is installed OR fetchmailconf-6.3.26-5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_40-default-3-2 is installed OR kgraft-patch-3_12_74-60_64_40-xen-3-2 is installed OR kgraft-patch-SLE12-SP1_Update_15-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information guestfs-data-1.32.4-14 is installed OR guestfs-tools-1.32.4-14 is installed OR guestfsd-1.32.4-14 is installed OR libguestfs0-1.32.4-14 is installed OR perl-Sys-Guestfs-1.32.4-14 is installed OR python-libguestfs-1.32.4-14 is installed OR virt-p2v-1.32.4-14 is installed OR virt-v2v-1.32.4-14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information kernel-firmware-20170530-21.22 is installed OR ucode-amd-20170530-21.22 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND shadow-4.2.1-27.9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information java-1_7_0-openjdk-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cron-4.2-58 is installed OR cronie-1.4.11-58 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND log4j-1.2.15-126.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information MozillaFirefox-60.3.0-109.50 is installed OR MozillaFirefox-translations-common-60.3.0-109.50 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information gpg2-2.0.24-9.3 is installed OR gpg2-lang-2.0.24-9.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.2-3.54 is installed OR libwebkit2gtk-4_0-37-2.28.2-3.54 is installed OR libwebkit2gtk3-lang-2.28.2-3.54 is installed OR webkit2gtk-4_0-injected-bundles-2.28.2-3.54 is installed OR webkit2gtk3-2.28.2-3.54 is installed OR webkit2gtk3-devel-2.28.2-3.54 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information curl-7.60.0-3.29 is installed OR libcurl-devel-7.60.0-3.29 is installed OR libcurl4-7.60.0-3.29 is installed OR libcurl4-32bit-7.60.0-3.29 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-68.2.1-3.58 is installed OR MozillaThunderbird-translations-common-68.2.1-3.58 is installed OR MozillaThunderbird-translations-other-68.2.1-3.58 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND enigmail-2.0.11-3.16 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information kernel-default-3.12.74-60.64.69 is installed OR kernel-default-base-3.12.74-60.64.69 is installed OR kernel-default-devel-3.12.74-60.64.69 is installed OR kernel-devel-3.12.74-60.64.69 is installed OR kernel-macros-3.12.74-60.64.69 is installed OR kernel-source-3.12.74-60.64.69 is installed OR kernel-syms-3.12.74-60.64.69 is installed OR kernel-xen-3.12.74-60.64.69 is installed OR kernel-xen-base-3.12.74-60.64.69 is installed OR kernel-xen-devel-3.12.74-60.64.69 is installed OR kgraft-patch-3_12_74-60_64_69-default-1-2.3 is installed OR kgraft-patch-3_12_74-60_64_69-xen-1-2.3 is installed OR kgraft-patch-SLE12-SP1_Update_24-1-2.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information openssh-7.2p2-74.25 is installed OR openssh-askpass-gnome-7.2p2-74.25 is installed OR openssh-fips-7.2p2-74.25 is installed OR openssh-helpers-7.2p2-74.25 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information grafana-4.5.1-4.3 is installed OR kafka-0.9.0.1-5.3 is installed OR logstash-2.4.1-5.4 is installed OR openstack-monasca-installer-20180622_15.06-3.6 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-activejob-4_2-4.2.9-3.6 is installed OR rubygem-activejob-4_2-4.2.9-3.6 is installed

BACK