Oval Definition:	oval:org.opensuse.security:def:50689
Revision Date: 2020-12-01 Version: 1 Title: Security update for python3 (Moderate) Description: This update for python3 to 3.6.9 fixes the following issues: Security issues fixed: - CVE-2019-16056: Fixed a parser issue in the email module. (bsc#1149955) - CVE-2019-16935: Fixed a reflected XSS in python/Lib/DocXMLRPCServer.py (bsc#1153238). Non-security issues fixed: - Fixed regression of OpenSSL 1.1.1b-1 in EVP_PBE_scrypt() with salt=NULL. (bsc#1151490) - Improved locale handling by implementing PEP 538. Family: unix Class: patch Status: Reference(s): 1055186 1065600 1065729 1094244 1112178 1113956 1123156 1141689 1149121 1149792 1149955 1151490 1152082 1153238 1154366 1154370 1154402 1155094 1159478 1159479 1159482 1159486 1159913 1160551 1161066 1162825 1163018 1165631 1165776 1166240 1167527 1169972 1170940 1171688 1171742 1171883 1172698 1172704 1173115 1174157 1174899 1175070 1175071 1175228 1175259 1175749 1175882 1176011 1176022 1176038 1176235 1176242 1176278 1176316 1176317 1176318 1176319 1176320 1176321 1176381 1176423 1176482 1176507 1176536 1176544 1176545 1176546 1176548 1176659 1176698 1176699 1176700 1176721 1176722 1176725 1176732 1176788 1176789 1176869 1176877 1176935 1176950 1176962 1176966 1176990 1177030 1177041 1177042 1177043 1177044 1177121 1177206 1177291 1177293 1177294 1177295 1177296 1178074 1178666 1178667 1178668 CVE-2019-16056 CVE-2019-16276 CVE-2019-16935 CVE-2019-17596 CVE-2019-17626 CVE-2019-17639 CVE-2019-18348 CVE-2019-18388 CVE-2019-18389 CVE-2019-18390 CVE-2019-18391 CVE-2019-20367 CVE-2019-20382 CVE-2019-5108 CVE-2019-6778 CVE-2019-9674 CVE-2020-0404 CVE-2020-0427 CVE-2020-0431 CVE-2020-0432 CVE-2020-11993 CVE-2020-14381 CVE-2020-14390 CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-1711 CVE-2020-1749 CVE-2020-1983 CVE-2020-25212 CVE-2020-25284 CVE-2020-25641 CVE-2020-25643 CVE-2020-25694 CVE-2020-25695 CVE-2020-25696 CVE-2020-26088 CVE-2020-7039 CVE-2020-8023 CVE-2020-8023 CVE-2020-8608 CVE-2020-9490 SUSE-SU-2019:2802-1 SUSE-SU-2019:2940-1 SUSE-SU-2020:0017-1 SUSE-SU-2020:0255-1 SUSE-SU-2020:1298-1 SUSE-SU-2020:1339-1 SUSE-SU-2020:1523-1 SUSE-SU-2020:1856-1 SUSE-SU-2020:1858-1 SUSE-SU-2020:2453-1 SUSE-SU-2020:2906-1 SUSE-SU-2020:3067-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SP2 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information flash-player-11.2.202.508-0.14 is installed OR flash-player-gnome-11.2.202.508-0.14 is installed OR flash-player-kde4-11.2.202.508-0.14 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libXtst6-1.2.2-3 is installed OR libXtst6-32bit-1.2.2-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND libarchive13-3.1.2-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND binutils-2.26.1-9.12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information expat-2.1.0-20 is installed OR libexpat1-2.1.0-20 is installed OR libexpat1-32bit-2.1.0-20 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information NetworkManager-1.0.12-13.6 is installed OR NetworkManager-lang-1.0.12-13.6 is installed OR libnm-glib-vpn1-1.0.12-13.6 is installed OR libnm-glib4-1.0.12-13.6 is installed OR libnm-util2-1.0.12-13.6 is installed OR libnm0-1.0.12-13.6 is installed OR typelib-1_0-NM-1_0-1.0.12-13.6 is installed OR typelib-1_0-NMClient-1_0-1.0.12-13.6 is installed OR typelib-1_0-NetworkManager-1_0-1.0.12-13.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information libpython3_6m1_0-3.6.9-3.39 is installed OR python3-3.6.9-3.39 is installed OR python3-base-3.6.9-3.39 is installed OR python3-curses-3.6.9-3.39 is installed OR python3-dbm-3.6.9-3.39 is installed OR python3-devel-3.6.9-3.39 is installed OR python3-idle-3.6.9-3.39 is installed OR python3-tk-3.6.9-3.39 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP2 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.15-3.41 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr6.15-3.41 is installed OR java-1_8_0-ibm-devel-1.8.0_sr6.15-3.41 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr6.15-3.41 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_14-default-8-2 is installed OR kernel-livepatch-SLE15_Update_9-8-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_18-default-5-2 is installed OR kernel-livepatch-SLE15-SP1_Update_5-5-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information go1.12-1.12.12-1.20 is installed OR go1.12-doc-1.12.12-1.20 is installed OR go1.12-race-1.12.12-1.20 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information openldap2-2.4.46-9.31 is installed OR openldap2-back-sock-2.4.46-9.31 is installed OR openldap2-back-sql-2.4.46-9.31 is installed OR openldap2-contrib-2.4.46-9.31 is installed OR openldap2-doc-2.4.46-9.31 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND Package Information kernel-azure-4.12.14-8.47 is installed OR kernel-azure-base-4.12.14-8.47 is installed OR kernel-azure-devel-4.12.14-8.47 is installed OR kernel-devel-azure-4.12.14-8.47 is installed OR kernel-source-azure-4.12.14-8.47 is installed OR kernel-syms-azure-4.12.14-8.47 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information apache2-2.4.33-3.41 is installed OR apache2-devel-2.4.33-3.41 is installed OR apache2-doc-2.4.33-3.41 is installed OR apache2-prefork-2.4.33-3.41 is installed OR apache2-utils-2.4.33-3.41 is installed OR apache2-worker-2.4.33-3.41 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information bash-4.2-75 is installed OR bash-doc-4.2-75 is installed OR libreadline6-6.2-75 is installed OR libreadline6-32bit-6.2-75 is installed OR readline-doc-6.2-75 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND dnsmasq-2.78-18.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-28 is installed OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.25-38.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_90-92_50-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_15-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information libwireshark9-2.4.9-48.29 is installed OR libwiretap7-2.4.9-48.29 is installed OR libwscodecs1-2.4.9-48.29 is installed OR libwsutil8-2.4.9-48.29 is installed OR wireshark-2.4.9-48.29 is installed OR wireshark-gtk-2.4.9-48.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information bzip2-1.0.6-29 is installed OR bzip2-doc-1.0.6-29 is installed OR libbz2-1-1.0.6-29 is installed OR libbz2-1-32bit-1.0.6-29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information ghostscript-9.27-23.28 is installed OR ghostscript-x11-9.27-23.28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_156-94_64-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_20-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information gdk-pixbuf-2.34.0-19.17 is installed OR gdk-pixbuf-lang-2.34.0-19.17 is installed OR gdk-pixbuf-query-loaders-2.34.0-19.17 is installed OR gdk-pixbuf-query-loaders-32bit-2.34.0-19.17 is installed OR libgdk_pixbuf-2_0-0-2.34.0-19.17 is installed OR libgdk_pixbuf-2_0-0-32bit-2.34.0-19.17 is installed OR typelib-1_0-GdkPixbuf-2_0-2.34.0-19.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libHX28-3.18-1 is installed OR libHX28-32bit-3.18-1 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information qemu-2.11.2-9.36 is installed OR qemu-arm-2.11.2-9.36 is installed OR qemu-block-curl-2.11.2-9.36 is installed OR qemu-block-iscsi-2.11.2-9.36 is installed OR qemu-block-rbd-2.11.2-9.36 is installed OR qemu-block-ssh-2.11.2-9.36 is installed OR qemu-guest-agent-2.11.2-9.36 is installed OR qemu-ipxe-1.0.0+-9.36 is installed OR qemu-kvm-2.11.2-9.36 is installed OR qemu-lang-2.11.2-9.36 is installed OR qemu-ppc-2.11.2-9.36 is installed OR qemu-s390-2.11.2-9.36 is installed OR qemu-seabios-1.11.0-9.36 is installed OR qemu-sgabios-8-9.36 is installed OR qemu-tools-2.11.2-9.36 is installed OR qemu-vgabios-1.11.0-9.36 is installed OR qemu-x86-2.11.2-9.36 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.15-3.41 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr6.15-3.41 is installed OR java-1_8_0-ibm-devel-1.8.0_sr6.15-3.41 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr6.15-3.41 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information ffmpeg-3.4.2-4.12 is installed OR libavcodec-devel-3.4.2-4.12 is installed OR libavformat-devel-3.4.2-4.12 is installed OR libavformat57-3.4.2-4.12 is installed OR libavresample-devel-3.4.2-4.12 is installed OR libavresample3-3.4.2-4.12 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.15 is installed OR kernel-default-extra-4.12.14-197.15 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information libldap-2_4-2-2.4.41-18.24.9 is installed OR libldap-2_4-2-32bit-2.4.41-18.24.9 is installed OR openldap2-2.4.41-18.24.9 is installed OR openldap2-back-meta-2.4.41-18.24.9 is installed OR openldap2-client-2.4.41-18.24.9 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information MozillaFirefox-60.2.2esr-109.46 is installed OR MozillaFirefox-branding-SLE-60-32.3 is installed OR MozillaFirefox-devel-60.2.2esr-109.46 is installed OR MozillaFirefox-translations-common-60.2.2esr-109.46 is installed OR apache2-mod_nss-1.0.14-19.6 is installed OR libfreebl3-3.36.4-58.15 is installed OR libfreebl3-32bit-3.36.4-58.15 is installed OR libfreebl3-hmac-3.36.4-58.15 is installed OR libfreebl3-hmac-32bit-3.36.4-58.15 is installed OR libsoftokn3-3.36.4-58.15 is installed OR libsoftokn3-32bit-3.36.4-58.15 is installed OR libsoftokn3-hmac-3.36.4-58.15 is installed OR libsoftokn3-hmac-32bit-3.36.4-58.15 is installed OR mozilla-nspr-4.19-19.3 is installed OR mozilla-nspr-32bit-4.19-19.3 is installed OR mozilla-nss-3.36.4-58.15 is installed OR mozilla-nss-32bit-3.36.4-58.15 is installed OR mozilla-nss-certs-3.36.4-58.15 is installed OR mozilla-nss-certs-32bit-3.36.4-58.15 is installed OR mozilla-nss-sysinit-3.36.4-58.15 is installed OR mozilla-nss-sysinit-32bit-3.36.4-58.15 is installed OR mozilla-nss-tools-3.36.4-58.15 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed
BACK