Oval Definition:oval:org.opensuse.security:def:50826
Revision Date:2020-12-01Version:1
Title:Security update for python-pip (Moderate)
Description:

This update for python-pip fixes the following issues:

- CVE-2019-20916: Fixed a directory traversal in _download_http_url (bsc#1176262)
Family:unixClass:patch
Status:Reference(s):1051510
1055186
1058115
1065600
1065729
1071995
1085030
1088047
1094244
1094555
1098633
1103203
1106383
1106751
1109137
1111666
1112178
1113956
1114279
1118832
1119396
1119532
1119850
1120423
1123022
1124167
1124356
1126711
1126713
1126821
1126823
1126827
1127122
1127155
1128432
1128722
1128883
1128886
1128887
1128889
1128892
1128902
1128910
1129032
1131645
1132154
1132390
1132837
1132838
1133401
1133738
1134303
1134322
1134395
1135296
1135556
1135642
1136157
1136598
1136666
1136922
1136935
1137103
1137194
1137429
1137625
1137728
1137884
1137995
1137996
1137998
1137999
1138000
1138002
1138003
1138005
1138006
1138007
1138008
1138009
1138010
1138011
1138012
1138013
1138014
1138015
1138016
1138017
1138018
1138019
1138291
1138293
1138374
1138375
1138589
1138719
1139771
1139782
1139865
1140133
1140328
1140405
1140424
1140428
1140575
1140577
1140637
1140658
1140683
1140715
1140719
1140726
1140727
1140728
1140814
1144333
1148643
1148868
1150660
1151927
1152107
1152148
1152624
1154366
1158667
1158983
1159058
1160398
1160467
1160468
1161016
1161167
1161883
1162002
1162063
1162224
1162367
1162423
1162825
1163309
1163524
1163985
1164903
1165629
1166066
1166965
1166985
1167104
1167527
1168081
1168959
1169194
1169511
1169514
1169771
1169795
1169972
1170011
1170232
1170442
1170592
1170617
1170618
1171124
1171352
1171424
1171529
1171530
1171558
1171688
1171732
1171739
1171742
1171743
1171753
1171759
1171835
1171841
1171868
1171904
1171924
1172073
1172247
1172257
1172344
1172356
1172458
1172484
1172537
1172538
1172687
1172719
1172759
1172775
1172781
1172782
1172783
1172871
1172872
1172873
1172999
1173027
1173060
1173074
1173115
1173146
1173265
1173280
1173284
1173428
1173514
1173567
1173573
1173659
1173746
1173818
1173820
1173825
1173826
1173833
1173838
1173839
1173845
1173857
1174113
1174115
1174122
1174123
1174186
1174187
1174296
1174343
1174356
1174409
1174438
1174458
1174462
1174543
1174748
1174899
1175228
1175520
1175667
1175691
1175749
1175882
1176011
1176022
1176038
1176069
1176235
1176242
1176262
1176278
1176316
1176317
1176318
1176319
1176320
1176321
1176381
1176395
1176400
1176410
1176423
1176482
1176507
1176536
1176544
1176545
1176546
1176548
1176659
1176698
1176699
1176700
1176721
1176722
1176725
1176732
1176788
1176789
1176869
1176877
1176935
1176946
1176950
1176962
1176966
1176990
1177027
1177030
1177041
1177042
1177043
1177044
1177121
1177206
1177258
1177291
1177293
1177294
1177295
1177296
1177340
1177511
1178750
1178752
1178753
CVE-2018-16871
CVE-2018-19935
CVE-2018-20783
CVE-2018-20836
CVE-2019-10126
CVE-2019-10638
CVE-2019-10639
CVE-2019-11034
CVE-2019-11035
CVE-2019-11036
CVE-2019-11599
CVE-2019-12380
CVE-2019-12456
CVE-2019-12614
CVE-2019-12818
CVE-2019-12819
CVE-2019-14896
CVE-2019-14897
CVE-2019-16746
CVE-2019-20810
CVE-2019-20908
CVE-2019-20916
CVE-2019-3814
CVE-2019-9020
CVE-2019-9021
CVE-2019-9022
CVE-2019-9023
CVE-2019-9024
CVE-2019-9637
CVE-2019-9638
CVE-2019-9639
CVE-2019-9640
CVE-2019-9641
CVE-2019-9674
CVE-2019-9675
CVE-2020-0034
CVE-2020-0305
CVE-2020-0404
CVE-2020-0427
CVE-2020-0431
CVE-2020-0432
CVE-2020-0569
CVE-2020-10766
CVE-2020-10767
CVE-2020-10768
CVE-2020-10769
CVE-2020-10773
CVE-2020-10781
CVE-2020-12771
CVE-2020-12888
CVE-2020-13974
CVE-2020-14339
CVE-2020-14381
CVE-2020-14386
CVE-2020-14390
CVE-2020-14416
CVE-2020-15393
CVE-2020-15780
CVE-2020-1720
CVE-2020-1749
CVE-2020-25212
CVE-2020-25284
CVE-2020-25641
CVE-2020-25643
CVE-2020-25645
CVE-2020-26088
CVE-2020-2754
CVE-2020-2755
CVE-2020-2756
CVE-2020-2757
CVE-2020-2773
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-2830
CVE-2020-28362
CVE-2020-28366
CVE-2020-28367
CVE-2020-8177
CVE-2020-8492
SUSE-SU-2019:0414-1
SUSE-SU-2019:1461-1
SUSE-SU-2019:1829-1
SUSE-SU-2020:0346-1
SUSE-SU-2020:0467-1
SUSE-SU-2020:1569-1
SUSE-SU-2020:1773-1
SUSE-SU-2020:2149-1
SUSE-SU-2020:2159-1
SUSE-SU-2020:2784-1
Platform(s):SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for additional PackageHub packages 15
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Public Cloud 15
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE Linux Enterprise Workstation Extension 15 SP2
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • bash-3.2-147.22 is installed
  • OR bash-doc-3.2-147.22 is installed
  • OR libreadline5-5.2-147.22 is installed
  • OR libreadline5-32bit-5.2-147.22 is installed
  • OR readline-doc-5.2-147.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND gzip-1.6-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • empathy-3.10.3-1 is installed
  • OR empathy-lang-3.10.3-1 is installed
  • OR telepathy-mission-control-plugin-goa-3.10.3-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND bogofilter-1.2.4-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • cpp48-4.8.5-30 is installed
  • OR gcc48-4.8.5-30 is installed
  • OR gcc48-32bit-4.8.5-30 is installed
  • OR gcc48-c++-4.8.5-30 is installed
  • OR gcc48-gij-4.8.5-30 is installed
  • OR gcc48-gij-32bit-4.8.5-30 is installed
  • OR gcc48-info-4.8.5-30 is installed
  • OR libasan0-4.8.5-30 is installed
  • OR libasan0-32bit-4.8.5-30 is installed
  • OR libgcj48-4.8.5-30 is installed
  • OR libgcj48-32bit-4.8.5-30 is installed
  • OR libgcj48-jar-4.8.5-30 is installed
  • OR libgcj_bc1-4.8.5-30 is installed
  • OR libstdc++48-devel-4.8.5-30 is installed
  • OR libstdc++48-devel-32bit-4.8.5-30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • cracklib-2.9.0-7 is installed
  • OR libcrack2-2.9.0-7 is installed
  • OR libcrack2-32bit-2.9.0-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed
  • AND Package Information
  • php7-7.2.5-4.32 is installed
  • OR php7-embed-7.2.5-4.32 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • python-pip-10.0.1-3.3 is installed
  • OR python3-pip-10.0.1-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-150_27-default-5-2 is installed
  • OR kernel-livepatch-SLE15_Update_12-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • kernel-debug-4.12.14-197.48 is installed
  • OR kernel-debug-base-4.12.14-197.48 is installed
  • OR kernel-debug-devel-4.12.14-197.48 is installed
  • OR kernel-debug-livepatch-devel-4.12.14-197.48 is installed
  • OR kernel-default-4.12.14-197.48 is installed
  • OR kernel-default-livepatch-4.12.14-197.48 is installed
  • OR kernel-docs-4.12.14-197.48 is installed
  • OR kernel-docs-html-4.12.14-197.48 is installed
  • OR kernel-kvmsmall-4.12.14-197.48 is installed
  • OR kernel-kvmsmall-base-4.12.14-197.48 is installed
  • OR kernel-kvmsmall-devel-4.12.14-197.48 is installed
  • OR kernel-kvmsmall-livepatch-devel-4.12.14-197.48 is installed
  • OR kernel-obs-qa-4.12.14-197.48 is installed
  • OR kernel-source-4.12.14-197.48 is installed
  • OR kernel-source-vanilla-4.12.14-197.48 is installed
  • OR kernel-vanilla-4.12.14-197.48 is installed
  • OR kernel-vanilla-base-4.12.14-197.48 is installed
  • OR kernel-vanilla-devel-4.12.14-197.48 is installed
  • OR kernel-vanilla-livepatch-devel-4.12.14-197.48 is installed
  • OR kernel-zfcpdump-4.12.14-197.48 is installed
  • OR kernel-zfcpdump-man-4.12.14-197.48 is installed
  • OR kselftests-kmp-default-4.12.14-197.48 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • libvpx-1.6.1-6.6 is installed
  • OR libvpx4-32bit-1.6.1-6.6 is installed
  • OR vpx-tools-1.6.1-6.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 is installed
  • AND Package Information
  • kernel-azure-4.12.14-5.33 is installed
  • OR kernel-azure-base-4.12.14-5.33 is installed
  • OR kernel-azure-devel-4.12.14-5.33 is installed
  • OR kernel-devel-azure-4.12.14-5.33 is installed
  • OR kernel-source-azure-4.12.14-5.33 is installed
  • OR kernel-syms-azure-4.12.14-5.33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • dovecot23-2.3.3-4.7 is installed
  • OR dovecot23-backend-mysql-2.3.3-4.7 is installed
  • OR dovecot23-backend-pgsql-2.3.3-4.7 is installed
  • OR dovecot23-backend-sqlite-2.3.3-4.7 is installed
  • OR dovecot23-devel-2.3.3-4.7 is installed
  • OR dovecot23-fts-2.3.3-4.7 is installed
  • OR dovecot23-fts-lucene-2.3.3-4.7 is installed
  • OR dovecot23-fts-solr-2.3.3-4.7 is installed
  • OR dovecot23-fts-squat-2.3.3-4.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • e2fsprogs-1.42.11-7 is installed
  • OR libcom_err2-1.42.11-7 is installed
  • OR libcom_err2-32bit-1.42.11-7 is installed
  • OR libext2fs2-1.42.11-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_63-default-3-2 is installed
  • OR kgraft-patch-3_12_74-60_64_63-xen-3-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_22-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • emacs-24.3-16 is installed
  • OR emacs-el-24.3-16 is installed
  • OR emacs-info-24.3-16 is installed
  • OR emacs-nox-24.3-16 is installed
  • OR emacs-x11-24.3-16 is installed
  • OR etags-24.3-16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libmysqlclient18-10.0.35-29.20 is installed
  • OR libmysqlclient18-32bit-10.0.35-29.20 is installed
  • OR mariadb-10.0.35-29.20 is installed
  • OR mariadb-client-10.0.35-29.20 is installed
  • OR mariadb-errormessages-10.0.35-29.20 is installed
  • OR mariadb-tools-10.0.35-29.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • apache2-2.4.23-29.24 is installed
  • OR apache2-doc-2.4.23-29.24 is installed
  • OR apache2-example-pages-2.4.23-29.24 is installed
  • OR apache2-prefork-2.4.23-29.24 is installed
  • OR apache2-utils-2.4.23-29.24 is installed
  • OR apache2-worker-2.4.23-29.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND cifs-utils-6.5-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND ucode-intel-20190618-13.47 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libgcrypt-1.6.1-16.58 is installed
  • OR libgcrypt20-1.6.1-16.58 is installed
  • OR libgcrypt20-32bit-1.6.1-16.58 is installed
  • OR libgcrypt20-hmac-1.6.1-16.58 is installed
  • OR libgcrypt20-hmac-32bit-1.6.1-16.58 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libupsclient1-2.7.1-1 is installed
  • OR nut-2.7.1-1 is installed
  • OR nut-drivers-net-2.7.1-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.252-3.35 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.252-3.35 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.252-3.35 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.252-3.35 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • curl-7.60.0-3.29 is installed
  • OR libcurl-devel-7.60.0-3.29 is installed
  • OR libcurl4-7.60.0-3.29 is installed
  • OR libcurl4-32bit-7.60.0-3.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.26 is installed
  • OR kernel-default-extra-4.12.14-197.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
  • AND Package Information
  • freerdp-2.1.2-15.10 is installed
  • OR freerdp-devel-2.1.2-15.10 is installed
  • OR libfreerdp2-2.1.2-15.10 is installed
  • OR libwinpr2-2.1.2-15.10 is installed
  • OR winpr2-devel-2.1.2-15.10 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND couchdb-1.6.1-2 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.171-27.19 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libecpg6-10.9-1.12 is installed
  • OR libpq5-10.9-1.12 is installed
  • OR libpq5-32bit-10.9-1.12 is installed
  • OR postgresql10-10.9-1.12 is installed
  • OR postgresql10-contrib-10.9-1.12 is installed
  • OR postgresql10-docs-10.9-1.12 is installed
  • OR postgresql10-libs-10.9-1.12 is installed
  • OR postgresql10-plperl-10.9-1.12 is installed
  • OR postgresql10-plpython-10.9-1.12 is installed
  • OR postgresql10-pltcl-10.9-1.12 is installed
  • OR postgresql10-server-10.9-1.12 is installed
    • BACK