Oval Definition:	oval:org.opensuse.security:def:51840
Revision Date: 2020-12-01 Version: 1 Title: Security update for python (Important) Description: This update for python fixes the following issues: Security issues fixed: - CVE-2019-9948: Fixed a 'file:' blacklist bypass in URIs by using the 'local-file:' scheme instead (bsc#1130847). - CVE-2019-9636: Fixed an information disclosure because of incorrect handling of Unicode encoding during NFKC normalization (bsc#1129346). Family: unix Class: patch Status: Reference(s): 1027519 1094898 1098735 1102604 1103628 1105279 1111331 1129346 1130847 1133229 1134348 1134506 1135273 1136109 1155200 1157490 1160932 1163985 1165206 1167007 1167152 1168140 1168142 1168143 1169392 1172686 1172745 1173477 1173691 1173694 1173700 1173701 1173743 1173874 1173875 1173876 1173880 1173937 1174421 1175070 1175071 1176589 1176605 1178074 CVE-2011-1145 CVE-2011-1898 CVE-2011-2054 CVE-2011-2483 CVE-2011-3177 CVE-2012-0029 CVE-2012-0217 CVE-2012-2625 CVE-2012-3432 CVE-2012-3433 CVE-2012-4411 CVE-2012-4535 CVE-2012-4536 CVE-2012-4537 CVE-2012-4538 CVE-2012-4539 CVE-2012-4544 CVE-2012-5510 CVE-2012-5511 CVE-2012-5513 CVE-2012-5514 CVE-2012-5515 CVE-2012-5525 CVE-2012-5634 CVE-2012-6075 CVE-2013-0151 CVE-2013-0152 CVE-2013-0153 CVE-2013-1442 CVE-2013-1917 CVE-2013-1918 CVE-2013-1919 CVE-2013-1922 CVE-2013-1952 CVE-2013-2007 CVE-2013-3495 CVE-2013-4355 CVE-2013-4356 CVE-2013-4361 CVE-2013-4375 CVE-2013-4416 CVE-2013-4494 CVE-2013-4540 CVE-2013-4551 CVE-2013-4553 CVE-2013-4554 CVE-2013-6370 CVE-2013-6371 CVE-2014-3124 CVE-2014-6268 CVE-2014-7154 CVE-2014-7155 CVE-2014-7156 CVE-2014-7188 CVE-2016-1521 CVE-2016-1523 CVE-2016-1526 CVE-2016-1601 CVE-2017-18922 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-12617 CVE-2018-21247 CVE-2019-10132 CVE-2019-11091 CVE-2019-20839 CVE-2019-20840 CVE-2019-9636 CVE-2019-9948 CVE-2020-11739 CVE-2020-11740 CVE-2020-11741 CVE-2020-11742 CVE-2020-11743 CVE-2020-11993 CVE-2020-14397 CVE-2020-14398 CVE-2020-14399 CVE-2020-14400 CVE-2020-14401 CVE-2020-14402 CVE-2020-15095 CVE-2020-15705 CVE-2020-1720 CVE-2020-8201 CVE-2020-8252 CVE-2020-9490 SUSE-SU-2018:2679-1 SUSE-SU-2019:0972-1 SUSE-SU-2019:1490-1 SUSE-SU-2020:0589-1 SUSE-SU-2020:1124-1 SUSE-SU-2020:1922-1 SUSE-SU-2020:2306-1 SUSE-SU-2020:2813-1 SUSE-SU-2020:3067-1 Platform(s): openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Module for Web Scripting 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information grub2-2.02-lp150.12 is installed OR grub2-i386-pc-2.02-lp150.12 is installed OR grub2-snapper-plugin-2.02-lp150.12 is installed OR grub2-systemd-sleep-plugin-2.02-lp150.12 is installed OR grub2-x86_64-efi-2.02-lp150.12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information java-1_7_0-openjdk-1.7.0.95-0.17 is installed OR java-1_7_0-openjdk-demo-1.7.0.95-0.17 is installed OR java-1_7_0-openjdk-devel-1.7.0.95-0.17 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libjson-c2-0.11-2 is installed OR libjson-c2-32bit-0.11-2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libsoup-2_4-1-2.44.2-1 is installed OR libsoup-2_4-1-32bit-2.44.2-1 is installed OR libsoup-lang-2.44.2-1 is installed OR typelib-1_0-Soup-2_4-2.44.2-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libgraphite2-3-1.3.1-6 is installed OR libgraphite2-3-32bit-1.3.1-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information avahi-0.6.32-30 is installed OR avahi-lang-0.6.32-30 is installed OR libavahi-client3-0.6.32-30 is installed OR libavahi-client3-32bit-0.6.32-30 is installed OR libavahi-common3-0.6.32-30 is installed OR libavahi-common3-32bit-0.6.32-30 is installed OR libavahi-core7-0.6.32-30 is installed OR libdns_sd-0.6.32-30 is installed OR libdns_sd-32bit-0.6.32-30 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND krb5-appl-clients-1.0.3-1 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information python-2.7.14-7.11 is installed OR python-demo-2.7.14-7.11 is installed OR python-doc-2.7.14-7.11 is installed OR python-doc-pdf-2.7.14-7.11 is installed OR python-idle-2.7.14-7.11 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information libvirt-5.1.0-8.3 is installed OR wireshark-plugin-libvirt-5.1.0-8.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information qemu-2.11.2-9.9 is installed OR qemu-arm-2.11.2-9.9 is installed OR qemu-block-curl-2.11.2-9.9 is installed OR qemu-block-iscsi-2.11.2-9.9 is installed OR qemu-block-rbd-2.11.2-9.9 is installed OR qemu-block-ssh-2.11.2-9.9 is installed OR qemu-guest-agent-2.11.2-9.9 is installed OR qemu-ipxe-1.0.0-9.9 is installed OR qemu-kvm-2.11.2-9.9 is installed OR qemu-lang-2.11.2-9.9 is installed OR qemu-ppc-2.11.2-9.9 is installed OR qemu-s390-2.11.2-9.9 is installed OR qemu-seabios-1.11.0-9.9 is installed OR qemu-sgabios-8-9.9 is installed OR qemu-vgabios-1.11.0-9.9 is installed OR qemu-x86-2.11.2-9.9 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information xen-4.12.2_04-3.15 is installed OR xen-devel-4.12.2_04-3.15 is installed OR xen-tools-4.12.2_04-3.15 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information grub2-2.04-9.15 is installed OR grub2-x86_64-xen-2.04-9.15 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP2 is installed AND Package Information nodejs12-12.18.4-4.6 is installed OR nodejs12-devel-12.18.4-4.6 is installed OR nodejs12-docs-12.18.4-4.6 is installed OR npm12-12.18.4-4.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND davfs2-1.5.2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_54-default-7-2 is installed OR kgraft-patch-3_12_74-60_64_54-xen-7-2 is installed OR kgraft-patch-SLE12-SP1_Update_19-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information MozillaFirefox-45.4.0esr-81 is installed OR MozillaFirefox-translations-45.4.0esr-81 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information cups-filters-1.0.58-15.2 is installed OR cups-filters-cups-browsed-1.0.58-15.2 is installed OR cups-filters-foomatic-rip-1.0.58-15.2 is installed OR cups-filters-ghostscript-1.0.58-15.2 is installed OR libqpdf18-7.1.1-3.3 is installed OR qpdf-7.1.1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_73-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_21-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND yast2-smt-3.0.14-17.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-36 is installed OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kernel-default-4.4.180-94.103 is installed OR kernel-default-base-4.4.180-94.103 is installed OR kernel-default-devel-4.4.180-94.103 is installed OR kernel-devel-4.4.180-94.103 is installed OR kernel-macros-4.4.180-94.103 is installed OR kernel-source-4.4.180-94.103 is installed OR kernel-syms-4.4.180-94.103 is installed OR kgraft-patch-4_4_180-94_103-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_28-1-4.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libwireshark9-2.4.10-48.32 is installed OR libwiretap7-2.4.10-48.32 is installed OR libwscodecs1-2.4.10-48.32 is installed OR libwsutil8-2.4.10-48.32 is installed OR wireshark-2.4.10-48.32 is installed OR wireshark-gtk-2.4.10-48.32 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information alsa-1.0.27.2-15 is installed OR alsa-docs-1.0.27.2-15 is installed OR libasound2-1.0.27.2-15 is installed OR libasound2-32bit-1.0.27.2-15 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information apache2-2.4.33-3.41 is installed OR apache2-devel-2.4.33-3.41 is installed OR apache2-doc-2.4.33-3.41 is installed OR apache2-prefork-2.4.33-3.41 is installed OR apache2-utils-2.4.33-3.41 is installed OR apache2-worker-2.4.33-3.41 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information LibVNCServer-0.9.10-4.22 is installed OR libvncclient0-0.9.10-4.22 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information java-1_8_0-openjdk-1.8.0.151-27.8 is installed OR java-1_8_0-openjdk-demo-1.8.0.151-27.8 is installed OR java-1_8_0-openjdk-devel-1.8.0.151-27.8 is installed OR java-1_8_0-openjdk-headless-1.8.0.151-27.8 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information xen-4.7.5_04-43.33 is installed OR xen-doc-html-4.7.5_04-43.33 is installed OR xen-libs-4.7.5_04-43.33 is installed OR xen-libs-32bit-4.7.5_04-43.33 is installed OR xen-tools-4.7.5_04-43.33 is installed OR xen-tools-domU-4.7.5_04-43.33 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information bzip2-1.0.6-30.5 is installed OR bzip2-doc-1.0.6-30.5 is installed OR libbz2-1-1.0.6-30.5 is installed OR libbz2-1-32bit-1.0.6-30.5 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.17.0-11.27 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND python-Django1-1.11.20-3.3 is installed
BACK