OVAL Reference oval:org.opensuse.security:def:52253

Oval Definition:

oval:org.opensuse.security:def:52253

Revision Date:	2020-12-01	Version:	1
Title:	Security update for python-waitress (Moderate)
Description:	This update for python-waitress to 1.4.3 fixes the following security issues: - CVE-2019-16785: HTTP request smuggling through LF vs CRLF handling (bsc#1161088). - CVE-2019-16786: HTTP request smuggling through invalid Transfer-Encoding (bsc#1161089). - CVE-2019-16789: HTTP request smuggling through invalid whitespace characters (bsc#1160790). - CVE-2019-16792: HTTP request smuggling by sending the Content-Length header twice (bsc#1161670).
Family:	unix	Class:	patch
Status:		Reference(s):	1079548 1084671 1092920 1106383 1133495 1141122 1149943 1149944 1151377 1152692 1154256 1155207 1155327 1155574 1156213 1156482 1157119 1158485 1159814 1159973 1160673 1160790 1160922 1161088 1161089 1161436 1161670 1162108 1166881 1168345 CVE-2008-4989 CVE-2010-2522 CVE-2010-2523 CVE-2011-0523 CVE-2011-0524 CVE-2011-4128 CVE-2012-0390 CVE-2012-0804 CVE-2012-1569 CVE-2012-1573 CVE-2013-1981 CVE-2013-1997 CVE-2013-2004 CVE-2014-0092 CVE-2014-1959 CVE-2014-3248 CVE-2014-3466 CVE-2014-4607 CVE-2014-8564 CVE-2015-0294 CVE-2015-3622 CVE-2015-6251 CVE-2015-7747 CVE-2016-7444 CVE-2016-8610 CVE-2017-10790 CVE-2017-14604 CVE-2017-5335 CVE-2017-5336 CVE-2017-5337 CVE-2017-6827 CVE-2017-6828 CVE-2017-6829 CVE-2017-6830 CVE-2017-6831 CVE-2017-6832 CVE-2017-6833 CVE-2017-6834 CVE-2017-6835 CVE-2017-6836 CVE-2017-6837 CVE-2017-6838 CVE-2017-6839 CVE-2018-10844 CVE-2018-10845 CVE-2018-10846 CVE-2018-6459 CVE-2019-16785 CVE-2019-16786 CVE-2019-16789 CVE-2019-16792 CVE-2019-18904 CVE-2019-20386 CVE-2019-9854 CVE-2019-9855 CVE-2020-11501 CVE-2020-1712 SUSE-SU-2019:2686-1 SUSE-SU-2020:0260-1 SUSE-SU-2020:0335-1 SUSE-SU-2020:0413-1 SUSE-SU-2020:0743-1 SUSE-SU-2020:0948-1
Platform(s):	openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information aaa_base-84.87+git20180409.04c9dae-lp150.1 is installed OR aaa_base-extras-84.87+git20180409.04c9dae-lp150.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information freetype2-2.3.7-25.32 is installed OR freetype2-32bit-2.3.7-25.32 is installed OR freetype2-devel-2.3.7-25.32 is installed OR ft2demos-2.3.7-25.32 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information mozilla-nspr-4.10.9-11 is installed OR mozilla-nspr-32bit-4.10.9-11 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information libX11-6-1.6.2-4 is installed OR libX11-6-32bit-1.6.2-4 is installed OR libX11-data-1.6.2-4 is installed OR libX11-xcb1-1.6.2-4 is installed OR libX11-xcb1-32bit-1.6.2-4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information liblzo2-2-2.08-1 is installed OR liblzo2-2-32bit-2.08-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND cvs-1.12.12-181 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND facter-2.4.6-12.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information python-waitress-1.4.3-3.3 is installed OR python2-waitress-1.4.3-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libjson-c2-0.11-2 is installed OR libjson-c2-32bit-0.11-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information bind-9.9.9P1-62 is installed OR bind-chrootenv-9.9.9P1-62 is installed OR bind-devel-9.9.9P1-62 is installed OR bind-doc-9.9.9P1-62 is installed OR bind-libs-9.9.9P1-62 is installed OR bind-libs-32bit-9.9.9P1-62 is installed OR bind-utils-9.9.9P1-62 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND libimobiledevice6-1.2.0-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND ucode-intel-20180425-13.20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND ucode-intel-20180425-13.20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_45-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_14-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information avahi-0.6.32-30 is installed OR avahi-lang-0.6.32-30 is installed OR avahi-utils-0.6.32-30 is installed OR libavahi-client3-0.6.32-30 is installed OR libavahi-client3-32bit-0.6.32-30 is installed OR libavahi-common3-0.6.32-30 is installed OR libavahi-common3-32bit-0.6.32-30 is installed OR libavahi-core7-0.6.32-30 is installed OR libdns_sd-0.6.32-30 is installed OR libdns_sd-32bit-0.6.32-30 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information ghostscript-9.27-23.28 is installed OR ghostscript-x11-9.27-23.28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information MozillaFirefox-60.8.0-109.83 is installed OR MozillaFirefox-translations-common-60.8.0-109.83 is installed OR libfreebl3-3.44.1-58.28 is installed OR libfreebl3-32bit-3.44.1-58.28 is installed OR libfreebl3-hmac-3.44.1-58.28 is installed OR libfreebl3-hmac-32bit-3.44.1-58.28 is installed OR libsoftokn3-3.44.1-58.28 is installed OR libsoftokn3-32bit-3.44.1-58.28 is installed OR libsoftokn3-hmac-3.44.1-58.28 is installed OR libsoftokn3-hmac-32bit-3.44.1-58.28 is installed OR mozilla-nss-3.44.1-58.28 is installed OR mozilla-nss-32bit-3.44.1-58.28 is installed OR mozilla-nss-certs-3.44.1-58.28 is installed OR mozilla-nss-certs-32bit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-32bit-3.44.1-58.28 is installed OR mozilla-nss-tools-3.44.1-58.28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information apache2-2.4.23-29.21 is installed OR apache2-doc-2.4.23-29.21 is installed OR apache2-example-pages-2.4.23-29.21 is installed OR apache2-prefork-2.4.23-29.21 is installed OR apache2-utils-2.4.23-29.21 is installed OR apache2-worker-2.4.23-29.21 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libFLAC++6-1.3.0-11 is installed OR libFLAC8-1.3.0-11 is installed OR libFLAC8-32bit-1.3.0-11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information gmp-6.1.2-4.3 is installed OR gmp-devel-6.1.2-4.3 is installed OR gmp-devel-32bit-6.1.2-4.3 is installed OR gnutls-3.6.7-6.14 is installed OR libgmp10-6.1.2-4.3 is installed OR libgmp10-32bit-6.1.2-4.3 is installed OR libgmpxx4-6.1.2-4.3 is installed OR libgmpxx4-32bit-6.1.2-4.3 is installed OR libgnutls-devel-3.6.7-6.14 is installed OR libgnutls30-3.6.7-6.14 is installed OR libgnutls30-32bit-3.6.7-6.14 is installed OR libgnutls30-hmac-3.6.7-6.14 is installed OR libgnutls30-hmac-32bit-3.6.7-6.14 is installed OR libgnutlsxx-devel-3.6.7-6.14 is installed OR libgnutlsxx28-3.6.7-6.14 is installed OR libhogweed4-3.4.1-4.12 is installed OR libhogweed4-32bit-3.4.1-4.12 is installed OR libnettle-3.4.1-4.12 is installed OR libnettle-devel-3.4.1-4.12 is installed OR libnettle6-3.4.1-4.12 is installed OR libnettle6-32bit-3.4.1-4.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information rmt-server-2.5.2-3.26 is installed OR rmt-server-config-2.5.2-3.26 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information libreoffice-6.2.7.1-3.24 is installed OR libreoffice-base-6.2.7.1-3.24 is installed OR libreoffice-base-drivers-postgresql-6.2.7.1-3.24 is installed OR libreoffice-branding-upstream-6.2.7.1-3.24 is installed OR libreoffice-calc-6.2.7.1-3.24 is installed OR libreoffice-calc-extensions-6.2.7.1-3.24 is installed OR libreoffice-draw-6.2.7.1-3.24 is installed OR libreoffice-filters-optional-6.2.7.1-3.24 is installed OR libreoffice-gnome-6.2.7.1-3.24 is installed OR libreoffice-gtk3-6.2.7.1-3.24 is installed OR libreoffice-icon-themes-6.2.7.1-3.24 is installed OR libreoffice-impress-6.2.7.1-3.24 is installed OR libreoffice-l10n-af-6.2.7.1-3.24 is installed OR libreoffice-l10n-ar-6.2.7.1-3.24 is installed OR libreoffice-l10n-as-6.2.7.1-3.24 is installed OR libreoffice-l10n-bg-6.2.7.1-3.24 is installed OR libreoffice-l10n-bn-6.2.7.1-3.24 is installed OR libreoffice-l10n-br-6.2.7.1-3.24 is installed OR libreoffice-l10n-ca-6.2.7.1-3.24 is installed OR libreoffice-l10n-cs-6.2.7.1-3.24 is installed OR libreoffice-l10n-cy-6.2.7.1-3.24 is installed OR libreoffice-l10n-da-6.2.7.1-3.24 is installed OR libreoffice-l10n-de-6.2.7.1-3.24 is installed OR libreoffice-l10n-dz-6.2.7.1-3.24 is installed OR libreoffice-l10n-el-6.2.7.1-3.24 is installed OR libreoffice-l10n-en-6.2.7.1-3.24 is installed OR libreoffice-l10n-eo-6.2.7.1-3.24 is installed OR libreoffice-l10n-es-6.2.7.1-3.24 is installed OR libreoffice-l10n-et-6.2.7.1-3.24 is installed OR libreoffice-l10n-eu-6.2.7.1-3.24 is installed OR libreoffice-l10n-fa-6.2.7.1-3.24 is installed OR libreoffice-l10n-fi-6.2.7.1-3.24 is installed OR libreoffice-l10n-fr-6.2.7.1-3.24 is installed OR libreoffice-l10n-ga-6.2.7.1-3.24 is installed OR libreoffice-l10n-gl-6.2.7.1-3.24 is installed OR libreoffice-l10n-gu-6.2.7.1-3.24 is installed OR libreoffice-l10n-he-6.2.7.1-3.24 is installed OR libreoffice-l10n-hi-6.2.7.1-3.24 is installed OR libreoffice-l10n-hr-6.2.7.1-3.24 is installed OR libreoffice-l10n-hu-6.2.7.1-3.24 is installed OR libreoffice-l10n-it-6.2.7.1-3.24 is installed OR libreoffice-l10n-ja-6.2.7.1-3.24 is installed OR libreoffice-l10n-kk-6.2.7.1-3.24 is installed OR libreoffice-l10n-kn-6.2.7.1-3.24 is installed OR libreoffice-l10n-ko-6.2.7.1-3.24 is installed OR libreoffice-l10n-lt-6.2.7.1-3.24 is installed OR libreoffice-l10n-lv-6.2.7.1-3.24 is installed OR libreoffice-l10n-mai-6.2.7.1-3.24 is installed OR libreoffice-l10n-ml-6.2.7.1-3.24 is installed OR libreoffice-l10n-mr-6.2.7.1-3.24 is installed OR libreoffice-l10n-nb-6.2.7.1-3.24 is installed OR libreoffice-l10n-nl-6.2.7.1-3.24 is installed OR libreoffice-l10n-nn-6.2.7.1-3.24 is installed OR libreoffice-l10n-nr-6.2.7.1-3.24 is installed OR libreoffice-l10n-nso-6.2.7.1-3.24 is installed OR libreoffice-l10n-or-6.2.7.1-3.24 is installed OR libreoffice-l10n-pa-6.2.7.1-3.24 is installed OR libreoffice-l10n-pl-6.2.7.1-3.24 is installed OR libreoffice-l10n-pt_BR-6.2.7.1-3.24 is installed OR libreoffice-l10n-pt_PT-6.2.7.1-3.24 is installed OR libreoffice-l10n-ro-6.2.7.1-3.24 is installed OR libreoffice-l10n-ru-6.2.7.1-3.24 is installed OR libreoffice-l10n-si-6.2.7.1-3.24 is installed OR libreoffice-l10n-sk-6.2.7.1-3.24 is installed OR libreoffice-l10n-sl-6.2.7.1-3.24 is installed OR libreoffice-l10n-sr-6.2.7.1-3.24 is installed OR libreoffice-l10n-ss-6.2.7.1-3.24 is installed OR libreoffice-l10n-st-6.2.7.1-3.24 is installed OR libreoffice-l10n-sv-6.2.7.1-3.24 is installed OR libreoffice-l10n-ta-6.2.7.1-3.24 is installed OR libreoffice-l10n-te-6.2.7.1-3.24 is installed OR libreoffice-l10n-th-6.2.7.1-3.24 is installed OR libreoffice-l10n-tn-6.2.7.1-3.24 is installed OR libreoffice-l10n-tr-6.2.7.1-3.24 is installed OR libreoffice-l10n-ts-6.2.7.1-3.24 is installed OR libreoffice-l10n-uk-6.2.7.1-3.24 is installed OR libreoffice-l10n-ve-6.2.7.1-3.24 is installed OR libreoffice-l10n-xh-6.2.7.1-3.24 is installed OR libreoffice-l10n-zh_CN-6.2.7.1-3.24 is installed OR libreoffice-l10n-zh_TW-6.2.7.1-3.24 is installed OR libreoffice-l10n-zu-6.2.7.1-3.24 is installed OR libreoffice-mailmerge-6.2.7.1-3.24 is installed OR libreoffice-math-6.2.7.1-3.24 is installed OR libreoffice-officebean-6.2.7.1-3.24 is installed OR libreoffice-pyuno-6.2.7.1-3.24 is installed OR libreoffice-writer-6.2.7.1-3.24 is installed OR libreoffice-writer-extensions-6.2.7.1-3.24 is installed OR libreofficekit-6.2.7.1-3.24 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND enigmail-2.1.5-3.22 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information glibc-2.22-62.13 is installed OR glibc-32bit-2.22-62.13 is installed OR glibc-devel-2.22-62.13 is installed OR glibc-devel-32bit-2.22-62.13 is installed OR glibc-html-2.22-62.13 is installed OR glibc-i18ndata-2.22-62.13 is installed OR glibc-info-2.22-62.13 is installed OR glibc-locale-2.22-62.13 is installed OR glibc-locale-32bit-2.22-62.13 is installed OR glibc-profile-2.22-62.13 is installed OR glibc-profile-32bit-2.22-62.13 is installed OR nscd-2.22-62.13 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information kernel-default-4.4.180-94.103 is installed OR kernel-default-base-4.4.180-94.103 is installed OR kernel-default-devel-4.4.180-94.103 is installed OR kernel-devel-4.4.180-94.103 is installed OR kernel-macros-4.4.180-94.103 is installed OR kernel-source-4.4.180-94.103 is installed OR kernel-syms-4.4.180-94.103 is installed OR kgraft-patch-4_4_180-94_103-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_28-1-4.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information ruby2.1-rubygem-rails-html-sanitizer-1.0.3-8.8 is installed OR rubygem-rails-html-sanitizer-1.0.3-8.8 is installed

BACK