OVAL Reference oval:org.opensuse.security:def:53124

Oval Definition:

oval:org.opensuse.security:def:53124

Revision Date:	2020-12-01	Version:	1
Title:	Security update for python (Moderate)
Description:	This update for python fixes the following issues: Security issues fixed: - CVE-2019-18348: Fixed a CRLF injection via the host part of the url passed to urlopen(). Now an InvalidURL exception is raised (bsc#1155094). - CVE-2019-9674: Improved the documentation to reflect the dangers of zip-bombs (bsc#1162825).
Family:	unix	Class:	patch
Status:		Reference(s):	1001900 1004924 1005274 1021814 1021817 1021818 1021819 1021820 1021821 1021822 1021823 1021824 1021991 1025950 1025951 1114612 1155094 1162825 789835 928323 974092 CVE-2008-0928 CVE-2008-1945 CVE-2008-2109 CVE-2008-2382 CVE-2008-4539 CVE-2011-1521 CVE-2011-1946 CVE-2011-2483 CVE-2011-2513 CVE-2011-2514 CVE-2011-3146 CVE-2011-3177 CVE-2011-3377 CVE-2011-3389 CVE-2011-4944 CVE-2012-0845 CVE-2012-1150 CVE-2012-3422 CVE-2012-3423 CVE-2012-3515 CVE-2012-4433 CVE-2012-4540 CVE-2013-1752 CVE-2013-1753 CVE-2013-1881 CVE-2013-1926 CVE-2013-1927 CVE-2013-4148 CVE-2013-4149 CVE-2013-4150 CVE-2013-4151 CVE-2013-4238 CVE-2013-4349 CVE-2013-4526 CVE-2013-4527 CVE-2013-4529 CVE-2013-4530 CVE-2013-4531 CVE-2013-4533 CVE-2013-4534 CVE-2013-4535 CVE-2013-4536 CVE-2013-4537 CVE-2013-4538 CVE-2013-4539 CVE-2013-4540 CVE-2013-4541 CVE-2013-4542 CVE-2013-4544 CVE-2013-6399 CVE-2014-0142 CVE-2014-0143 CVE-2014-0144 CVE-2014-0145 CVE-2014-0146 CVE-2014-0147 CVE-2014-0150 CVE-2014-0182 CVE-2014-0222 CVE-2014-0223 CVE-2014-1912 CVE-2014-3461 CVE-2014-3640 CVE-2014-4650 CVE-2014-7185 CVE-2014-7840 CVE-2014-8106 CVE-2015-1779 CVE-2015-3146 CVE-2015-3209 CVE-2015-3456 CVE-2015-4037 CVE-2015-5154 CVE-2015-5225 CVE-2015-5234 CVE-2015-5235 CVE-2015-5278 CVE-2015-5279 CVE-2015-5745 CVE-2015-6815 CVE-2015-6855 CVE-2015-7295 CVE-2015-7512 CVE-2015-7549 CVE-2015-8345 CVE-2015-8504 CVE-2015-8558 CVE-2015-8567 CVE-2015-8568 CVE-2015-8613 CVE-2015-8619 CVE-2015-8743 CVE-2015-8744 CVE-2015-8745 CVE-2016-0772 CVE-2016-1000110 CVE-2016-1568 CVE-2016-1714 CVE-2016-1922 CVE-2016-1981 CVE-2016-2198 CVE-2016-3710 CVE-2016-3712 CVE-2016-4002 CVE-2016-4020 CVE-2016-4439 CVE-2016-4441 CVE-2016-4453 CVE-2016-4454 CVE-2016-4952 CVE-2016-4964 CVE-2016-5105 CVE-2016-5106 CVE-2016-5107 CVE-2016-5126 CVE-2016-5238 CVE-2016-5337 CVE-2016-5338 CVE-2016-5403 CVE-2016-5636 CVE-2016-5699 CVE-2016-6351 CVE-2016-6490 CVE-2016-6833 CVE-2016-6836 CVE-2016-6888 CVE-2016-6911 CVE-2016-7116 CVE-2016-7155 CVE-2016-7156 CVE-2016-7157 CVE-2016-7568 CVE-2016-8670 CVE-2017-5373 CVE-2017-5375 CVE-2017-5376 CVE-2017-5378 CVE-2017-5380 CVE-2017-5383 CVE-2017-5386 CVE-2017-5390 CVE-2017-5396 CVE-2017-5950 CVE-2017-7261 CVE-2017-7294 CVE-2017-7346 CVE-2018-11759 CVE-2019-18348 CVE-2019-9674 SUSE-SU-2015:1707-2 SUSE-SU-2016:2668-1 SUSE-SU-2017:0427-1 SUSE-SU-2017:0695-1 SUSE-SU-2017:0696-1 SUSE-SU-2018:3969-1 SUSE-SU-2020:1339-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 6-LTSS SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information ft2demos-2.9-lp150.2 is installed OR ftbench-2.9-lp150.2 is installed OR ftdiff-2.9-lp150.2 is installed OR ftdump-2.9-lp150.2 is installed OR ftgamma-2.9-lp150.2 is installed OR ftgrid-2.9-lp150.2 is installed OR ftinspect-2.9-lp150.2 is installed OR ftlint-2.9-lp150.2 is installed OR ftmulti-2.9-lp150.2 is installed OR ftstring-2.9-lp150.2 is installed OR ftvalid-2.9-lp150.2 is installed OR ftview-2.9-lp150.2 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libopenssl-1_1-devel-1.1.0i-lp151.8.3 is installed OR libopenssl-1_1-devel-32bit-1.1.0i-lp151.8.3 is installed OR libopenssl1_1-1.1.0i-lp151.8.3 is installed OR libopenssl1_1-32bit-1.1.0i-lp151.8.3 is installed OR libopenssl1_1-hmac-1.1.0i-lp151.8.3 is installed OR libopenssl1_1-hmac-32bit-1.1.0i-lp151.8.3 is installed OR openssl-1_1-1.1.0i-lp151.8.3 is installed OR openssl-1_1-doc-1.1.0i-lp151.8.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information cups-1.3.9-8.46.48 is installed OR cups-client-1.3.9-8.46.48 is installed OR cups-libs-1.3.9-8.46.48 is installed OR cups-libs-32bit-1.3.9-8.46.48 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information java-1_7_0-openjdk-1.7.0.91-0.14 is installed OR java-1_7_0-openjdk-demo-1.7.0.91-0.14 is installed OR java-1_7_0-openjdk-devel-1.7.0.91-0.14 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information krb5-1.6.3-133.49.97 is installed OR krb5-32bit-1.6.3-133.49.97 is installed OR krb5-client-1.6.3-133.49.97 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information libssh-0.6.3-8 is installed OR libssh4-0.6.3-8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information gd-2.1.0-17 is installed OR gd-32bit-2.1.0-17 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information gdk-pixbuf-loader-rsvg-2.40.15-4 is installed OR librsvg-2-2-2.40.15-4 is installed OR librsvg-2-2-32bit-2.40.15-4 is installed OR rsvg-view-2.40.15-4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND drm-kmp-default-4.9.33_k4.4.73_5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information java-1_7_0-openjdk-plugin-1.6.2-2.8 is installed OR java-1_8_0-openjdk-plugin-1.6.2-2.10 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python-2.7.17-7.38 is installed OR python-base-2.7.17-7.38 is installed OR python-curses-2.7.17-7.38 is installed OR python-devel-2.7.17-7.38 is installed OR python-gdbm-2.7.17-7.38 is installed OR python-xml-2.7.17-7.38 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND apache2-mod_jk-1.2.43-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libpng12-0-1.2.50-8 is installed OR libpng12-0-32bit-1.2.50-8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_45-default-6-2 is installed OR kgraft-patch-3_12_74-60_64_45-xen-6-2 is installed OR kgraft-patch-SLE12-SP1_Update_16-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libXcursor1-1.1.14-3 is installed OR libXcursor1-32bit-1.1.14-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.25-38.23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information openssh-7.2p2-74.25 is installed OR openssh-askpass-gnome-7.2p2-74.25 is installed OR openssh-fips-7.2p2-74.25 is installed OR openssh-helpers-7.2p2-74.25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_103-92_53-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_16-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libpng12-0-1.2.50-19 is installed OR libpng12-0-32bit-1.2.50-19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information strongswan-5.1.3-26.13 is installed OR strongswan-doc-5.1.3-26.13 is installed OR strongswan-hmac-5.1.3-26.13 is installed OR strongswan-ipsec-5.1.3-26.13 is installed OR strongswan-libs0-5.1.3-26.13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND ucode-intel-20190618-13.47 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_97-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_26-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND ucode-intel-20190514-13.44 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information gdm-3.10.0.1-54.6 is installed OR gdm-lang-3.10.0.1-54.6 is installed OR gdmflexiserver-3.10.0.1-54.6 is installed OR libgdm1-3.10.0.1-54.6 is installed OR typelib-1_0-Gdm-1_0-3.10.0.1-54.6 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND wget-1.14-21.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 6-LTSS is installed AND python-setuptools-18.0.1-4.8 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information MozillaFirefox-52.8.1esr-109.34 is installed OR MozillaFirefox-devel-52.8.1esr-109.34 is installed OR MozillaFirefox-translations-52.8.1esr-109.34 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-68.1.0-109.89 is installed OR MozillaFirefox-branding-SLE-68-32.8 is installed OR MozillaFirefox-translations-common-68.1.0-109.89 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND couchdb-1.7.2-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information mariadb-10.2.29-3.22 is installed OR mariadb-galera-10.2.29-3.22 is installed

BACK