Oval Definition:oval:org.opensuse.security:def:55301
Revision Date:2021-03-02Version:1
Title:Security update for python-cryptography (Important)
Description:

This update for python-cryptography fixes the following issues:

- CVE-2020-36242: Using the Fernet class to symmetrically encrypt multi gigabyte values could result in an integer overflow and buffer overflow (bsc#1182066).
Family:unixClass:patch
Status:Reference(s):1005778
1005780
1005781
1009062
1012260
1012382
1015336
1015337
1015340
1015342
1015343
1017690
1021577
1022604
1022743
1024296
1026191
1031492
1036215
1041469
1041894
1043598
1044596
1049703
1051684
1051685
1053259
1056415
1056427
1060799
1061204
1061599
1064786
1065464
1066489
1068032
1069213
1073210
1075087
1075091
1075994
1076263
1078436
1080157
1082153
1082299
1082485
1082962
1083125
1083635
1083650
1083900
1084721
1085058
1085185
1085511
1085958
1087082
1088242
1088865
1089023
1089115
1089198
1089393
1089608
1089644
1089752
1089895
1089925
1090225
1090643
1090658
1090663
1090708
1090718
1090734
1090953
1091041
1091325
1091551
1091728
1091925
1091960
1092289
1092497
1092566
1092697
1092904
1093008
1093144
1093215
1094019
1094767
1096515
1107116
1107121
1107343
1108771
1108986
1109363
1109465
1110506
1110507
1121567
1131945
1137001
1149961
1182066
703591
802154
813448
839074
857131
863205
866690
868603
875385
889332
889765
893359
934524
934525
934526
934527
934528
934529
953518
955104
959330
959552
960341
966170
966172
966186
966191
969476
969477
969783
970135
971949
981348
983436
983671
984858
985217
986251
988675
988676
990500
990970
991012
991013
991015
991016
991017
991018
991019
991020
991616
991934
992224
993665
994421
994625
994761
994772
994775
995785
995789
995792
CVE-2013-2131
CVE-2014-1493
CVE-2014-1494
CVE-2014-1496
CVE-2014-1497
CVE-2014-1498
CVE-2014-1499
CVE-2014-1500
CVE-2014-1501
CVE-2014-1502
CVE-2014-1504
CVE-2014-1505
CVE-2014-1508
CVE-2014-1509
CVE-2014-1510
CVE-2014-1511
CVE-2014-1512
CVE-2014-1513
CVE-2014-1514
CVE-2014-3675
CVE-2014-3676
CVE-2014-3677
CVE-2014-6272
CVE-2014-8128
CVE-2014-9732
CVE-2015-4467
CVE-2015-4469
CVE-2015-4470
CVE-2015-4471
CVE-2015-4472
CVE-2015-7554
CVE-2016-10095
CVE-2016-3477
CVE-2016-3521
CVE-2016-3615
CVE-2016-5104
CVE-2016-5318
CVE-2016-5350
CVE-2016-5351
CVE-2016-5352
CVE-2016-5353
CVE-2016-5354
CVE-2016-5355
CVE-2016-5356
CVE-2016-5357
CVE-2016-5358
CVE-2016-5359
CVE-2016-5440
CVE-2016-6258
CVE-2016-6259
CVE-2016-6504
CVE-2016-6505
CVE-2016-6506
CVE-2016-6507
CVE-2016-6508
CVE-2016-6509
CVE-2016-6510
CVE-2016-6511
CVE-2016-6833
CVE-2016-6834
CVE-2016-6835
CVE-2016-6836
CVE-2016-6888
CVE-2016-7092
CVE-2016-7093
CVE-2016-7094
CVE-2017-16232
CVE-2017-16541
CVE-2017-7546
CVE-2017-7547
CVE-2017-7548
CVE-2018-1000199
CVE-2018-10087
CVE-2018-10124
CVE-2018-1065
CVE-2018-1130
CVE-2018-12376
CVE-2018-12377
CVE-2018-12378
CVE-2018-12379
CVE-2018-12381
CVE-2018-12383
CVE-2018-12385
CVE-2018-12386
CVE-2018-12387
CVE-2018-16428
CVE-2018-16429
CVE-2018-16889
CVE-2018-3639
CVE-2018-5803
CVE-2018-7492
CVE-2018-8781
CVE-2019-10894
CVE-2019-10895
CVE-2019-10896
CVE-2019-10899
CVE-2019-10901
CVE-2019-10903
CVE-2019-12450
CVE-2020-36242
SUSE-SU-2015:2215-1
SUSE-SU-2016:2218-1
SUSE-SU-2016:2453-1
SUSE-SU-2016:2473-1
SUSE-SU-2017:2356-1
SUSE-SU-2018:0073-1
SUSE-SU-2018:1366-1
SUSE-SU-2018:3591-1
SUSE-SU-2019:1038-1
SUSE-SU-2019:1722-1
SUSE-SU-2019:2364-1
SUSE-SU-2021:0675-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • gnutls-3.6.2-lp150.3 is installed
  • OR libgnutls-dane0-3.6.2-lp150.3 is installed
  • OR libgnutls30-3.6.2-lp150.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • chromedriver-76.0.3809.87-lp151.2.15 is installed
  • OR chromium-76.0.3809.87-lp151.2.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-24.4.0esr-0.8 is installed
  • OR MozillaFirefox-branding-SLED-24-0.7 is installed
  • OR MozillaFirefox-translations-24.4.0esr-0.8 is installed
  • OR mozilla-nspr-4.10.4-0.3 is installed
  • OR mozilla-nspr-32bit-4.10.4-0.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • libmspack-0.0.20060920alpha-74.10 is installed
  • OR libmspack0-0.0.20060920alpha-74.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • MozillaFirefox-60.2.2esr-109.46 is installed
  • OR MozillaFirefox-branding-SLE-60-32.3 is installed
  • OR MozillaFirefox-translations-common-60.2.2esr-109.46 is installed
  • OR libfreebl3-3.36.4-58.15 is installed
  • OR libfreebl3-32bit-3.36.4-58.15 is installed
  • OR libsoftokn3-3.36.4-58.15 is installed
  • OR libsoftokn3-32bit-3.36.4-58.15 is installed
  • OR mozilla-nspr-4.19-19.3 is installed
  • OR mozilla-nspr-32bit-4.19-19.3 is installed
  • OR mozilla-nss-3.36.4-58.15 is installed
  • OR mozilla-nss-32bit-3.36.4-58.15 is installed
  • OR mozilla-nss-certs-3.36.4-58.15 is installed
  • OR mozilla-nss-certs-32bit-3.36.4-58.15 is installed
  • OR mozilla-nss-sysinit-3.36.4-58.15 is installed
  • OR mozilla-nss-sysinit-32bit-3.36.4-58.15 is installed
  • OR mozilla-nss-tools-3.36.4-58.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND libusbmuxd4-1.0.10-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND libevent-2_0-5-2.0.21-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND clamav-0.99.2-32 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND binutils-2.26.1-9.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • python-cryptography-2.1.4-7.34.1 is installed
  • OR python3-cryptography-2.1.4-7.34.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND ucode-intel-20190312-13.38 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • openslp-2.0.0-18.15 is installed
  • OR openslp-32bit-2.0.0-18.15 is installed
  • OR openslp-server-2.0.0-18.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND ppp-2.4.7-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • libpython3_4m1_0-3.4.6-25.29 is installed
  • OR python3-3.4.6-25.29 is installed
  • OR python3-base-3.4.6-25.29 is installed
  • OR python3-curses-3.4.6-25.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kernel-default-4.4.180-94.103 is installed
  • OR kernel-default-base-4.4.180-94.103 is installed
  • OR kernel-default-devel-4.4.180-94.103 is installed
  • OR kernel-default-man-4.4.180-94.103 is installed
  • OR kernel-devel-4.4.180-94.103 is installed
  • OR kernel-macros-4.4.180-94.103 is installed
  • OR kernel-source-4.4.180-94.103 is installed
  • OR kernel-syms-4.4.180-94.103 is installed
  • OR kgraft-patch-4_4_180-94_103-default-1-4.3 is installed
  • OR kgraft-patch-SLE12-SP3_Update_28-1-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • gdk-pixbuf-2.34.0-19.17 is installed
  • OR gdk-pixbuf-lang-2.34.0-19.17 is installed
  • OR gdk-pixbuf-query-loaders-2.34.0-19.17 is installed
  • OR gdk-pixbuf-query-loaders-32bit-2.34.0-19.17 is installed
  • OR libgdk_pixbuf-2_0-0-2.34.0-19.17 is installed
  • OR libgdk_pixbuf-2_0-0-32bit-2.34.0-19.17 is installed
  • OR typelib-1_0-GdkPixbuf-2_0-2.34.0-19.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND apache-commons-httpclient-3.1-4 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • libecpg6-9.6.4-3.6 is installed
  • OR libpq5-9.6.4-3.6 is installed
  • OR libpq5-32bit-9.6.4-3.6 is installed
  • OR postgresql96-9.6.4-3.6 is installed
  • OR postgresql96-contrib-9.6.4-3.6 is installed
  • OR postgresql96-docs-9.6.4-3.6 is installed
  • OR postgresql96-libs-9.6.4-3.6 is installed
  • OR postgresql96-server-9.6.4-3.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • postgresql94-9.4.19-21.22 is installed
  • OR postgresql94-contrib-9.4.19-21.22 is installed
  • OR postgresql94-docs-9.4.19-21.22 is installed
  • OR postgresql94-server-9.4.19-21.22 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND python-urllib3-1.23-3.6 is installed
    • BACK