OVAL Reference oval:org.opensuse.security:def:55556

Oval Definition:

oval:org.opensuse.security:def:55556

Revision Date:	2020-12-01	Version:	1
Title:	Security update for python (Moderate)
Description:	This update to python 2.7.9 fixes the following issues: * python-2.7-libffi-aarch64.patch: Fix argument passing in libffi for aarch64 From the version update to 2.7.9: * contains full backport of ssl module from Python 3.4 (PEP466) * HTTPS certificate validation enabled by default (PEP476) * SSLv3 disabled by default (bnc#901715) * backported ensurepip module (PEP477) * fixes several missing CVEs from last release: CVE-2013-1752, CVE-2013-1753 * dropped upstreamed patches: python-2.7.6-poplib.patch, smtplib_maxline-2.7.patch, xmlrpc_gzip_27.patch * dropped patch python-2.7.3-ssl_ca_path.patch because we don't need it with ssl module from Python 3 * libffi was upgraded upstream, seems to contain our changes, so dropping libffi-ppc64le.diff as well * python-2.7-urllib2-localnet-ssl.patch - properly remove unconditional 'import ssl' from test_urllib2_localnet that caused it to fail without ssl * skip test_thread in qemu_linux_user mode From the version update to 2.7.8: * fixes CVE-2014-4650 directory traversal in CGIHTTPServer * fixes CVE-2014-7185 (bnc#898572) potential buffer overflow in buffer() Also the DH parameters were increased to 2048 bit to fix logjam security issue (bsc#935856)
Family:	unix	Class:	patch
Status:		Reference(s):	1001459 1012985 1023287 1027149 1028217 1030531 1030552 1031515 1033960 1034405 1035531 1035738 1037182 1037183 1037994 1038544 1038564 1038879 1038883 1038981 1038982 1039348 1039354 1039456 1039721 1039864 1039882 1039883 1039885 1040069 1041160 1041429 1041431 1042696 1042832 1042863 1044125 1045327 1045487 1045922 1046107 1048275 1048788 1049645 1049882 1053148 1053152 1053317 1056588 1056982 1057179 1057950 1058410 1058507 1058524 1059863 1062471 1062520 1063667 1063671 1064388 1064392 1066471 1066472 1114837 1121826 1128481 1136570 1155199 754481 773612 856774 860250 863764 878240 898346 898572 898603 898604 901715 917129 922855 922871 924312 926826 935856 969894 986924 993099 994364 CVE-2011-2489 CVE-2011-2490 CVE-2012-3438 CVE-2013-1752 CVE-2013-1753 CVE-2013-1988 CVE-2014-4650 CVE-2014-7169 CVE-2014-7185 CVE-2014-7186 CVE-2014-7187 CVE-2014-9654 CVE-2016-1950 CVE-2016-1952 CVE-2016-1953 CVE-2016-1954 CVE-2016-1957 CVE-2016-1958 CVE-2016-1960 CVE-2016-1961 CVE-2016-1962 CVE-2016-1964 CVE-2016-1965 CVE-2016-1966 CVE-2016-1974 CVE-2016-1977 CVE-2016-1978 CVE-2016-1979 CVE-2016-2790 CVE-2016-2791 CVE-2016-2792 CVE-2016-2793 CVE-2016-2794 CVE-2016-2795 CVE-2016-2796 CVE-2016-2797 CVE-2016-2798 CVE-2016-2799 CVE-2016-2800 CVE-2016-2801 CVE-2016-2802 CVE-2017-1000251 CVE-2017-1000363 CVE-2017-1000365 CVE-2017-1000380 CVE-2017-10661 CVE-2017-11176 CVE-2017-12153 CVE-2017-12154 CVE-2017-12762 CVE-2017-13080 CVE-2017-14051 CVE-2017-14106 CVE-2017-14140 CVE-2017-15265 CVE-2017-15274 CVE-2017-15649 CVE-2017-7482 CVE-2017-7487 CVE-2017-7518 CVE-2017-7541 CVE-2017-7542 CVE-2017-7889 CVE-2017-8831 CVE-2017-8890 CVE-2017-8924 CVE-2017-8925 CVE-2017-9074 CVE-2017-9075 CVE-2017-9076 CVE-2017-9077 CVE-2017-9242 CVE-2018-16850 CVE-2019-14866 CVE-2019-3860 CVE-2019-6133 SUSE-SU-2015:1344-1 SUSE-SU-2015:1790-1 SUSE-SU-2015:2056-1 SUSE-SU-2016:0727-1 SUSE-SU-2017:2792-1 SUSE-SU-2017:2908-1 SUSE-SU-2017:3150-1 SUSE-SU-2017:3153-1 SUSE-SU-2018:3770-2 SUSE-SU-2019:1606-1 SUSE-SU-2019:2035-1 SUSE-SU-2019:3064-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information apache2-mod_php7-7.2.5-lp150.1 is installed OR php7-7.2.5-lp150.1 is installed OR php7-ctype-7.2.5-lp150.1 is installed OR php7-dom-7.2.5-lp150.1 is installed OR php7-iconv-7.2.5-lp150.1 is installed OR php7-json-7.2.5-lp150.1 is installed OR php7-mysql-7.2.5-lp150.1 is installed OR php7-pdo-7.2.5-lp150.1 is installed OR php7-pgsql-7.2.5-lp150.1 is installed OR php7-sqlite-7.2.5-lp150.1 is installed OR php7-tokenizer-7.2.5-lp150.1 is installed OR php7-xmlreader-7.2.5-lp150.1 is installed OR php7-xmlwriter-7.2.5-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND transfig-3.2.6a-lp151.4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information ImageMagick-6.4.3.6-7.26 is installed OR libMagick++1-6.4.3.6-7.26 is installed OR libMagickCore1-6.4.3.6-7.26 is installed OR libMagickCore1-32bit-6.4.3.6-7.26 is installed OR libMagickWand1-6.4.3.6-7.26 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information bash-3.2-147.22 is installed OR bash-doc-3.2-147.22 is installed OR libreadline5-5.2-147.22 is installed OR libreadline5-32bit-5.2-147.22 is installed OR readline-doc-5.2-147.22 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information icu-4.0-7.30 is installed OR libicu-4.0-7.30 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information libpython2_7-1_0-2.7.9-14 is installed OR libpython2_7-1_0-32bit-2.7.9-14 is installed OR python-2.7.9-14 is installed OR python-base-2.7.9-14 is installed OR python-curses-2.7.9-14 is installed OR python-devel-2.7.9-14 is installed OR python-tk-2.7.9-14 is installed OR python-xml-2.7.9-14 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libecpg6-10.6-1.6 is installed OR libpq5-10.6-1.6 is installed OR libpq5-32bit-10.6-1.6 is installed OR postgresql10-10.6-1.6 is installed OR postgresql10-libs-10.6-1.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libXRes1-1.0.7-3 is installed OR libXRes1-32bit-1.0.7-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_54-default-3-4 is installed OR kgraft-patch-3_12_74-60_64_54-xen-3-4 is installed OR kgraft-patch-SLE12-SP1_Update_19-3-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND ant-1.9.4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND python-ipaddress-1.0.18-3.13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_104-default-5-2 is installed OR kgraft-patch-SLE12-SP2_Update_28-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.25-38.23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libXvnc1-1.6.0-18.11 is installed OR tigervnc-1.6.0-18.11 is installed OR xorg-x11-Xvnc-1.6.0-18.11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libseccomp-2.4.1-11.3 is installed OR libseccomp2-2.4.1-11.3 is installed OR libseccomp2-32bit-2.4.1-11.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_178-94_91-default-3-2 is installed OR kgraft-patch-SLE12-SP3_Update_25-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libxml2-2.9.4-46.15 is installed OR libxml2-2-2.9.4-46.15 is installed OR libxml2-2-32bit-2.9.4-46.15 is installed OR libxml2-doc-2.9.4-46.15 is installed OR libxml2-tools-2.9.4-46.15 is installed OR python-libxml2-2.9.4-46.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information gdm-3.10.0.1-54.6 is installed OR gdm-lang-3.10.0.1-54.6 is installed OR gdmflexiserver-3.10.0.1-54.6 is installed OR libgdm1-3.10.0.1-54.6 is installed OR typelib-1_0-Gdm-1_0-3.10.0.1-54.6 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information kernel-default-3.12.74-60.64.63 is installed OR kernel-default-base-3.12.74-60.64.63 is installed OR kernel-default-devel-3.12.74-60.64.63 is installed OR kernel-devel-3.12.74-60.64.63 is installed OR kernel-macros-3.12.74-60.64.63 is installed OR kernel-source-3.12.74-60.64.63 is installed OR kernel-syms-3.12.74-60.64.63 is installed OR kernel-xen-3.12.74-60.64.63 is installed OR kernel-xen-base-3.12.74-60.64.63 is installed OR kernel-xen-devel-3.12.74-60.64.63 is installed OR kgraft-patch-3_12_74-60_64_63-default-1-2 is installed OR kgraft-patch-3_12_74-60_64_63-xen-1-2 is installed OR kgraft-patch-SLE12-SP1_Update_22-1-2 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information nodejs-common-1.0-2 is installed OR nodejs6-6.11.1-11.5 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed

BACK