Oval Definition:	oval:org.opensuse.security:def:56588
Revision Date: 2020-12-01 Version: 1 Title: Security update for python3 (Moderate) Description: This update for python3 provides the following fixes: These security issues were fixed: - CVE-2018-1061: Prevent catastrophic backtracking in the difflib.IS_LINE_JUNK method. An attacker could have used this flaw to cause denial of service (bsc#1088004). - CVE-2018-1060: Prevent catastrophic backtracking in pop3lib's apop() method. An attacker could have used this flaw to cause denial of service (bsc#1088009). These non-security issues were fixed: - Sort files and directories when creating tarfile archives so that they are created in a more predictable way. (bsc#1086001) - Add -fwrapv to OPTS (bsc#1107030) Family: unix Class: patch Status: Reference(s): 1009280 1012382 1013721 1013732 1013877 1013882 1014136 1015173 1016370 1017099 1023275 1026236 1026652 1027519 1031460 1034845 1036470 1037243 1042160 1042863 1042882 1042893 1042915 1042923 1042924 1042931 1042938 1043074 1043297 1047118 1047626 1048367 1053972 1057342 1060354 1060355 1060360 1060361 1060362 1060364 1064113 1064114 1065000 1068032 1069509 1070623 1072167 1073246 1073311 1073792 1073874 1074709 1075091 1075411 1075908 1075994 1076017 1076110 1076154 1076278 1076957 1077182 1077355 1077560 1077922 1081317 1086001 1088004 1088009 1092582 1101676 1101677 1101678 1103342 1104367 1107030 1110785 1112368 1112377 1112384 1112386 1112391 1112397 1112404 1112415 1112417 1112421 1112432 1112767 1113769 1114837 1116686 1118277 1118754 1120041 1120843 1120885 1122198 1122475 1125580 1125931 1127027 1131543 1131587 1132374 1132472 1134848 1135281 1136424 1136446 1137586 1140868 893777 893949 902197 902893 929493 938715 951638 955783 959290 963539 968392 968393 968394 968395 973782 973783 976553 976556 979008 979009 979010 979011 CVE-2008-1483 CVE-2014-3499 CVE-2014-5277 CVE-2014-6407 CVE-2014-6408 CVE-2014-8178 CVE-2014-8179 CVE-2014-9356 CVE-2014-9357 CVE-2014-9358 CVE-2015-1142857 CVE-2015-3455 CVE-2015-3627 CVE-2015-3629 CVE-2015-3630 CVE-2015-3631 CVE-2015-5400 CVE-2015-8370 CVE-2016-10012 CVE-2016-10708 CVE-2016-2569 CVE-2016-2570 CVE-2016-2571 CVE-2016-2572 CVE-2016-3947 CVE-2016-3948 CVE-2016-4051 CVE-2016-4052 CVE-2016-4053 CVE-2016-4054 CVE-2016-4553 CVE-2016-4554 CVE-2016-4555 CVE-2016-4556 CVE-2016-5542 CVE-2016-5554 CVE-2016-5556 CVE-2016-5568 CVE-2016-5573 CVE-2016-5597 CVE-2016-7837 CVE-2016-9800 CVE-2016-9801 CVE-2016-9804 CVE-2016-9843 CVE-2016-9918 CVE-2017-1000250 CVE-2017-10320 CVE-2017-10365 CVE-2017-10911 CVE-2017-10912 CVE-2017-10913 CVE-2017-10914 CVE-2017-10915 CVE-2017-10916 CVE-2017-10917 CVE-2017-10918 CVE-2017-10920 CVE-2017-10921 CVE-2017-10922 CVE-2017-13215 CVE-2017-14491 CVE-2017-14491 CVE-2017-14492 CVE-2017-14492 CVE-2017-14493 CVE-2017-14493 CVE-2017-14494 CVE-2017-14494 CVE-2017-14495 CVE-2017-14495 CVE-2017-14496 CVE-2017-14496 CVE-2017-15365 CVE-2017-15906 CVE-2017-17741 CVE-2017-17805 CVE-2017-17806 CVE-2017-18079 CVE-2017-5715 CVE-2017-8112 CVE-2017-8309 CVE-2017-8905 CVE-2017-9330 CVE-2017-9374 CVE-2017-9503 CVE-2018-1000004 CVE-2018-1060 CVE-2018-1061 CVE-2018-16850 CVE-2018-17972 CVE-2018-19788 CVE-2018-2759 CVE-2018-2777 CVE-2018-2786 CVE-2018-2810 CVE-2018-3058 CVE-2018-3060 CVE-2018-3063 CVE-2018-3064 CVE-2018-3066 CVE-2018-3143 CVE-2018-3156 CVE-2018-3162 CVE-2018-3173 CVE-2018-3174 CVE-2018-3185 CVE-2018-3200 CVE-2018-3251 CVE-2018-3277 CVE-2018-3282 CVE-2018-3284 CVE-2019-11190 CVE-2019-11477 CVE-2019-11478 CVE-2019-11479 CVE-2019-11709 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11715 CVE-2019-11717 CVE-2019-11719 CVE-2019-11729 CVE-2019-11730 CVE-2019-11833 CVE-2019-11884 CVE-2019-3846 CVE-2019-5489 CVE-2019-9811 SUSE-SU-2016:2008-1 SUSE-SU-2016:3043-1 SUSE-SU-2017:1812-1 SUSE-SU-2017:2618-1 SUSE-SU-2018:0525-1 SUSE-SU-2018:2685-1 SUSE-SU-2018:2696-1 SUSE-SU-2018:3770-1 SUSE-SU-2019:0019-1 SUSE-SU-2019:0510-1 SUSE-SU-2019:1441-1 SUSE-SU-2019:1533-1 SUSE-SU-2019:1861-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information bzip2-1.0.6-lp150.3 is installed OR libbz2-1-1.0.6-lp150.3 is installed OR libbz2-1-32bit-1.0.6-lp150.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information neovim-0.3.5-lp151.2.3 is installed OR neovim-lang-0.3.5-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libpython3_4m1_0-3.4.6-25.16 is installed OR python3-3.4.6-25.16 is installed OR python3-base-3.4.6-25.16 is installed OR python3-curses-3.4.6-25.16 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND squid-3.3.14-20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information xen-4.5.5_12-22.18 is installed OR xen-doc-html-4.5.5_12-22.18 is installed OR xen-kmp-default-4.5.5_12_k3.12.74_60.64.45-22.18 is installed OR xen-libs-4.5.5_12-22.18 is installed OR xen-libs-32bit-4.5.5_12-22.18 is installed OR xen-tools-4.5.5_12-22.18 is installed OR xen-tools-domU-4.5.5_12-22.18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information grub2-2.02~beta2-104 is installed OR grub2-arm64-efi-2.02~beta2-104 is installed OR grub2-i386-pc-2.02~beta2-104 is installed OR grub2-powerpc-ieee1275-2.02~beta2-104 is installed OR grub2-s390x-emu-2.02~beta2-104 is installed OR grub2-snapper-plugin-2.02~beta2-104 is installed OR grub2-systemd-sleep-plugin-2.02~beta2-104 is installed OR grub2-x86_64-efi-2.02~beta2-104 is installed OR grub2-x86_64-xen-2.02~beta2-104 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libzypp-16.17.20-27.52 is installed OR zypper-1.13.45-18.33 is installed OR zypper-log-1.13.45-18.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_29-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_10-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_nss-1.0.14-18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND mailman-2.1.17-3.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libseccomp-2.4.1-11.3 is installed OR libseccomp2-2.4.1-11.3 is installed OR libseccomp2-32bit-2.4.1-11.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information djvulibre-3.5.25.3-5.6 is installed OR libdjvulibre21-3.5.25.3-5.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information crash-7.2.1-2 is installed OR crash-kmp-default-7.2.1_k4.12.14_94.41-2 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND docker-1.9.1-58 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information dnsmasq-2.78-18.3 is installed OR dnsmasq-utils-2.78-18.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information dnsmasq-2.78-18.6 is installed OR dnsmasq-utils-2.78-18.6 is installed
BACK