Oval Definition:	oval:org.opensuse.security:def:58156
Revision Date: 2020-12-01 Version: 1 Title: Security update for python-Django (Important) Description: This update for python-Django fixes the following issues: - CVE-2019-14232: Fixed a denial of service in 'django.utils.text.Truncator' (bsc#1142880). - CVE-2019-14233: Fixed a denial of service in strip_tags() (bsc#1142882). - CVE-2019-14234: Fixed an SQL injection in key and index lookups for 'JSONField'/'HStoreField' (bsc#1142883). - CVE-2019-14235: Fixed a potential memory exhaustion in 'django.utils.encoding.uri_to_iri()' (bsc#1142885). Family: unix Class: patch Status: Reference(s): 1019016 1024989 1027519 1036304 1042910 1044337 1045735 1049825 1052916 1053352 1059554 1070851 1074562 1076192 1079334 1086036 1086039 1088705 1091624 1092413 1092631 1096803 1099847 1100028 1100097 1101349 1102429 1103098 1104662 1104668 1119553 1119554 1119555 1119556 1119557 1119558 1120813 1122292 1122293 1122299 1127458 1128158 1142880 1142882 1142883 1142885 1153108 1156321 1156331 1157770 1165631 1166844 1167231 1173576 1173613 1173942 1175194 1176012 1176382 1176896 1176931 1178666 1178667 1178668 977410 CVE-2017-0663 CVE-2017-12617 CVE-2017-2885 CVE-2017-5664 CVE-2017-5715 CVE-2017-5753 CVE-2017-5754 CVE-2017-5969 CVE-2017-7674 CVE-2017-9269 CVE-2018-11212 CVE-2018-12539 CVE-2018-12910 CVE-2018-1517 CVE-2018-1656 CVE-2018-1890 CVE-2018-20856 CVE-2018-2940 CVE-2018-2952 CVE-2018-2973 CVE-2018-3639 CVE-2018-4437 CVE-2018-4438 CVE-2018-4441 CVE-2018-4442 CVE-2018-4443 CVE-2018-4464 CVE-2018-5391 CVE-2018-7685 CVE-2019-10220 CVE-2019-13272 CVE-2019-14232 CVE-2019-14233 CVE-2019-14234 CVE-2019-14235 CVE-2019-2422 CVE-2019-2449 CVE-2019-3840 CVE-2020-0429 CVE-2020-0431 CVE-2020-10531 CVE-2020-11668 CVE-2020-12402 CVE-2020-12415 CVE-2020-12416 CVE-2020-12417 CVE-2020-12418 CVE-2020-12419 CVE-2020-12420 CVE-2020-12421 CVE-2020-12422 CVE-2020-12423 CVE-2020-12424 CVE-2020-12425 CVE-2020-12426 CVE-2020-14350 CVE-2020-14381 CVE-2020-1749 CVE-2020-25212 CVE-2020-25694 CVE-2020-25695 CVE-2020-25696 SUSE-SU-2017:1670-1 SUSE-SU-2017:3039-1 SUSE-SU-2018:2204-2 SUSE-SU-2018:3792-1 SUSE-SU-2019:0146-1 SUSE-SU-2019:0553-1 SUSE-SU-2019:0617-1 SUSE-SU-2019:2180-1 SUSE-SU-2019:3261-1 SUSE-SU-2020:1180-1 SUSE-SU-2020:1899-1 SUSE-SU-2020:3219-1 SUSE-SU-2020:3477-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information libvmtools0-10.2.5-lp150.1 is installed OR open-vm-tools-10.2.5-lp150.1 is installed OR open-vm-tools-desktop-10.2.5-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information ncat-7.70-lp151.3.3 is installed OR ndiff-7.70-lp151.3.3 is installed OR nmap-7.70-lp151.3.3 is installed OR nping-7.70-lp151.3.3 is installed OR zenmap-7.70-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libxml2-2.9.4-42 is installed OR libxml2-2-2.9.4-42 is installed OR libxml2-2-32bit-2.9.4-42 is installed OR libxml2-doc-2.9.4-42 is installed OR libxml2-tools-2.9.4-42 is installed OR python-libxml2-2.9.4-42 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.30-30.46 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.30-30.46 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.30-30.46 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.30-30.46 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information xen-4.7.5_04-43.33 is installed OR xen-doc-html-4.7.5_04-43.33 is installed OR xen-libs-4.7.5_04-43.33 is installed OR xen-libs-32bit-4.7.5_04-43.33 is installed OR xen-tools-4.7.5_04-43.33 is installed OR xen-tools-domU-4.7.5_04-43.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_64-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_18-9-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND davfs2-1.5.2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libseccomp-2.4.1-11.3 is installed OR libseccomp2-2.4.1-11.3 is installed OR libseccomp2-32bit-2.4.1-11.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libpython3_4m1_0-3.4.6-25.29 is installed OR python3-3.4.6-25.29 is installed OR python3-base-3.4.6-25.29 is installed OR python3-curses-3.4.6-25.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libpolkit0-0.113-5.18 is installed OR polkit-0.113-5.18 is installed OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information djvulibre-3.5.25.3-5.3 is installed OR libdjvulibre21-3.5.25.3-5.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information cups-filters-1.0.58-19.2 is installed OR cups-filters-cups-browsed-1.0.58-19.2 is installed OR cups-filters-foomatic-rip-1.0.58-19.2 is installed OR cups-filters-ghostscript-1.0.58-19.2 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND python-Django-1.8.19-3.15 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND slf4j-1.7.12-3.3 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-ecdsa-0.13.3-5.10 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-activejob-4_2-4.2.9-3.6 is installed OR rubygem-activejob-4_2-4.2.9-3.6 is installed
BACK