OVAL Reference oval:org.opensuse.security:def:58339

Oval Definition:

oval:org.opensuse.security:def:58339

Revision Date:	2020-12-01	Version:	1
Title:	Security update for python3 (Important)
Description:	This update for python3 fixes the following issues: - CVE-2019-20907: Fixed denial of service by avoiding possible infinite loop in specifically crafted tarball (bsc#1174091). - CVE-2020-14422: Fixed an improper computation of hash values in the IPv4Interface and IPv6Interface could have led to denial of service (bsc#1173274). - CVE-2019-16935: Fixed a reflected XSS in python/Lib/DocXMLRPCServer.py (bsc#1153238). - CVE-2019-9947: Fixed an issue in urllib2 which allowed CRLF injection if the attacker controls a url parameter (bsc#1130840). - If the locale is 'C', coerce it to C.UTF-8 (bsc#1162423).
Family:	unix	Class:	patch
Status:		Reference(s):	1004995 1013533 1013604 1020905 1022053 1024051 1029102 1029516 1036873 1038865 1040258 1040614 1040942 1043758 1088004 1088009 1089039 1099310 1101246 1101470 1104789 1106197 1130840 1133191 1136446 1136935 1137597 1141853 1145092 1149496 1149955 1150733 1152497 1153238 1153332 1154448 1154456 1154458 1154461 1155945 1157888 1158003 1158004 1158005 1158006 1158007 1161181 1162423 1167240 1171252 1171254 1173274 1174091 1174701 1177943 982303 997043 CVE-2016-2183 CVE-2016-5546 CVE-2016-5547 CVE-2016-5548 CVE-2016-5549 CVE-2016-5552 CVE-2016-6252 CVE-2016-9576 CVE-2016-9794 CVE-2017-3231 CVE-2017-3241 CVE-2017-3252 CVE-2017-3253 CVE-2017-3260 CVE-2017-3261 CVE-2017-3272 CVE-2017-3289 CVE-2017-5838 CVE-2017-9217 CVE-2018-0737 CVE-2018-12207 CVE-2018-14647 CVE-2018-16301 CVE-2018-20852 CVE-2019-10208 CVE-2019-11135 CVE-2019-11477 CVE-2019-11478 CVE-2019-11487 CVE-2019-15165 CVE-2019-16056 CVE-2019-16935 CVE-2019-18420 CVE-2019-18421 CVE-2019-18424 CVE-2019-18425 CVE-2019-19577 CVE-2019-19578 CVE-2019-19579 CVE-2019-19580 CVE-2019-19581 CVE-2019-19583 CVE-2019-20907 CVE-2019-3689 CVE-2019-3846 CVE-2019-5482 CVE-2019-9947 CVE-2020-12653 CVE-2020-12654 CVE-2020-14422 CVE-2020-14779 CVE-2020-14781 CVE-2020-14782 CVE-2020-14792 CVE-2020-14796 CVE-2020-14797 CVE-2020-14798 CVE-2020-14803 CVE-2020-5267 CVE-2020-7211 SUSE-SU-2016:3146-1 SUSE-SU-2017:0346-1 SUSE-SU-2017:0966-1 SUSE-SU-2017:1773-1 SUSE-SU-2018:1997-1 SUSE-SU-2019:2158-1 SUSE-SU-2020:0334-1 SUSE-SU-2020:0954-1 SUSE-SU-2020:2699-1 SUSE-SU-2020:3310-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information kernel-firmware-20180416-lp150.1 is installed OR ucode-amd-20180416-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information evolution-3.26.6-lp151.4.3 is installed OR evolution-devel-3.26.6-lp151.4.3 is installed OR evolution-lang-3.26.6-lp151.4.3 is installed OR evolution-plugin-bogofilter-3.26.6-lp151.4.3 is installed OR evolution-plugin-pst-import-3.26.6-lp151.4.3 is installed OR evolution-plugin-spamassassin-3.26.6-lp151.4.3 is installed OR glade-catalog-evolution-3.26.6-lp151.4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information kernel-default-4.4.21-90 is installed OR kernel-default-base-4.4.21-90 is installed OR kernel-default-devel-4.4.21-90 is installed OR kernel-default-man-4.4.21-90 is installed OR kernel-devel-4.4.21-90 is installed OR kernel-macros-4.4.21-90 is installed OR kernel-source-4.4.21-90 is installed OR kernel-syms-4.4.21-90 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information postgresql94-9.4.24-21.25 is installed OR postgresql94-contrib-9.4.24-21.25 is installed OR postgresql94-docs-9.4.24-21.25 is installed OR postgresql94-plperl-9.4.24-21.25 is installed OR postgresql94-plpython-9.4.24-21.25 is installed OR postgresql94-pltcl-9.4.24-21.25 is installed OR postgresql94-server-9.4.24-21.25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libopenssl-devel-1.0.2j-60.39 is installed OR libopenssl1_0_0-1.0.2j-60.39 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.39 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.39 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.39 is installed OR openssl-1.0.2j-60.39 is installed OR openssl-doc-1.0.2j-60.39 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND shadow-4.2.1-27.9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information emacs-24.3-19 is installed OR emacs-el-24.3-19 is installed OR emacs-info-24.3-19 is installed OR emacs-nox-24.3-19 is installed OR emacs-x11-24.3-19 is installed OR etags-24.3-19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.3-2.56 is installed OR libwebkit2gtk-4_0-37-2.28.3-2.56 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.3-2.56 is installed OR typelib-1_0-WebKit2-4_0-2.28.3-2.56 is installed OR webkit2gtk-4_0-injected-bundles-2.28.3-2.56 is installed OR webkit2gtk3-2.28.3-2.56 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_103-default-3-2 is installed OR kgraft-patch-SLE12-SP3_Update_28-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information MozillaFirefox-60.8.0-109.83 is installed OR MozillaFirefox-translations-common-60.8.0-109.83 is installed OR libfreebl3-3.44.1-58.28 is installed OR libfreebl3-32bit-3.44.1-58.28 is installed OR libfreebl3-hmac-3.44.1-58.28 is installed OR libfreebl3-hmac-32bit-3.44.1-58.28 is installed OR libsoftokn3-3.44.1-58.28 is installed OR libsoftokn3-32bit-3.44.1-58.28 is installed OR libsoftokn3-hmac-3.44.1-58.28 is installed OR libsoftokn3-hmac-32bit-3.44.1-58.28 is installed OR mozilla-nss-3.44.1-58.28 is installed OR mozilla-nss-32bit-3.44.1-58.28 is installed OR mozilla-nss-certs-3.44.1-58.28 is installed OR mozilla-nss-certs-32bit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-32bit-3.44.1-58.28 is installed OR mozilla-nss-tools-3.44.1-58.28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libwireshark9-2.4.9-48.29 is installed OR libwiretap7-2.4.9-48.29 is installed OR libwscodecs1-2.4.9-48.29 is installed OR libwsutil8-2.4.9-48.29 is installed OR wireshark-2.4.9-48.29 is installed OR wireshark-gtk-2.4.9-48.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libpoppler-glib8-0.43.0-16.15 is installed OR libpoppler-qt4-4-0.43.0-16.15 is installed OR libpoppler60-0.43.0-16.15 is installed OR poppler-tools-0.43.0-16.15 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information libpython3_4m1_0-3.4.10-25.52 is installed OR python3-3.4.10-25.52 is installed OR python3-base-3.4.10-25.52 is installed OR python3-curses-3.4.10-25.52 is installed OR python3-devel-3.4.10-25.52 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information curl-7.37.0-37.47 is installed OR libcurl4-7.37.0-37.47 is installed OR libcurl4-32bit-7.37.0-37.47 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed

BACK