Oval Definition:	oval:org.opensuse.security:def:58421
Revision Date: 2020-12-01 Version: 1 Title: Security update for python3 (Moderate) Description: This update provides Python 3.4.5, which brings many fixes and enhancements. The following security issues have been fixed: - CVE-2016-1000110: CGIHandler could have allowed setting of HTTP_PROXY environment variable based on user supplied Proxy request header. (bsc#989523) - CVE-2016-0772: A vulnerability in smtplib could have allowed a MITM attacker to perform a startTLS stripping attack. (bsc#984751) - CVE-2016-5636: A heap overflow in Python's zipimport module. (bsc#985177) - CVE-2016-5699: A header injection flaw in urrlib2/urllib/httplib/http.client. (bsc#985348) The update also includes the following non-security fixes: - Don't force 3rd party C extensions to be built with -Werror=declaration-after-statement. (bsc#951166) - Make urllib proxy var handling behave as usual on POSIX. (bsc#983582) For a comprehensive list of changes please refer to the upstream change log: https://docs.python.org/3.4/whatsnew/changelog.html Family: unix Class: patch Status: Reference(s): 1002982 1006180 1011913 1012382 1012829 1013887 1017646 1019151 1020645 1020657 1021424 1022476 1022743 1022967 1023175 1024405 1025046 1026236 1028173 1028286 1029693 1029907 1029908 1029909 1030296 1030297 1030298 1030552 1030584 1030585 1030588 1030589 1030850 1031515 1031590 1031593 1031595 1031638 1031644 1031656 1031717 1031784 1033587 1034048 1034075 1034762 1036303 1036632 1037052 1037057 1037061 1037066 1037273 1037344 1037404 1037994 1038078 1038583 1038616 1038792 1039915 1040307 1040351 1041958 1042286 1042314 1042422 1042778 1043652 1044112 1044636 1044891 1044897 1044901 1044909 1044925 1044927 1045154 1045563 1045922 1046682 1046821 1046985 1047027 1047048 1047096 1047118 1047121 1047152 1047277 1047343 1047354 1047487 1047651 1047653 1047670 1048155 1048221 1048317 1048891 1048893 1048914 1048934 1049226 1049483 1049486 1049580 1049603 1049645 1049882 1050061 1050188 1051022 1051059 1051239 1051399 1051478 1051479 1051556 1051663 1051790 1052049 1052223 1052533 1052580 1052593 1052709 1052773 1052794 1052888 1053117 1053802 1053915 1053919 1054084 1055013 1055096 1055359 1055493 1055755 1055896 1056261 1056588 1056827 1056982 1057015 1058038 1058116 1058410 1058507 1059051 1059465 1060197 1061017 1061046 1061064 1061067 1061172 1061831 1061872 1063667 1064206 1064388 1065643 1065689 1065693 1068640 1068643 1068887 1068888 1068950 1069176 1069202 1074741 1077745 1079103 1079741 1080556 1080919 1081527 1083528 1083532 1085784 1086608 1086784 1086786 1086788 1088004 1088009 1090997 1091015 1091365 1091368 1092885 1101644 1101645 1101651 1101656 1102682 1106812 1114988 1121563 1122293 1122299 1123157 1125352 1126056 1126140 1126141 1126192 1126195 1126196 1126198 1126201 1127400 1127557 1128657 1129623 1130230 1130840 1132348 1132400 1132721 1141853 1149955 1153238 1156275 1157471 1162423 1173274 1174091 1174701 929629 951166 955942 964063 971975 974215 981309 983582 984751 985177 985348 989523 991069 CVE-2014-8146 CVE-2014-8147 CVE-2014-9939 CVE-2016-0772 CVE-2016-1000110 CVE-2016-10087 CVE-2016-5636 CVE-2016-5699 CVE-2016-7969 CVE-2016-7970 CVE-2016-7971 CVE-2016-7972 CVE-2017-1000252 CVE-2017-10810 CVE-2017-11472 CVE-2017-11473 CVE-2017-12134 CVE-2017-12153 CVE-2017-12154 CVE-2017-13080 CVE-2017-14051 CVE-2017-14106 CVE-2017-14489 CVE-2017-15649 CVE-2017-15938 CVE-2017-15939 CVE-2017-15996 CVE-2017-16826 CVE-2017-16827 CVE-2017-16828 CVE-2017-16829 CVE-2017-16830 CVE-2017-16831 CVE-2017-16832 CVE-2017-2625 CVE-2017-6965 CVE-2017-6966 CVE-2017-6969 CVE-2017-7209 CVE-2017-7210 CVE-2017-7223 CVE-2017-7224 CVE-2017-7225 CVE-2017-7226 CVE-2017-7299 CVE-2017-7300 CVE-2017-7301 CVE-2017-7302 CVE-2017-7303 CVE-2017-7304 CVE-2017-7518 CVE-2017-7541 CVE-2017-7542 CVE-2017-8392 CVE-2017-8393 CVE-2017-8394 CVE-2017-8396 CVE-2017-8421 CVE-2017-8831 CVE-2017-9746 CVE-2017-9747 CVE-2017-9748 CVE-2017-9750 CVE-2017-9755 CVE-2017-9756 CVE-2018-10372 CVE-2018-10373 CVE-2018-10534 CVE-2018-10535 CVE-2018-11212 CVE-2018-14647 CVE-2018-19967 CVE-2018-20852 CVE-2018-2938 CVE-2018-2940 CVE-2018-2952 CVE-2018-2973 CVE-2018-3639 CVE-2018-3639 CVE-2018-5390 CVE-2018-6323 CVE-2018-6543 CVE-2018-6759 CVE-2018-6872 CVE-2018-6954 CVE-2018-7208 CVE-2018-7568 CVE-2018-7569 CVE-2018-7570 CVE-2018-7642 CVE-2018-7643 CVE-2018-8945 CVE-2019-14869 CVE-2019-16056 CVE-2019-16935 CVE-2019-19191 CVE-2019-20907 CVE-2019-2422 CVE-2019-3842 CVE-2019-6454 CVE-2019-6778 CVE-2019-9824 CVE-2019-9947 CVE-2020-14422 SUSE-SU-2016:2859-1 SUSE-SU-2016:3107-1 SUSE-SU-2017:0853-1 SUSE-SU-2017:1862-1 SUSE-SU-2017:2318-1 SUSE-SU-2017:2869-1 SUSE-SU-2018:1614-1 SUSE-SU-2018:3064-2 SUSE-SU-2018:3207-1 SUSE-SU-2019:2983-1 SUSE-SU-2020:0115-1 SUSE-SU-2020:2699-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information cups-2.2.7-lp150.1 is installed OR cups-client-2.2.7-lp150.1 is installed OR cups-config-2.2.7-lp150.1 is installed OR libcups2-2.2.7-lp150.1 is installed OR libcupscgi1-2.2.7-lp150.1 is installed OR libcupsimage2-2.2.7-lp150.1 is installed OR libcupsmime1-2.2.7-lp150.1 is installed OR libcupsppdc1-2.2.7-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information rmt-server-2.3.1-lp151.2.3 is installed OR rmt-server-config-2.3.1-lp151.2.3 is installed OR rmt-server-pubcloud-2.3.1-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libpython3_4m1_0-3.4.5-19 is installed OR python3-3.4.5-19 is installed OR python3-base-3.4.5-19 is installed OR python3-curses-3.4.5-19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-openjdk-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-demo-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-devel-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-headless-1.8.0.181-27.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libsystemd0-228-150.66 is installed OR libsystemd0-32bit-228-150.66 is installed OR libudev-devel-228-150.66 is installed OR libudev1-228-150.66 is installed OR libudev1-32bit-228-150.66 is installed OR systemd-228-150.66 is installed OR systemd-32bit-228-150.66 is installed OR systemd-bash-completion-228-150.66 is installed OR systemd-sysvinit-228-150.66 is installed OR udev-228-150.66 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information libvirt-2.0.0-27.42 is installed OR libvirt-client-2.0.0-27.42 is installed OR libvirt-daemon-2.0.0-27.42 is installed OR libvirt-daemon-config-network-2.0.0-27.42 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed OR libvirt-daemon-driver-network-2.0.0-27.42 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed OR libvirt-daemon-hooks-2.0.0-27.42 is installed OR libvirt-daemon-lxc-2.0.0-27.42 is installed OR libvirt-daemon-qemu-2.0.0-27.42 is installed OR libvirt-daemon-xen-2.0.0-27.42 is installed OR libvirt-doc-2.0.0-27.42 is installed OR libvirt-lock-sanlock-2.0.0-27.42 is installed OR libvirt-nss-2.0.0-27.42 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libopenssl-devel-1.0.2j-60.55 is installed OR libopenssl1_0_0-1.0.2j-60.55 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed OR openssl-1.0.2j-60.55 is installed OR openssl-doc-1.0.2j-60.55 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libecpg6-10.5-1.3 is installed OR libpq5-10.5-1.3 is installed OR libpq5-32bit-10.5-1.3 is installed OR postgresql-init-10-17.20 is installed OR postgresql10-10.5-1.3 is installed OR postgresql10-contrib-10.5-1.3 is installed OR postgresql10-docs-10.5-1.3 is installed OR postgresql10-libs-10.5-1.3 is installed OR postgresql10-server-10.5-1.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information at-3.1.14-8.6 is installed OR flex-2.5.37-8 is installed OR flex-32bit-2.5.37-8 is installed OR libQtWebKit4-4.8.7+2.3.4-4.7 is installed OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-doc-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND cobbler-2.6.6-49.9 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information bzip2-1.0.6-30.8 is installed OR bzip2-doc-1.0.6-30.8 is installed OR libbz2-1-1.0.6-30.8 is installed OR libbz2-1-32bit-1.0.6-30.8 is installed
BACK