Oval Definition:	oval:org.opensuse.security:def:60627
Revision Date: 2020-12-01 Version: 1 Title: Security update for python-urllib3 (Moderate) Description: This update for python-urllib3 fixes the following issues: Security issues fixed: - CVE-2019-9740: Fixed CRLF injection issue (bsc#1129071). - CVE-2019-11324: Fixed invalid CA certificat verification (bsc#1132900). - CVE-2019-11236: Fixed CRLF injection via request parameter (bsc#1132663). - CVE-2018-20060: Remove Authorization header when redirecting cross-host (bsc#1119376). Family: unix Class: patch Status: Reference(s): 1043983 1048072 1055265 1056286 1056782 1057246 1058754 1058755 1058757 1062452 1069607 1069632 1073002 1078782 1082007 1082008 1082009 1082010 1082011 1082014 1082058 1087433 1087434 1087436 1087437 1087440 1087441 1112530 1112532 1113064 1115375 1117463 1119376 1129071 1129231 1130611 1130617 1130620 1130622 1130623 1130627 1132663 1132900 1136446 1137597 1140747 1141780 1141782 1141783 1141784 1141785 1141786 1141787 1141789 1144903 1152990 1152992 1152994 1152995 1153108 1153158 1153161 1154824 1155094 1156323 1156324 1156326 1156328 1156329 1156402 1159913 1160968 1161951 1162224 1162367 1162687 1162689 1162691 1162825 1162972 1163985 1164871 1165631 1165894 1169025 1169625 1170383 1170618 1170620 1171098 1171195 1171202 1171218 1171219 1171517 1171689 1171698 1172032 1172221 1172275 1172317 1174628 1174955 1177155 CVE-2015-9096 CVE-2016-2339 CVE-2016-7798 CVE-2017-0898 CVE-2017-0899 CVE-2017-0900 CVE-2017-0901 CVE-2017-0902 CVE-2017-0903 CVE-2017-10784 CVE-2017-14033 CVE-2017-14064 CVE-2017-17405 CVE-2017-17742 CVE-2017-17790 CVE-2017-9228 CVE-2017-9229 CVE-2018-1000073 CVE-2018-1000074 CVE-2018-1000075 CVE-2018-1000076 CVE-2018-1000077 CVE-2018-1000078 CVE-2018-1000079 CVE-2018-16395 CVE-2018-16396 CVE-2018-18544 CVE-2018-20060 CVE-2018-6914 CVE-2018-8777 CVE-2018-8778 CVE-2018-8779 CVE-2018-8780 CVE-2019-10220 CVE-2019-11236 CVE-2019-11324 CVE-2019-11477 CVE-2019-11478 CVE-2019-12523 CVE-2019-12526 CVE-2019-12528 CVE-2019-15845 CVE-2019-16201 CVE-2019-16254 CVE-2019-16255 CVE-2019-17133 CVE-2019-18348 CVE-2019-18676 CVE-2019-18677 CVE-2019-18678 CVE-2019-18679 CVE-2019-2201 CVE-2019-2745 CVE-2019-2762 CVE-2019-2766 CVE-2019-2769 CVE-2019-2786 CVE-2019-2816 CVE-2019-2842 CVE-2019-3846 CVE-2019-5108 CVE-2019-7317 CVE-2019-8320 CVE-2019-8321 CVE-2019-8322 CVE-2019-8323 CVE-2019-8324 CVE-2019-8325 CVE-2019-9674 CVE-2019-9740 CVE-2020-0543 CVE-2020-10663 CVE-2020-10757 CVE-2020-12114 CVE-2020-12652 CVE-2020-12653 CVE-2020-12654 CVE-2020-12656 CVE-2020-14344 CVE-2020-15708 CVE-2020-1720 CVE-2020-1749 CVE-2020-25637 CVE-2020-2583 CVE-2020-2593 CVE-2020-2604 CVE-2020-2659 CVE-2020-8449 CVE-2020-8450 CVE-2020-8492 CVE-2020-8517 SUSE-SU-2018:4023-1 SUSE-SU-2019:0736-1 SUSE-SU-2019:1948-1 SUSE-SU-2019:2036-1 SUSE-SU-2019:2300-1 SUSE-SU-2019:2972-1 SUSE-SU-2020:0586-1 SUSE-SU-2020:0661-1 SUSE-SU-2020:1570-1 SUSE-SU-2020:1596-1 SUSE-SU-2020:2196-1 SUSE-SU-2020:3095-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.1 NonFree openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information kernel-firmware-20180525-lp150.2.3 is installed OR ucode-amd-20180525-lp150.2.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information update-test-32bit-pkg-5.1-lp151.12 is installed OR update-test-affects-package-manager-5.1-lp151.12 is installed OR update-test-broken-5.1-lp151.12 is installed OR update-test-feature-5.1-lp151.12 is installed OR update-test-interactive-5.1-lp151.12 is installed OR update-test-optional-5.1-lp151.12 is installed OR update-test-reboot-needed-5.1-lp151.12 is installed OR update-test-relogin-suggested-5.1-lp151.12 is installed OR update-test-security-5.1-lp151.12 is installed OR update-test-trivial-5.1-lp151.12 is installed Definition Synopsis openSUSE Leap 15.1 NonFree is installed AND opera-63.0.3368.66-lp151.2.6 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information mumble-1.3.2-lp152.2.3 is installed OR mumble-32bit-1.3.2-lp152.2.3 is installed OR mumble-server-1.3.2-lp152.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information ImageMagick-6.8.8.1-71.93 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.93 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.93 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_162-94_72-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_22-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_140-94_42-default-10-2 is installed OR kgraft-patch-SLE12-SP3_Update_15-10-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information bash-4.3-83.15 is installed OR bash-doc-4.3-83.15 is installed OR libreadline6-6.3-83.15 is installed OR libreadline6-32bit-6.3-83.15 is installed OR readline-doc-6.3-83.15 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND python-urllib3-1.22-5.6 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information ardana-ansible-9.0+git.1568821007.4e73730-3.13 is installed OR ardana-horizon-9.0+git.1569869028.8edfc22-3.10 is installed OR ardana-keystone-9.0+git.1570035317.78077ac-3.10 is installed OR ardana-manila-9.0+git.1569444107.add6a40-3.9 is installed OR ardana-neutron-9.0+git.1571328680.3a89cb8-3.13 is installed OR grafana-6.2.5-3.9 is installed OR openstack-cinder-13.0.8~dev8-3.13 is installed OR openstack-cinder-api-13.0.8~dev8-3.13 is installed OR openstack-cinder-backup-13.0.8~dev8-3.13 is installed OR openstack-cinder-scheduler-13.0.8~dev8-3.13 is installed OR openstack-cinder-volume-13.0.8~dev8-3.13 is installed OR openstack-dashboard-14.0.5~dev1-3.9 is installed OR openstack-horizon-plugin-manila-ui-2.16.2~dev2-3.3 is installed OR openstack-keystone-14.1.1~dev26-3.13 is installed OR openstack-manila-7.3.1~dev15-4.13 is installed OR openstack-manila-api-7.3.1~dev15-4.13 is installed OR openstack-manila-data-7.3.1~dev15-4.13 is installed OR openstack-manila-scheduler-7.3.1~dev15-4.13 is installed OR openstack-manila-share-7.3.1~dev15-4.13 is installed OR openstack-neutron-13.0.6~dev3-3.13 is installed OR openstack-neutron-dhcp-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-fwaas-13.0.3~dev2-3.6 is installed OR openstack-neutron-ha-tool-13.0.6~dev3-3.13 is installed OR openstack-neutron-l3-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-lbaas-13.0.1~dev15-3.10 is installed OR openstack-neutron-lbaas-agent-13.0.1~dev15-3.10 is installed OR openstack-neutron-linuxbridge-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-macvtap-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-metadata-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-metering-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-openvswitch-agent-13.0.6~dev3-3.13 is installed OR openstack-neutron-server-13.0.6~dev3-3.13 is installed OR openstack-nova-18.2.4~dev18-3.13 is installed OR openstack-nova-api-18.2.4~dev18-3.13 is installed OR openstack-nova-cells-18.2.4~dev18-3.13 is installed OR openstack-nova-compute-18.2.4~dev18-3.13 is installed OR openstack-nova-conductor-18.2.4~dev18-3.13 is installed OR openstack-nova-console-18.2.4~dev18-3.13 is installed OR openstack-nova-novncproxy-18.2.4~dev18-3.13 is installed OR openstack-nova-placement-api-18.2.4~dev18-3.13 is installed OR openstack-nova-scheduler-18.2.4~dev18-3.13 is installed OR openstack-nova-serialproxy-18.2.4~dev18-3.13 is installed OR openstack-nova-vncproxy-18.2.4~dev18-3.13 is installed OR openstack-octavia-3.2.1~dev1-3.13 is installed OR openstack-octavia-amphora-agent-3.2.1~dev1-3.13 is installed OR openstack-octavia-amphora-image-0.1.1-7.3 is installed OR openstack-octavia-amphora-image-x86_64-0.1.1-7.3 is installed OR openstack-octavia-api-3.2.1~dev1-3.13 is installed OR openstack-octavia-health-manager-3.2.1~dev1-3.13 is installed OR openstack-octavia-housekeeping-3.2.1~dev1-3.13 is installed OR openstack-octavia-worker-3.2.1~dev1-3.13 is installed OR pdns-4.1.8-3.3 is installed OR pdns-backend-mysql-4.1.8-3.3 is installed OR python-Django1-1.11.24-3.12 is installed OR python-cinder-13.0.8~dev8-3.13 is installed OR python-horizon-14.0.5~dev1-3.9 is installed OR python-horizon-plugin-manila-ui-2.16.2~dev2-3.3 is installed OR python-keystone-14.1.1~dev26-3.13 is installed OR python-keystonemiddleware-5.2.1-11 is installed OR python-manila-7.3.1~dev15-4.13 is installed OR python-neutron-13.0.6~dev3-3.13 is installed OR python-neutron-fwaas-13.0.3~dev2-3.6 is installed OR python-neutron-lbaas-13.0.1~dev15-3.10 is installed OR python-nova-18.2.4~dev18-3.13 is installed OR python-octavia-3.2.1~dev1-3.13 is installed OR python-octaviaclient-1.6.1-3.3 is installed OR python-openstack_auth-14.0.5~dev1-3.9 is installed OR python-os-brick-2.5.8-3.6 is installed OR python-os-brick-common-2.5.8-3.6 is installed OR python-oslo.cache-1.30.4-3.3 is installed OR python-oslo.messaging-8.1.4-3.3 is installed OR venv-openstack-barbican-7.0.1~dev18-3.11 is installed OR venv-openstack-barbican-x86_64-7.0.1~dev18-3.11 is installed OR venv-openstack-cinder-13.0.8~dev8-3.11 is installed OR venv-openstack-cinder-x86_64-13.0.8~dev8-3.11 is installed OR venv-openstack-designate-7.0.1~dev22-3.11 is installed OR venv-openstack-designate-x86_64-7.0.1~dev22-3.11 is installed OR venv-openstack-glance-17.0.1~dev30-3.11 is installed OR venv-openstack-glance-x86_64-17.0.1~dev30-3.11 is installed OR venv-openstack-heat-11.0.3~dev23-3.11 is installed OR venv-openstack-heat-x86_64-11.0.3~dev23-3.11 is installed OR venv-openstack-horizon-14.0.5~dev1-4.11 is installed OR venv-openstack-horizon-x86_64-14.0.5~dev1-4.11 is installed OR venv-openstack-keystone-14.1.1~dev26-3.11 is installed OR venv-openstack-keystone-x86_64-14.1.1~dev26-3.11 is installed OR venv-openstack-magnum-7.1.1~dev28-4.11 is installed OR venv-openstack-magnum-x86_64-7.1.1~dev28-4.11 is installed OR venv-openstack-manila-7.3.1~dev15-3.11 is installed OR venv-openstack-manila-x86_64-7.3.1~dev15-3.11 is installed OR venv-openstack-monasca-2.7.1~dev10-3.11 is installed OR venv-openstack-monasca-ceilometer-1.8.2~dev3-3.11 is installed OR venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.11 is installed OR venv-openstack-monasca-x86_64-2.7.1~dev10-3.11 is installed OR venv-openstack-neutron-13.0.6~dev3-6.11 is installed OR venv-openstack-neutron-x86_64-13.0.6~dev3-6.11 is installed OR venv-openstack-nova-18.2.4~dev18-3.11 is installed OR venv-openstack-nova-x86_64-18.2.4~dev18-3.11 is installed OR venv-openstack-octavia-3.2.1~dev1-4.11 is installed OR venv-openstack-octavia-x86_64-3.2.1~dev1-4.11 is installed OR venv-openstack-sahara-9.0.2~dev12-3.11 is installed OR venv-openstack-sahara-x86_64-9.0.2~dev12-3.11 is installed OR venv-openstack-swift-2.19.2~dev1-2.8 is installed OR venv-openstack-swift-x86_64-2.19.2~dev1-2.8 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND python-Django1-1.11.23-3.9 is installed
BACK