Oval Definition:	oval:org.opensuse.security:def:60882
Revision Date: 2020-12-01 Version: 1 Title: Security update for python-Django (Important) Description: This update for python-Django to version 1.11.23 fixes the following issues: - CVE-2019-14232: Fixed a denial of service in 'django.utils.text.Truncator' (bsc#1142880). - CVE-2019-14233: Fixed a denial of service in strip_tags() (bsc#1142882). - CVE-2019-14234: Fixed an SQL injection in key and index lookups for 'JSONField'/'HStoreField' (bsc#1142883). - CVE-2019-14235: Fixed a potential memory exhaustion in 'django.utils.encoding.uri_to_iri()' (bsc#1142885). - CVE-2019-12781: Fixed incorrect HTTP detection with reverse-proxy connecting via HTTPS (bsc#1139945). - CVE-2019-12308: Fixed a cross site scripting vulnerability in the AdminURLFieldWidget (bsc#1136468). Family: unix Class: patch Status: Reference(s): 1029638 1029639 1029706 1029707 1029751 1049219 1087200 1096745 1105012 1106171 1106172 1106173 1106195 1107410 1107411 1107412 1107413 1107420 1107421 1107422 1107423 1107426 1107581 1108027 1109105 1109465 1115034 1117473 1122706 1123164 1123482 1124525 1133810 1136468 1137942 1139945 1140868 1142772 1142880 1142882 1142883 1142885 1144903 1145665 1145692 1149323 1149955 1153108 1153158 1153161 1154328 1164860 1165787 1174117 1174415 1176496 1176764 CVE-2013-7490 CVE-2017-6435 CVE-2017-6436 CVE-2017-6437 CVE-2017-6438 CVE-2017-6439 CVE-2018-12020 CVE-2018-15908 CVE-2018-15909 CVE-2018-15910 CVE-2018-15911 CVE-2018-16509 CVE-2018-16510 CVE-2018-16511 CVE-2018-16513 CVE-2018-16539 CVE-2018-16540 CVE-2018-16541 CVE-2018-16542 CVE-2018-16543 CVE-2018-16585 CVE-2018-16802 CVE-2018-16881 CVE-2018-17183 CVE-2019-1010180 CVE-2019-10220 CVE-2019-11709 CVE-2019-11710 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11714 CVE-2019-11715 CVE-2019-11716 CVE-2019-11717 CVE-2019-11718 CVE-2019-11719 CVE-2019-11720 CVE-2019-11721 CVE-2019-11723 CVE-2019-11724 CVE-2019-11725 CVE-2019-11727 CVE-2019-11728 CVE-2019-11729 CVE-2019-11730 CVE-2019-11733 CVE-2019-11735 CVE-2019-11736 CVE-2019-11738 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743 CVE-2019-11744 CVE-2019-11746 CVE-2019-11747 CVE-2019-11748 CVE-2019-11749 CVE-2019-11750 CVE-2019-11751 CVE-2019-11752 CVE-2019-11753 CVE-2019-12308 CVE-2019-12781 CVE-2019-14232 CVE-2019-14233 CVE-2019-14234 CVE-2019-14235 CVE-2019-16056 CVE-2019-17133 CVE-2019-20919 CVE-2019-3693 CVE-2019-3813 CVE-2019-9811 CVE-2019-9812 CVE-2020-10188 CVE-2020-13935 CVE-2020-15900 CVE-2020-1935 SUSE-SU-2017:2201-1 SUSE-SU-2018:1698-1 SUSE-SU-2018:3311-1 SUSE-SU-2019:2257-1 SUSE-SU-2019:2916-1 SUSE-SU-2019:3076-1 SUSE-SU-2020:1533-1 SUSE-SU-2020:2097-1 SUSE-SU-2020:2611-1 SUSE-SU-2020:2856-1 Platform(s): openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information bind-9.11.2-lp151.11.3 is installed OR bind-chrootenv-9.11.2-lp151.11.3 is installed OR bind-devel-9.11.2-lp151.11.3 is installed OR bind-devel-32bit-9.11.2-lp151.11.3 is installed OR bind-doc-9.11.2-lp151.11.3 is installed OR bind-lwresd-9.11.2-lp151.11.3 is installed OR bind-utils-9.11.2-lp151.11.3 is installed OR libbind9-160-9.11.2-lp151.11.3 is installed OR libbind9-160-32bit-9.11.2-lp151.11.3 is installed OR libdns169-9.11.2-lp151.11.3 is installed OR libdns169-32bit-9.11.2-lp151.11.3 is installed OR libirs-devel-9.11.2-lp151.11.3 is installed OR libirs160-9.11.2-lp151.11.3 is installed OR libirs160-32bit-9.11.2-lp151.11.3 is installed OR libisc166-9.11.2-lp151.11.3 is installed OR libisc166-32bit-9.11.2-lp151.11.3 is installed OR libisccc160-9.11.2-lp151.11.3 is installed OR libisccc160-32bit-9.11.2-lp151.11.3 is installed OR libisccfg160-9.11.2-lp151.11.3 is installed OR libisccfg160-32bit-9.11.2-lp151.11.3 is installed OR liblwres160-9.11.2-lp151.11.3 is installed OR liblwres160-32bit-9.11.2-lp151.11.3 is installed OR python3-bind-9.11.2-lp151.11.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libplist-1.12-20.3 is installed OR libplist3-1.12-20.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND mailman-2.1.17-3.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information MozillaFirefox-68.1.0-109.89 is installed OR MozillaFirefox-branding-SLE-68-32.8 is installed OR MozillaFirefox-translations-common-68.1.0-109.89 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_175-94_79-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ghostscript-9.25-23.13 is installed OR ghostscript-x11-9.25-23.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache2-2.4.23-29.24 is installed OR apache2-doc-2.4.23-29.24 is installed OR apache2-example-pages-2.4.23-29.24 is installed OR apache2-prefork-2.4.23-29.24 is installed OR apache2-utils-2.4.23-29.24 is installed OR apache2-worker-2.4.23-29.24 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND python-Django-1.11.23-3.12 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information caasp-openstack-heat-templates-1.0+git.1560518045.ad7dc6d-3.3 is installed OR crowbar-6.0+git.1561125496.b7508480-3.6 is installed OR crowbar-core-6.0+git.1562154525.5e2983308-3.3 is installed OR crowbar-core-branding-upstream-6.0+git.1562154525.5e2983308-3.3 is installed OR crowbar-devel-6.0+git.1561125496.b7508480-3.6 is installed OR crowbar-ha-6.0+git.1560951093.4af1ee5-3.3 is installed OR crowbar-openstack-6.0+git.1562153583.4735fcf34-3.3 is installed OR documentation-suse-openstack-cloud-crowbar-deployment-9.20190621-3.3 is installed OR documentation-suse-openstack-cloud-crowbar-operations-9.20190621-3.3 is installed OR documentation-suse-openstack-cloud-supplement-9.20190621-3.3 is installed OR galera-python-clustercheck-0.0+git.1562242499.36b8b64-6.3 is installed OR grafana-5.3.3-3.3 is installed OR grafana-monasca-ui-drilldown-1.14.1~dev7-3.3 is installed OR openstack-ceilometer-11.0.2~dev13-3.3 is installed OR openstack-ceilometer-agent-central-11.0.2~dev13-3.3 is installed OR openstack-ceilometer-agent-compute-11.0.2~dev13-3.3 is installed OR openstack-ceilometer-agent-ipmi-11.0.2~dev13-3.3 is installed OR openstack-ceilometer-agent-notification-11.0.2~dev13-3.3 is installed OR openstack-ceilometer-polling-11.0.2~dev13-3.3 is installed OR openstack-cinder-13.0.6~dev12-3.3 is installed OR openstack-cinder-api-13.0.6~dev12-3.3 is installed OR openstack-cinder-backup-13.0.6~dev12-3.3 is installed OR openstack-cinder-scheduler-13.0.6~dev12-3.3 is installed OR openstack-cinder-volume-13.0.6~dev12-3.3 is installed OR openstack-dashboard-14.0.4~dev4-3.3 is installed OR openstack-designate-7.0.1~dev20-3.3 is installed OR openstack-designate-agent-7.0.1~dev20-3.3 is installed OR openstack-designate-api-7.0.1~dev20-3.3 is installed OR openstack-designate-central-7.0.1~dev20-3.3 is installed OR openstack-designate-producer-7.0.1~dev20-3.3 is installed OR openstack-designate-sink-7.0.1~dev20-3.3 is installed OR openstack-designate-worker-7.0.1~dev20-3.3 is installed OR openstack-heat-11.0.3~dev5-3.3 is installed OR openstack-heat-api-11.0.3~dev5-3.3 is installed OR openstack-heat-api-cfn-11.0.3~dev5-3.3 is installed OR openstack-heat-engine-11.0.3~dev5-3.3 is installed OR openstack-heat-plugin-heat_docker-11.0.3~dev5-3.3 is installed OR openstack-horizon-plugin-designate-ui-7.0.1~dev7-3.3 is installed OR openstack-horizon-plugin-heat-ui-1.4.1~dev4-4.3 is installed OR openstack-horizon-plugin-magnum-ui-5.0.2~dev9-3.3 is installed OR openstack-horizon-plugin-monasca-ui-1.14.1~dev7-3.3 is installed OR openstack-ironic-11.1.4~dev2-3.3 is installed OR openstack-ironic-api-11.1.4~dev2-3.3 is installed OR openstack-ironic-conductor-11.1.4~dev2-3.3 is installed OR openstack-ironic-python-agent-3.3.2~dev13-3.3 is installed OR openstack-keystone-14.1.1~dev7-3.3 is installed OR openstack-magnum-7.1.1~dev24-3.3 is installed OR openstack-magnum-api-7.1.1~dev24-3.3 is installed OR openstack-magnum-conductor-7.1.1~dev24-3.3 is installed OR openstack-manila-7.3.1~dev2-4.3 is installed OR openstack-manila-api-7.3.1~dev2-4.3 is installed OR openstack-manila-data-7.3.1~dev2-4.3 is installed OR openstack-manila-scheduler-7.3.1~dev2-4.3 is installed OR openstack-manila-share-7.3.1~dev2-4.3 is installed OR openstack-monasca-agent-2.8.1~dev10-3.3 is installed OR openstack-monasca-notification-1.14.1~dev8-6.3 is installed OR openstack-neutron-13.0.4~dev89-3.3 is installed OR openstack-neutron-dhcp-agent-13.0.4~dev89-3.3 is installed OR openstack-neutron-fwaas-13.0.2~dev14-3.3 is installed OR openstack-neutron-gbp-5.0.1~dev443-3.3 is installed OR openstack-neutron-ha-tool-13.0.4~dev89-3.3 is installed OR openstack-neutron-l3-agent-13.0.4~dev89-3.3 is installed OR openstack-neutron-lbaas-13.0.1~dev12-3.3 is installed OR openstack-neutron-lbaas-agent-13.0.1~dev12-3.3 is installed OR openstack-neutron-linuxbridge-agent-13.0.4~dev89-3.3 is installed OR openstack-neutron-macvtap-agent-13.0.4~dev89-3.3 is installed OR openstack-neutron-metadata-agent-13.0.4~dev89-3.3 is installed OR openstack-neutron-metering-agent-13.0.4~dev89-3.3 is installed OR openstack-neutron-openvswitch-agent-13.0.4~dev89-3.3 is installed OR openstack-neutron-server-13.0.4~dev89-3.3 is installed OR openstack-neutron-vpnaas-13.0.2~dev4-3.3 is installed OR openstack-neutron-vyatta-agent-13.0.2~dev4-3.3 is installed OR openstack-nova-18.2.2~dev9-3.3 is installed OR openstack-nova-api-18.2.2~dev9-3.3 is installed OR openstack-nova-cells-18.2.2~dev9-3.3 is installed OR openstack-nova-compute-18.2.2~dev9-3.3 is installed OR openstack-nova-conductor-18.2.2~dev9-3.3 is installed OR openstack-nova-console-18.2.2~dev9-3.3 is installed OR openstack-nova-novncproxy-18.2.2~dev9-3.3 is installed OR openstack-nova-placement-api-18.2.2~dev9-3.3 is installed OR openstack-nova-scheduler-18.2.2~dev9-3.3 is installed OR openstack-nova-serialproxy-18.2.2~dev9-3.3 is installed OR openstack-nova-vncproxy-18.2.2~dev9-3.3 is installed OR openstack-octavia-3.1.2~dev2-3.3 is installed OR openstack-octavia-amphora-agent-3.1.2~dev2-3.3 is installed OR openstack-octavia-api-3.1.2~dev2-3.3 is installed OR openstack-octavia-health-manager-3.1.2~dev2-3.3 is installed OR openstack-octavia-housekeeping-3.1.2~dev2-3.3 is installed OR openstack-octavia-worker-3.1.2~dev2-3.3 is installed OR python-barbican-tempest-plugin-0.1.0-4.3 is installed OR python-ceilometer-11.0.2~dev13-3.3 is installed OR python-cinder-13.0.6~dev12-3.3 is installed OR python-cinderclient-4.0.2-3.3 is installed OR python-cinderclient-doc-4.0.2-3.3 is installed OR python-designate-7.0.1~dev20-3.3 is installed OR python-heat-11.0.3~dev5-3.3 is installed OR python-horizon-14.0.4~dev4-3.3 is installed OR python-horizon-plugin-designate-ui-7.0.1~dev7-3.3 is installed OR python-horizon-plugin-heat-ui-1.4.1~dev4-4.3 is installed OR python-horizon-plugin-magnum-ui-5.0.2~dev9-3.3 is installed OR python-horizon-plugin-monasca-ui-1.14.1~dev7-3.3 is installed OR python-ironic-11.1.4~dev2-3.3 is installed OR python-ironicclient-2.5.2-4.3 is installed OR python-ironicclient-doc-2.5.2-4.3 is installed OR python-keystone-14.1.1~dev7-3.3 is installed OR python-magnum-7.1.1~dev24-3.3 is installed OR python-manila-7.3.1~dev2-4.3 is installed OR python-manila-tempest-plugin-0.1.0-3.3 is installed OR python-manilaclient-1.24.2-3.3 is installed OR python-manilaclient-doc-1.24.2-3.3 is installed OR python-monasca-agent-2.8.1~dev10-3.3 is installed OR python-monasca-notification-1.14.1~dev8-6.3 is installed OR python-neutron-13.0.4~dev89-3.3 is installed OR python-neutron-fwaas-13.0.2~dev14-3.3 is installed OR python-neutron-gbp-5.0.1~dev443-3.3 is installed OR python-neutron-lbaas-13.0.1~dev12-3.3 is installed OR python-neutron-vpnaas-13.0.2~dev4-3.3 is installed OR python-nova-18.2.2~dev9-3.3 is installed OR python-octavia-3.1.2~dev2-3.3 is installed OR python-openstack_auth-14.0.4~dev4-3.3 is installed OR python-os-brick-2.5.7-3.3 is installed OR python-os-brick-common-2.5.7-3.3 is installed OR python-oslo.db-4.40.2-3.3 is installed OR python-proliantutils-2.8.4-1 is installed OR supportutils-plugin-suse-openstack-cloud-9.0.1562324636.e7046a3-1 is installed
BACK