Oval Definition:oval:org.opensuse.security:def:60888
Revision Date:2020-12-01Version:1
Title:Security update for python-urllib3 (Moderate)
Description:

This update for python-urllib3 fixes the following issues:

Security issues fixed:

- CVE-2019-9740: Fixed CRLF injection issue (bsc#1129071). - CVE-2019-11324: Fixed invalid CA certificat verification (bsc#1132900). - CVE-2019-11236: Fixed CRLF injection via request parameter (bsc#1132663). - CVE-2018-20060: Remove Authorization header when redirecting cross-host (bsc#1119376).
Family:unixClass:patch
Status:Reference(s):1009745
1013721
1013877
1026652
1036659
1038984
1043218
1045735
1046417
1047785
1048315
1057342
1082023
1085295
1085297
1085583
1085584
1085585
1085589
1103676
1119376
1129071
1132663
1132900
1133719
1138301
1138303
1138734
1144903
1149294
1149295
1149296
1149297
1149298
1149299
1149303
1149304
1149324
1149332
1149429
1153108
1153158
1153161
1156402
1158785
1158787
1158788
1158789
1158790
1158791
1158792
1158793
1158795
1165784
1169511
1171878
1172085
1172515
1173477
1173691
1173694
1173700
1173701
1173743
1173874
1173875
1173876
1173880
1176013
1176315
CVE-2016-7837
CVE-2016-9800
CVE-2016-9804
CVE-2017-1000250
CVE-2017-18233
CVE-2017-18234
CVE-2017-18236
CVE-2017-18238
CVE-2017-18922
CVE-2017-7435
CVE-2017-7436
CVE-2017-9269
CVE-2018-1000223
CVE-2018-20060
CVE-2018-21247
CVE-2018-7728
CVE-2018-7730
CVE-2019-10161
CVE-2019-10167
CVE-2019-10220
CVE-2019-10220
CVE-2019-11236
CVE-2019-11324
CVE-2019-11740
CVE-2019-11742
CVE-2019-11743
CVE-2019-11744
CVE-2019-11746
CVE-2019-11752
CVE-2019-11753
CVE-2019-1348
CVE-2019-1349
CVE-2019-1350
CVE-2019-1351
CVE-2019-1352
CVE-2019-1353
CVE-2019-1354
CVE-2019-1387
CVE-2019-15903
CVE-2019-17133
CVE-2019-17133
CVE-2019-19604
CVE-2019-20839
CVE-2019-20840
CVE-2019-2201
CVE-2019-9740
CVE-2019-9812
CVE-2020-10029
CVE-2020-14397
CVE-2020-14398
CVE-2020-14399
CVE-2020-14400
CVE-2020-14401
CVE-2020-14402
CVE-2020-14403
CVE-2020-14404
CVE-2020-17507
CVE-2020-2756
CVE-2020-2757
CVE-2020-2773
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-2830
SUSE-SU-2017:2264-1
SUSE-SU-2018:1778-1
SUSE-SU-2018:3389-1
SUSE-SU-2019:2300-1
SUSE-SU-2019:2972-1
SUSE-SU-2019:3311-1
SUSE-SU-2020:1571-1
SUSE-SU-2020:2167-1
SUSE-SU-2020:2751-1
SUSE-SU-2020:3024-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.1 NonFree
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • apache2-mod_php7-7.2.5-lp151.6.3 is installed
  • OR php7-7.2.5-lp151.6.3 is installed
  • OR php7-bcmath-7.2.5-lp151.6.3 is installed
  • OR php7-bz2-7.2.5-lp151.6.3 is installed
  • OR php7-calendar-7.2.5-lp151.6.3 is installed
  • OR php7-ctype-7.2.5-lp151.6.3 is installed
  • OR php7-curl-7.2.5-lp151.6.3 is installed
  • OR php7-dba-7.2.5-lp151.6.3 is installed
  • OR php7-devel-7.2.5-lp151.6.3 is installed
  • OR php7-dom-7.2.5-lp151.6.3 is installed
  • OR php7-embed-7.2.5-lp151.6.3 is installed
  • OR php7-enchant-7.2.5-lp151.6.3 is installed
  • OR php7-exif-7.2.5-lp151.6.3 is installed
  • OR php7-fastcgi-7.2.5-lp151.6.3 is installed
  • OR php7-fileinfo-7.2.5-lp151.6.3 is installed
  • OR php7-firebird-7.2.5-lp151.6.3 is installed
  • OR php7-fpm-7.2.5-lp151.6.3 is installed
  • OR php7-ftp-7.2.5-lp151.6.3 is installed
  • OR php7-gd-7.2.5-lp151.6.3 is installed
  • OR php7-gettext-7.2.5-lp151.6.3 is installed
  • OR php7-gmp-7.2.5-lp151.6.3 is installed
  • OR php7-iconv-7.2.5-lp151.6.3 is installed
  • OR php7-intl-7.2.5-lp151.6.3 is installed
  • OR php7-json-7.2.5-lp151.6.3 is installed
  • OR php7-ldap-7.2.5-lp151.6.3 is installed
  • OR php7-mbstring-7.2.5-lp151.6.3 is installed
  • OR php7-mysql-7.2.5-lp151.6.3 is installed
  • OR php7-odbc-7.2.5-lp151.6.3 is installed
  • OR php7-opcache-7.2.5-lp151.6.3 is installed
  • OR php7-openssl-7.2.5-lp151.6.3 is installed
  • OR php7-pcntl-7.2.5-lp151.6.3 is installed
  • OR php7-pdo-7.2.5-lp151.6.3 is installed
  • OR php7-pear-7.2.5-lp151.6.3 is installed
  • OR php7-pear-Archive_Tar-7.2.5-lp151.6.3 is installed
  • OR php7-pgsql-7.2.5-lp151.6.3 is installed
  • OR php7-phar-7.2.5-lp151.6.3 is installed
  • OR php7-posix-7.2.5-lp151.6.3 is installed
  • OR php7-readline-7.2.5-lp151.6.3 is installed
  • OR php7-shmop-7.2.5-lp151.6.3 is installed
  • OR php7-snmp-7.2.5-lp151.6.3 is installed
  • OR php7-soap-7.2.5-lp151.6.3 is installed
  • OR php7-sockets-7.2.5-lp151.6.3 is installed
  • OR php7-sodium-7.2.5-lp151.6.3 is installed
  • OR php7-sqlite-7.2.5-lp151.6.3 is installed
  • OR php7-sysvmsg-7.2.5-lp151.6.3 is installed
  • OR php7-sysvsem-7.2.5-lp151.6.3 is installed
  • OR php7-sysvshm-7.2.5-lp151.6.3 is installed
  • OR php7-testresults-7.2.5-lp151.6.3 is installed
  • OR php7-tidy-7.2.5-lp151.6.3 is installed
  • OR php7-tokenizer-7.2.5-lp151.6.3 is installed
  • OR php7-wddx-7.2.5-lp151.6.3 is installed
  • OR php7-xmlreader-7.2.5-lp151.6.3 is installed
  • OR php7-xmlrpc-7.2.5-lp151.6.3 is installed
  • OR php7-xmlwriter-7.2.5-lp151.6.3 is installed
  • OR php7-xsl-7.2.5-lp151.6.3 is installed
  • OR php7-zip-7.2.5-lp151.6.3 is installed
  • OR php7-zlib-7.2.5-lp151.6.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 NonFree is installed
  • AND opera-65.0.3467.62-lp151.2.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libzypp-16.15.3-2.3 is installed
  • OR yast2-pkg-bindings-3.2.4-2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • git-2.12.3-27.22 is installed
  • OR git-core-2.12.3-27.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_156-94_64-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_20-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_103-default-3-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_28-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libSoundTouch0-1.7.1-5.3 is installed
  • OR soundtouch-1.7.1-5.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • audiofile-0.3.6-10 is installed
  • OR libaudiofile1-0.3.6-10 is installed
  • OR libaudiofile1-32bit-0.3.6-10 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND python-urllib3-1.22-5.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • crowbar-core-6.0+git.1566321308.1de18b9a4-3.7 is installed
  • OR crowbar-core-branding-upstream-6.0+git.1566321308.1de18b9a4-3.7 is installed
  • OR crowbar-ha-6.0+git.1566406179.7549de2-3.7 is installed
  • OR crowbar-openstack-6.0+git.1566404979.41279a88e-3.7 is installed
  • OR crowbar-ui-1.3.0+git.1563181545.65360af5-8 is installed
  • OR openstack-ceilometer-11.0.2~dev14-3.7 is installed
  • OR openstack-ceilometer-agent-central-11.0.2~dev14-3.7 is installed
  • OR openstack-ceilometer-agent-compute-11.0.2~dev14-3.7 is installed
  • OR openstack-ceilometer-agent-ipmi-11.0.2~dev14-3.7 is installed
  • OR openstack-ceilometer-agent-notification-11.0.2~dev14-3.7 is installed
  • OR openstack-ceilometer-polling-11.0.2~dev14-3.7 is installed
  • OR openstack-cinder-13.0.7~dev3-3.7 is installed
  • OR openstack-cinder-api-13.0.7~dev3-3.7 is installed
  • OR openstack-cinder-backup-13.0.7~dev3-3.7 is installed
  • OR openstack-cinder-scheduler-13.0.7~dev3-3.7 is installed
  • OR openstack-cinder-volume-13.0.7~dev3-3.7 is installed
  • OR openstack-designate-7.0.1~dev21-3.7 is installed
  • OR openstack-designate-agent-7.0.1~dev21-3.7 is installed
  • OR openstack-designate-api-7.0.1~dev21-3.7 is installed
  • OR openstack-designate-central-7.0.1~dev21-3.7 is installed
  • OR openstack-designate-producer-7.0.1~dev21-3.7 is installed
  • OR openstack-designate-sink-7.0.1~dev21-3.7 is installed
  • OR openstack-designate-worker-7.0.1~dev21-3.7 is installed
  • OR openstack-heat-11.0.3~dev19-3.7 is installed
  • OR openstack-heat-api-11.0.3~dev19-3.7 is installed
  • OR openstack-heat-api-cfn-11.0.3~dev19-3.7 is installed
  • OR openstack-heat-engine-11.0.3~dev19-3.7 is installed
  • OR openstack-heat-plugin-heat_docker-11.0.3~dev19-3.7 is installed
  • OR openstack-horizon-plugin-neutron-fwaas-ui-1.5.1~dev6-8 is installed
  • OR openstack-horizon-plugin-neutron-lbaas-ui-5.0.1~dev7-8 is installed
  • OR openstack-horizon-plugin-neutron-vpnaas-ui-1.4.1~dev7-8 is installed
  • OR openstack-ironic-11.1.4~dev9-3.7 is installed
  • OR openstack-ironic-api-11.1.4~dev9-3.7 is installed
  • OR openstack-ironic-conductor-11.1.4~dev9-3.7 is installed
  • OR openstack-ironic-python-agent-3.3.3~dev4-3.7 is installed
  • OR openstack-keystone-14.1.1~dev8-3.7 is installed
  • OR openstack-magnum-7.1.1~dev28-3.7 is installed
  • OR openstack-magnum-api-7.1.1~dev28-3.7 is installed
  • OR openstack-magnum-conductor-7.1.1~dev28-3.7 is installed
  • OR openstack-manila-7.3.1~dev3-4.7 is installed
  • OR openstack-manila-api-7.3.1~dev3-4.7 is installed
  • OR openstack-manila-data-7.3.1~dev3-4.7 is installed
  • OR openstack-manila-scheduler-7.3.1~dev3-4.7 is installed
  • OR openstack-manila-share-7.3.1~dev3-4.7 is installed
  • OR openstack-monasca-notification-1.14.2~dev1-6.7 is installed
  • OR openstack-monasca-persister-1.12.1~dev9-9 is installed
  • OR openstack-monasca-persister-java-1.12.1~dev9-9 is installed
  • OR openstack-neutron-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-dhcp-agent-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-gbp-5.0.1~dev459-3.7 is installed
  • OR openstack-neutron-ha-tool-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-l3-agent-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-lbaas-13.0.1~dev14-3.7 is installed
  • OR openstack-neutron-lbaas-agent-13.0.1~dev14-3.7 is installed
  • OR openstack-neutron-linuxbridge-agent-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-macvtap-agent-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-metadata-agent-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-metering-agent-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-openvswitch-agent-13.0.5~dev22-3.7 is installed
  • OR openstack-neutron-server-13.0.5~dev22-3.7 is installed
  • OR openstack-nova-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-api-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-cells-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-compute-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-conductor-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-console-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-novncproxy-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-placement-api-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-scheduler-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-serialproxy-18.2.2~dev9-3.7 is installed
  • OR openstack-nova-vncproxy-18.2.2~dev9-3.7 is installed
  • OR openstack-octavia-3.1.2~dev8-3.7 is installed
  • OR openstack-octavia-amphora-agent-3.1.2~dev8-3.7 is installed
  • OR openstack-octavia-api-3.1.2~dev8-3.7 is installed
  • OR openstack-octavia-health-manager-3.1.2~dev8-3.7 is installed
  • OR openstack-octavia-housekeeping-3.1.2~dev8-3.7 is installed
  • OR openstack-octavia-worker-3.1.2~dev8-3.7 is installed
  • OR openstack-tempest-19.0.0-12 is installed
  • OR openstack-tempest-test-19.0.0-12 is installed
  • OR python-ceilometer-11.0.2~dev14-3.7 is installed
  • OR python-cinder-13.0.7~dev3-3.7 is installed
  • OR python-cinder-tempest-plugin-0.1.0-8 is installed
  • OR python-designate-7.0.1~dev21-3.7 is installed
  • OR python-heat-11.0.3~dev19-3.7 is installed
  • OR python-horizon-plugin-neutron-fwaas-ui-1.5.1~dev6-8 is installed
  • OR python-horizon-plugin-neutron-lbaas-ui-5.0.1~dev7-8 is installed
  • OR python-horizon-plugin-neutron-vpnaas-ui-1.4.1~dev7-8 is installed
  • OR python-ironic-11.1.4~dev9-3.7 is installed
  • OR python-ironicclient-2.5.3-4.7 is installed
  • OR python-ironicclient-doc-2.5.3-4.7 is installed
  • OR python-keystone-14.1.1~dev8-3.7 is installed
  • OR python-keystonemiddleware-5.2.0-8 is installed
  • OR python-magnum-7.1.1~dev28-3.7 is installed
  • OR python-manila-7.3.1~dev3-4.7 is installed
  • OR python-monasca-notification-1.14.2~dev1-6.7 is installed
  • OR python-monasca-persister-1.12.1~dev9-9 is installed
  • OR python-monasca-tempest-plugin-0.3.0-8 is installed
  • OR python-neutron-13.0.5~dev22-3.7 is installed
  • OR python-neutron-gbp-5.0.1~dev459-3.7 is installed
  • OR python-neutron-lbaas-13.0.1~dev14-3.7 is installed
  • OR python-nova-18.2.2~dev9-3.7 is installed
  • OR python-octavia-3.1.2~dev8-3.7 is installed
  • OR python-openstackclient-3.16.2-8 is installed
  • OR python-openstacksdk-0.17.3-8 is installed
  • OR python-proliantutils-2.8.4-8 is installed
  • OR python-tempest-19.0.0-12 is installed
  • OR python-vmware-nsx-13.0.1~dev146-9 is installed
  • OR python-vmware-nsxlib-13.0.1~dev24-8 is installed
  • OR yast2-crowbar-3.4.2-8 is installed
    • BACK