Oval Definition:	oval:org.opensuse.security:def:61035
Revision Date: 2020-12-01 Version: 1 Title: Security update for python3 (Important) Description: This update for python3 fixes the following issues: - CVE-2019-20907: Fixed denial of service by avoiding possible infinite loop in specifically crafted tarball (bsc#1174091). - CVE-2020-14422: Fixed an improper computation of hash values in the IPv4Interface and IPv6Interface could have led to denial of service (bsc#1173274). - CVE-2019-16935: Fixed a reflected XSS in python/Lib/DocXMLRPCServer.py (bsc#1153238). - CVE-2019-9947: Fixed an issue in urllib2 which allowed CRLF injection if the attacker controls a url parameter (bsc#1130840). - If the locale is 'C', coerce it to C.UTF-8 (bsc#1162423). Family: unix Class: patch Status: Reference(s): 1005778 1005780 1005781 1009062 1012382 1015336 1015337 1015340 1015342 1015343 1022604 1022743 1023711 1024296 1031492 1036215 1041783 1042802 1042803 1043088 1043598 1044596 1045719 1045721 1055857 1056088 1056090 1056093 1056095 1056097 1056101 1056105 1056415 1056427 1058722 1059893 1060799 1064101 1064115 1064232 1065386 1068032 1075087 1075091 1075994 1076110 1076263 1076505 1078216 1080157 1082153 1082299 1082485 1082653 1082962 1082979 1083125 1083635 1083650 1083900 1084721 1085042 1085058 1085185 1085511 1085536 1085657 1085958 1087081 1087082 1087659 1088004 1088009 1088242 1088865 1089023 1089115 1089198 1089343 1089393 1089525 1089608 1089644 1089752 1089895 1089925 1090123 1090225 1090340 1090435 1090643 1090658 1090663 1090708 1090718 1090734 1090888 1090953 1091041 1091107 1091325 1091728 1091925 1091960 1092001 1092207 1092289 1092497 1092566 1092904 1093008 1093144 1093215 1093777 1094019 1094120 1094244 1095453 1095643 1096790 1096978 1097034 1097501 1097771 1098599 1099306 1099713 1099792 1099810 1099858 1099918 1099966 1099993 1100089 1100132 1100340 1100523 1100843 1100930 1101296 1101331 1101658 1101789 1102188 1102197 1102203 1102205 1102207 1102211 1102214 1102215 1102340 1102394 1102683 1102851 1103097 1103119 1103580 1103717 1103745 1103884 1104174 1120943 1128935 1128937 1130746 1130840 1133100 1140868 1141853 1146648 1149955 1153238 1160770 1162423 1169573 1169574 1169576 1169580 1171475 1171550 1171847 1172105 1172116 1172121 1172515 1173274 1173580 1174091 1174701 1176315 1178671 802154 966170 966172 966186 966191 969476 969477 981348 997935 CVE-2016-6328 CVE-2017-10268 CVE-2017-10378 CVE-2017-13738 CVE-2017-13739 CVE-2017-13740 CVE-2017-13741 CVE-2017-13743 CVE-2017-13744 CVE-2017-16612 CVE-2017-18344 CVE-2017-7511 CVE-2017-7515 CVE-2017-7544 CVE-2017-9406 CVE-2017-9408 CVE-2017-9775 CVE-2017-9776 CVE-2018-1000199 CVE-2018-10087 CVE-2018-10124 CVE-2018-1065 CVE-2018-1130 CVE-2018-13440 CVE-2018-14647 CVE-2018-14734 CVE-2018-20030 CVE-2018-20852 CVE-2018-3620 CVE-2018-3639 CVE-2018-3646 CVE-2018-5390 CVE-2018-5391 CVE-2018-5803 CVE-2018-7492 CVE-2018-8781 CVE-2019-11709 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11715 CVE-2019-11717 CVE-2019-11719 CVE-2019-11729 CVE-2019-11730 CVE-2019-16056 CVE-2019-16935 CVE-2019-20907 CVE-2019-9278 CVE-2019-9704 CVE-2019-9705 CVE-2019-9811 CVE-2019-9947 CVE-2020-0093 CVE-2020-11758 CVE-2020-11760 CVE-2020-11763 CVE-2020-11764 CVE-2020-12321 CVE-2020-12767 CVE-2020-13112 CVE-2020-13113 CVE-2020-13114 CVE-2020-14422 CVE-2020-17507 CVE-2020-2752 CVE-2020-2812 CVE-2020-4044 SUSE-SU-2017:1999-1 SUSE-SU-2017:2570-1 SUSE-SU-2017:3214-1 SUSE-SU-2018:0384-1 SUSE-SU-2018:1366-1 SUSE-SU-2018:2374-1 SUSE-SU-2020:1534-1 SUSE-SU-2020:1991-1 SUSE-SU-2020:2699-1 SUSE-SU-2020:3354-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.1 NonFree openSUSE Leap 15.2 openSUSE Leap 15.2 NonFree SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information ImageMagick-7.0.7.34-lp151.7.3 is installed OR ImageMagick-config-7-SUSE-7.0.7.34-lp151.7.3 is installed OR ImageMagick-config-7-upstream-7.0.7.34-lp151.7.3 is installed OR ImageMagick-devel-7.0.7.34-lp151.7.3 is installed OR ImageMagick-devel-32bit-7.0.7.34-lp151.7.3 is installed OR ImageMagick-doc-7.0.7.34-lp151.7.3 is installed OR ImageMagick-extra-7.0.7.34-lp151.7.3 is installed OR libMagick++-7_Q16HDRI4-7.0.7.34-lp151.7.3 is installed OR libMagick++-7_Q16HDRI4-32bit-7.0.7.34-lp151.7.3 is installed OR libMagick++-devel-7.0.7.34-lp151.7.3 is installed OR libMagick++-devel-32bit-7.0.7.34-lp151.7.3 is installed OR libMagickCore-7_Q16HDRI6-7.0.7.34-lp151.7.3 is installed OR libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-lp151.7.3 is installed OR libMagickWand-7_Q16HDRI6-7.0.7.34-lp151.7.3 is installed OR libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-lp151.7.3 is installed OR perl-PerlMagick-7.0.7.34-lp151.7.3 is installed Definition Synopsis openSUSE Leap 15.1 NonFree is installed AND opera-65.0.3467.62-lp151.2.9 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information python2-targetcli-fb-2.1.52-lp152.2.3 is installed OR python3-targetcli-fb-2.1.52-lp152.2.3 is installed OR targetcli-fb-2.1.52-lp152.2.3 is installed OR targetcli-fb-common-2.1.52-lp152.2.3 is installed Definition Synopsis openSUSE Leap 15.2 NonFree is installed AND opera-69.0.3686.49-lp152.2.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libpoppler-glib8-0.43.0-16.5 is installed OR libpoppler-qt4-4-0.43.0-16.5 is installed OR libpoppler60-0.43.0-16.5 is installed OR poppler-0.43.0-16.5 is installed OR poppler-qt-0.43.0-16.5 is installed OR poppler-tools-0.43.0-16.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libexif-0.6.22-8.9 is installed OR libexif12-0.6.22-8.9 is installed OR libexif12-32bit-0.6.22-8.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information MozillaFirefox-60.8.0-109.83 is installed OR MozillaFirefox-translations-common-60.8.0-109.83 is installed OR libfreebl3-3.44.1-58.28 is installed OR libfreebl3-32bit-3.44.1-58.28 is installed OR libfreebl3-hmac-3.44.1-58.28 is installed OR libfreebl3-hmac-32bit-3.44.1-58.28 is installed OR libsoftokn3-3.44.1-58.28 is installed OR libsoftokn3-32bit-3.44.1-58.28 is installed OR libsoftokn3-hmac-3.44.1-58.28 is installed OR libsoftokn3-hmac-32bit-3.44.1-58.28 is installed OR mozilla-nss-3.44.1-58.28 is installed OR mozilla-nss-32bit-3.44.1-58.28 is installed OR mozilla-nss-certs-3.44.1-58.28 is installed OR mozilla-nss-certs-32bit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-32bit-3.44.1-58.28 is installed OR mozilla-nss-tools-3.44.1-58.28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND xrdp-0.9.0~git.1456906198.f422461-21.27 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information cron-4.2-59.10 is installed OR cronie-1.4.11-59.10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information bind-9.11.2-1 is installed OR bind-chrootenv-9.11.2-1 is installed OR bind-doc-9.11.2-1 is installed OR bind-utils-9.11.2-1 is installed OR libbind9-160-9.11.2-1 is installed OR libdns169-9.11.2-1 is installed OR libirs160-9.11.2-1 is installed OR libisc166-9.11.2-1 is installed OR libisc166-32bit-9.11.2-1 is installed OR libisccc160-9.11.2-1 is installed OR libisccfg160-9.11.2-1 is installed OR liblwres160-9.11.2-1 is installed OR python-bind-9.11.2-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND python-ipaddress-1.0.18-3.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND squid-3.5.21-26.32 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-Django1-1.11.20-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libpython3_4m1_0-3.4.10-25.52 is installed OR python3-3.4.10-25.52 is installed OR python3-base-3.4.10-25.52 is installed OR python3-curses-3.4.10-25.52 is installed OR python3-devel-3.4.10-25.52 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND python-Django1-1.11.20-3.6 is installed
BACK