Oval Definition:	oval:org.opensuse.security:def:63858
Revision Date: 2020-12-01 Version: 1 Title: Security update for python-numpy (Important) Description: This update for python-numpy fixes the following issue: Security issue fixed: - CVE-2019-6446: Set allow_pickle to false by default to restrict loading untrusted content (bsc#1122208). With this update we decrease the possibility of allowing remote attackers to execute arbitrary code by misusing numpy.load(). A warning during runtime will show-up when the allow_pickle is not explicitly set. NOTE: By applying this update the behavior of python-numpy changes, which might break your application. In order to get the old behaviour back, you have to explicitly set `allow_pickle` to True. Be aware that this should only be done for trusted input, as loading untrusted input might lead to arbitrary code execution. Family: unix Class: patch Status: Reference(s): 1055857 1059893 1094464 1120943 1122208 1125330 1127987 1129821 1130262 1134689 1138034 1159819 1160770 1162610 1163184 1164505 1165784 1168669 1169746 1170908 1171475 1171847 1171978 1172105 1172116 1172121 1172383 1172384 1172386 1172495 1172710 1173022 1174157 1175664 1175665 1175671 1177943 CVE-2016-6328 CVE-2017-7544 CVE-2018-11396 CVE-2018-18335 CVE-2018-18356 CVE-2018-18506 CVE-2018-20030 CVE-2019-10130 CVE-2019-10164 CVE-2019-17006 CVE-2019-5785 CVE-2019-6446 CVE-2019-9278 CVE-2019-9788 CVE-2019-9790 CVE-2019-9791 CVE-2019-9792 CVE-2019-9793 CVE-2019-9794 CVE-2019-9795 CVE-2019-9796 CVE-2019-9801 CVE-2019-9810 CVE-2019-9813 CVE-2020-0093 CVE-2020-10029 CVE-2020-10761 CVE-2020-12399 CVE-2020-12402 CVE-2020-12767 CVE-2020-13112 CVE-2020-13113 CVE-2020-13114 CVE-2020-13361 CVE-2020-13362 CVE-2020-13659 CVE-2020-13800 CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-14779 CVE-2020-14781 CVE-2020-14782 CVE-2020-14792 CVE-2020-14796 CVE-2020-14797 CVE-2020-14798 CVE-2020-14803 CVE-2020-15810 CVE-2020-15811 CVE-2020-24606 CVE-2020-8597 openSUSE-SU-2019:1773-1 openSUSE-SU-2019:2318-1 openSUSE-SU-2020:0381-1 openSUSE-SU-2020:1108-1 openSUSE-SU-2020:1893-1 SUSE-SU-2019:0419-1 SUSE-SU-2019:0852-1 SUSE-SU-2020:0490-1 SUSE-SU-2020:1534-1 SUSE-SU-2020:2471-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libecpg6-10.9-lp151.2.3 is installed OR libecpg6-32bit-10.9-lp151.2.3 is installed OR libpq5-10.9-lp151.2.3 is installed OR libpq5-32bit-10.9-lp151.2.3 is installed OR postgresql10-10.9-lp151.2.3 is installed OR postgresql10-contrib-10.9-lp151.2.3 is installed OR postgresql10-devel-10.9-lp151.2.3 is installed OR postgresql10-docs-10.9-lp151.2.3 is installed OR postgresql10-plperl-10.9-lp151.2.3 is installed OR postgresql10-plpython-10.9-lp151.2.3 is installed OR postgresql10-pltcl-10.9-lp151.2.3 is installed OR postgresql10-server-10.9-lp151.2.3 is installed OR postgresql10-test-10.9-lp151.2.3 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information qemu-4.2.1-lp152.9.3 is installed OR qemu-arm-4.2.1-lp152.9.3 is installed OR qemu-audio-alsa-4.2.1-lp152.9.3 is installed OR qemu-audio-pa-4.2.1-lp152.9.3 is installed OR qemu-audio-sdl-4.2.1-lp152.9.3 is installed OR qemu-block-curl-4.2.1-lp152.9.3 is installed OR qemu-block-dmg-4.2.1-lp152.9.3 is installed OR qemu-block-gluster-4.2.1-lp152.9.3 is installed OR qemu-block-iscsi-4.2.1-lp152.9.3 is installed OR qemu-block-nfs-4.2.1-lp152.9.3 is installed OR qemu-block-rbd-4.2.1-lp152.9.3 is installed OR qemu-block-ssh-4.2.1-lp152.9.3 is installed OR qemu-extra-4.2.1-lp152.9.3 is installed OR qemu-guest-agent-4.2.1-lp152.9.3 is installed OR qemu-ipxe-1.0.0+-lp152.9.3 is installed OR qemu-ksm-4.2.1-lp152.9.3 is installed OR qemu-kvm-4.2.1-lp152.9.3 is installed OR qemu-lang-4.2.1-lp152.9.3 is installed OR qemu-linux-user-4.2.1-lp152.9.3 is installed OR qemu-microvm-4.2.1-lp152.9.3 is installed OR qemu-ppc-4.2.1-lp152.9.3 is installed OR qemu-s390-4.2.1-lp152.9.3 is installed OR qemu-seabios-1.12.1+-lp152.9.3 is installed OR qemu-sgabios-8-lp152.9.3 is installed OR qemu-testsuite-4.2.1-lp152.9.3 is installed OR qemu-tools-4.2.1-lp152.9.3 is installed OR qemu-ui-curses-4.2.1-lp152.9.3 is installed OR qemu-ui-gtk-4.2.1-lp152.9.3 is installed OR qemu-ui-sdl-4.2.1-lp152.9.3 is installed OR qemu-ui-spice-app-4.2.1-lp152.9.3 is installed OR qemu-vgabios-1.12.1+-lp152.9.3 is installed OR qemu-vhost-user-gpu-4.2.1-lp152.9.3 is installed OR qemu-x86-4.2.1-lp152.9.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND python-numpy-1.8.0-5.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information libfreebl3-3.53.1-58.48 is installed OR libfreebl3-32bit-3.53.1-58.48 is installed OR libfreebl3-hmac-3.53.1-58.48 is installed OR libfreebl3-hmac-32bit-3.53.1-58.48 is installed OR libsoftokn3-3.53.1-58.48 is installed OR libsoftokn3-32bit-3.53.1-58.48 is installed OR libsoftokn3-hmac-3.53.1-58.48 is installed OR libsoftokn3-hmac-32bit-3.53.1-58.48 is installed OR mozilla-nspr-4.25-19.15 is installed OR mozilla-nspr-32bit-4.25-19.15 is installed OR mozilla-nspr-devel-4.25-19.15 is installed OR mozilla-nss-3.53.1-58.48 is installed OR mozilla-nss-32bit-3.53.1-58.48 is installed OR mozilla-nss-certs-3.53.1-58.48 is installed OR mozilla-nss-certs-32bit-3.53.1-58.48 is installed OR mozilla-nss-devel-3.53.1-58.48 is installed OR mozilla-nss-sysinit-3.53.1-58.48 is installed OR mozilla-nss-sysinit-32bit-3.53.1-58.48 is installed OR mozilla-nss-tools-3.53.1-58.48 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND squid-3.5.21-26.32 is installed
BACK