Oval Definition:	oval:org.opensuse.security:def:64026
Revision Date: 2020-12-01 Version: 1 Title: Security update for python3 (Moderate) Description: This update for python3 fixes the following issue: - CVE-2019-18348: Fixed a CRLF injection via the host part of the url passed to urlopen(). Now an InvalidURL exception is raised (bsc#1155094). - CVE-2019-9674: Improved the documentation to reflect the dangers of zip-bombs (bsc#1162825). - CVE-2020-8492: Fixed a regular expression in urllib that was prone to denial of service via HTTP (bsc#1162367). - Fixed an issue with version missmatch (bsc#1162224). - Rename idle icons to idle3 in order to not conflict with python2 variant of the package. (bsc#1165894) Family: unix Class: patch Status: Reference(s): 1118595 1118596 1118599 1121214 1133035 1137332 1140709 1153433 1155094 1162224 1162367 1162825 1165894 1171352 1172745 1174157 1174421 1176315 1177943 1178682 CVE-2018-15518 CVE-2018-19869 CVE-2018-19873 CVE-2019-12838 CVE-2019-17362 CVE-2019-18348 CVE-2019-3902 CVE-2019-5828 CVE-2019-5829 CVE-2019-5830 CVE-2019-5831 CVE-2019-5832 CVE-2019-5833 CVE-2019-5834 CVE-2019-5835 CVE-2019-5836 CVE-2019-5837 CVE-2019-5838 CVE-2019-5839 CVE-2019-5840 CVE-2019-9674 CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-14779 CVE-2020-14781 CVE-2020-14782 CVE-2020-14792 CVE-2020-14796 CVE-2020-14797 CVE-2020-14798 CVE-2020-14803 CVE-2020-15705 CVE-2020-17507 CVE-2020-25708 CVE-2020-6464 CVE-2020-6831 CVE-2020-8492 openSUSE-SU-2019:1557-1 openSUSE-SU-2019:2052-1 openSUSE-SU-2019:2514-1 openSUSE-SU-2020:0869-1 openSUSE-SU-2020:0917-1 openSUSE-SU-2020:1452-1 SUSE-SU-2020:0854-1 SUSE-SU-2020:3191-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 NonFree SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information chromedriver-75.0.3770.80-lp151.2.6 is installed OR chromium-75.0.3770.80-lp151.2.6 is installed Definition Synopsis openSUSE Leap 15.2 NonFree is installed AND opera-68.0.3618.104-lp152.2.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libpython3_4m1_0-3.4.10-25.45 is installed OR python3-3.4.10-25.45 is installed OR python3-base-3.4.10-25.45 is installed OR python3-curses-3.4.10-25.45 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information LibVNCServer-0.9.9-17.34 is installed OR libvncclient0-0.9.9-17.34 is installed OR libvncserver0-0.9.9-17.34 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information java-1_8_0-openjdk-1.8.0.272-27.48 is installed OR java-1_8_0-openjdk-demo-1.8.0.272-27.48 is installed OR java-1_8_0-openjdk-devel-1.8.0.272-27.48 is installed OR java-1_8_0-openjdk-headless-1.8.0.272-27.48 is installed
BACK