Oval Definition:	oval:org.opensuse.security:def:64150
Revision Date: 2020-12-01 Version: 1 Title: Security update for python3 (Important) Description: This update for python3 fixes the following issues: - CVE-2019-20907: Fixed denial of service by avoiding possible infinite loop in specifically crafted tarball (bsc#1174091). - CVE-2020-14422: Fixed an improper computation of hash values in the IPv4Interface and IPv6Interface could have led to denial of service (bsc#1173274). - CVE-2019-16935: Fixed a reflected XSS in python/Lib/DocXMLRPCServer.py (bsc#1153238). - CVE-2019-9947: Fixed an issue in urllib2 which allowed CRLF injection if the attacker controls a url parameter (bsc#1130840). - If the locale is 'C', coerce it to C.UTF-8 (bsc#1162423). Family: unix Class: patch Status: Reference(s): 1051510 1055117 1071995 1083647 1083710 1085030 1086103 1088004 1088009 1093536 1094462 1102247 1103991 1103992 1104745 1106061 1107874 1109837 1109845 1111666 1112374 1114279 1119222 1121448 1123959 1127034 1127315 1127611 1129770 1130840 1130972 1131281 1133021 1134090 1134097 1134390 1134399 1135114 1135335 1135642 1135897 1136217 1136342 1136352 1136460 1136461 1136467 1136502 1137458 1137534 1137535 1137584 1137609 1137811 1137827 1138874 1139101 1139358 1139500 1139619 1140133 1140139 1140322 1140426 1140559 1140652 1140676 1140903 1140945 1141312 1141401 1141402 1141450 1141452 1141453 1141454 1141478 1141558 1141853 1142023 1142052 1142083 1142112 1142115 1142117 1142118 1142119 1142220 1142221 1142254 1142265 1142350 1142351 1142354 1142359 1142450 1142623 1142635 1142673 1142685 1142701 1142857 1142868 1143003 1143045 1143105 1143185 1143189 1143191 1143209 1143466 1143507 1143738 1144474 1144518 1149955 1153238 1154804 1154805 1155198 1155205 1155298 1155678 1155819 1156158 1157377 1158763 1162423 1173274 1174091 1174701 1175686 1176179 1178824 CVE-2014-3636 CVE-2014-3637 CVE-2014-3639 CVE-2014-7824 CVE-2014-8148 CVE-2015-0245 CVE-2018-10811 CVE-2018-14647 CVE-2018-16151 CVE-2018-16152 CVE-2018-17540 CVE-2018-20174 CVE-2018-20175 CVE-2018-20176 CVE-2018-20177 CVE-2018-20178 CVE-2018-20179 CVE-2018-20180 CVE-2018-20181 CVE-2018-20182 CVE-2018-20852 CVE-2018-20855 CVE-2018-5388 CVE-2018-8791 CVE-2018-8792 CVE-2018-8793 CVE-2018-8794 CVE-2018-8795 CVE-2018-8796 CVE-2018-8797 CVE-2018-8798 CVE-2018-8799 CVE-2018-8800 CVE-2019-10207 CVE-2019-1125 CVE-2019-11810 CVE-2019-13631 CVE-2019-13648 CVE-2019-14283 CVE-2019-14284 CVE-2019-16056 CVE-2019-16935 CVE-2019-18900 CVE-2019-20907 CVE-2019-9947 CVE-2020-14422 CVE-2020-15663 CVE-2020-15664 CVE-2020-15669 CVE-2020-15999 CVE-2020-16012 CVE-2020-24977 CVE-2020-26951 CVE-2020-26953 CVE-2020-26956 CVE-2020-26958 CVE-2020-26959 CVE-2020-26960 CVE-2020-26961 CVE-2020-26965 CVE-2020-26966 CVE-2020-26968 openSUSE-SU-2019:1923-1 openSUSE-SU-2019:2135-1 openSUSE-SU-2019:2598-1 openSUSE-SU-2020:0255-1 openSUSE-SU-2020:1383-1 openSUSE-SU-2020:1465-1 SUSE-SU-2020:2699-1 SUSE-SU-2020:3548-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Server 12 SP4-LTSS Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information kernel-debug-4.12.14-lp151.28.13 is installed OR kernel-debug-base-4.12.14-lp151.28.13 is installed OR kernel-debug-devel-4.12.14-lp151.28.13 is installed OR kernel-default-4.12.14-lp151.28.13 is installed OR kernel-default-base-4.12.14-lp151.28.13 is installed OR kernel-default-devel-4.12.14-lp151.28.13 is installed OR kernel-devel-4.12.14-lp151.28.13 is installed OR kernel-docs-4.12.14-lp151.28.13 is installed OR kernel-docs-html-4.12.14-lp151.28.13 is installed OR kernel-kvmsmall-4.12.14-lp151.28.13 is installed OR kernel-kvmsmall-base-4.12.14-lp151.28.13 is installed OR kernel-kvmsmall-devel-4.12.14-lp151.28.13 is installed OR kernel-macros-4.12.14-lp151.28.13 is installed OR kernel-obs-build-4.12.14-lp151.28.13 is installed OR kernel-obs-qa-4.12.14-lp151.28.13 is installed OR kernel-source-4.12.14-lp151.28.13 is installed OR kernel-source-vanilla-4.12.14-lp151.28.13 is installed OR kernel-syms-4.12.14-lp151.28.13 is installed OR kernel-vanilla-4.12.14-lp151.28.13 is installed OR kernel-vanilla-base-4.12.14-lp151.28.13 is installed OR kernel-vanilla-devel-4.12.14-lp151.28.13 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information libxml2-2.9.7-lp152.10.3 is installed OR libxml2-2-2.9.7-lp152.10.3 is installed OR libxml2-2-32bit-2.9.7-lp152.10.3 is installed OR libxml2-devel-2.9.7-lp152.10.3 is installed OR libxml2-devel-32bit-2.9.7-lp152.10.3 is installed OR libxml2-doc-2.9.7-lp152.10.3 is installed OR libxml2-tools-2.9.7-lp152.10.3 is installed OR python-libxml2-python-2.9.7-lp152.10.3 is installed OR python2-libxml2-python-2.9.7-lp152.10.3 is installed OR python3-libxml2-python-2.9.7-lp152.10.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information dbus-1-1.12.2-6 is installed OR dbus-1-devel-1.12.2-6 is installed OR dbus-1-x11-1.12.2-6 is installed OR libdbus-1-3-1.12.2-6 is installed OR libdbus-1-3-32bit-1.12.2-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information libpython3_4m1_0-3.4.10-25.52 is installed OR python3-3.4.10-25.52 is installed OR python3-base-3.4.10-25.52 is installed OR python3-curses-3.4.10-25.52 is installed OR python3-devel-3.4.10-25.52 is installed
BACK