OVAL Reference oval:org.opensuse.security:def:68568

Oval Definition:

oval:org.opensuse.security:def:68568

Revision Date:	2021-08-23	Version:	1
Title:	Security update for aws-cli, python-boto3, python-botocore, python-service_identity, python-trustme, python-urllib3 (Moderate)
Description:	This patch updates the Python AWS SDK stack in SLE 15: General: # aws-cli - Version updated to upstream release v1.19.9 For a detailed list of all changes, please refer to the changelog file of this package. # python-boto3 - Version updated to upstream release 1.17.9 For a detailed list of all changes, please refer to the changelog file of this package. # python-botocore - Version updated to upstream release 1.20.9 For a detailed list of all changes, please refer to the changelog file of this package. # python-urllib3 - Version updated to upstream release 1.25.10 For a detailed list of all changes, please refer to the changelog file of this package. # python-service_identity - Added this new package to resolve runtime dependencies for other packages. Version: 18.1.0 # python-trustme - Added this new package to resolve runtime dependencies for other packages. Version: 0.6.0 Security fixes: # python-urllib3: - CVE-2020-26137: urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of putrequest() (bsc#1177120)
Family:	unix	Class:	patch
Status:		Reference(s):	1027282 1041090 1042670 1068664 1073269 1073748 1078326 1078485 1079300 1081750 1083507 1084650 1086001 1088004 1088009 1102408 1109847 1111793 1113755 1122191 1129346 1130840 1130847 1138459 1138715 1138746 1141853 1149792 1149955 1153238 1153830 1159035 1176389 1177120 1178387 1182421 1182422 214983 298378 346490 367853 379534 380942 399190 406051 425138 426563 430761 432677 436966 437293 441088 462375 525295 534721 551715 572673 577032 581765 603255 617751 637176 638233 658604 673071 682554 697251 707667 718009 747125 747794 751718 754447 766778 794139 804978 827982 831442 834601 836739 856835 856836 857470 863741 885882 898572 901715 935856 945401 964182 984751 985177 985348 989523 997436 CVE-2007-2052 CVE-2008-1721 CVE-2008-2315 CVE-2008-2316 CVE-2008-3142 CVE-2008-3143 CVE-2008-3144 CVE-2011-1521 CVE-2011-3389 CVE-2011-4944 CVE-2012-0845 CVE-2012-1150 CVE-2013-1752 CVE-2013-1753 CVE-2013-4238 CVE-2014-1912 CVE-2014-4650 CVE-2014-7185 CVE-2016-0772 CVE-2016-1000110 CVE-2016-5636 CVE-2016-5699 CVE-2017-1000158 CVE-2017-18207 CVE-2018-1000030 CVE-2018-1000802 CVE-2018-1060 CVE-2018-1061 CVE-2018-14647 CVE-2018-20852 CVE-2019-10160 CVE-2019-16056 CVE-2019-16935 CVE-2019-5010 CVE-2019-9636 CVE-2019-9947 CVE-2019-9948 CVE-2020-25692 CVE-2020-26137 SUSE-SU-2020:0234-1 SUSE-SU-2020:3313-1 SUSE-SU-2021:2817-1
Platform(s):	SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP3 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SP1 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Manager Proxy 4.2 SUSE Manager Server 4.2	Product(s):
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information python-2.7.17-7.32 is installed OR python-tk-2.7.17-7.32 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed AND Package Information openldap2-2.4.46-9.40 is installed OR openldap2-devel-32bit-2.4.46-9.40 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP3 is installed AND Package Information python2-boto3-1.17.9-19.1 is installed OR python2-botocore-1.20.9-33.1 is installed

BACK