OVAL Reference oval:org.opensuse.security:def:69353

Oval Definition:

oval:org.opensuse.security:def:69353

Revision Date:	2020-12-01	Version:	1
Title:	Security update for python-waitress (Moderate)
Description:	This update for python-waitress to 1.4.3 fixes the following security issues: - CVE-2019-16785: HTTP request smuggling through LF vs CRLF handling (bsc#1161088). - CVE-2019-16786: HTTP request smuggling through invalid Transfer-Encoding (bsc#1161089). - CVE-2019-16789: HTTP request smuggling through invalid whitespace characters (bsc#1160790). - CVE-2019-16792: HTTP request smuggling by sending the Content-Length header twice (bsc#1161670).
Family:	unix	Class:	patch
Status:		Reference(s):	1156669 1160790 1161088 1161089 1161670 CVE-2019-16785 CVE-2019-16786 CVE-2019-16789 CVE-2019-16792 CVE-2019-2737 CVE-2019-2739 CVE-2019-2740 CVE-2019-2758 CVE-2019-2805 CVE-2019-2938 CVE-2019-2974 SUSE-SU-2019:3306-1 SUSE-SU-2020:3269-1
Platform(s):	SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP1	Product(s):
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information python-waitress-1.4.3-3.3 is installed OR python2-waitress-1.4.3-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information libmysqld-devel-10.2.29-3.23 is installed OR libmysqld19-10.2.29-3.23 is installed OR mariadb-10.2.29-3.23 is installed OR mariadb-client-10.2.29-3.23 is installed OR mariadb-errormessages-10.2.29-3.23 is installed OR mariadb-tools-10.2.29-3.23 is installed

BACK