Oval Definition:oval:org.opensuse.security:def:69398
Revision Date:2020-12-01Version:1
Title:Security update for python (Moderate)
Description:

This update for python fixes the following issues:

Security issues fixed:

- CVE-2019-18348: Fixed a CRLF injection via the host part of the url passed to urlopen(). Now an InvalidURL exception is raised (bsc#1155094). - CVE-2019-9674: Improved the documentation to reflect the dangers of zip-bombs (bsc#1162825).
Family:unixClass:patch
Status:Reference(s):1155094
1162825
1177409
1177412
1177413
1177414
CVE-2019-18348
CVE-2019-9674
CVE-2020-27670
CVE-2020-27671
CVE-2020-27672
CVE-2020-27673
SUSE-SU-2020:1339-1
SUSE-SU-2020:3051-1
Platform(s):SUSE Linux Enterprise Module for Python2 packages 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed
  • AND Package Information
  • python-2.7.17-7.38 is installed
  • OR python-base-2.7.17-7.38 is installed
  • OR python-curses-2.7.17-7.38 is installed
  • OR python-devel-2.7.17-7.38 is installed
  • OR python-gdbm-2.7.17-7.38 is installed
  • OR python-xml-2.7.17-7.38 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • xen-4.12.3_10-3.31 is installed
  • OR xen-devel-4.12.3_10-3.31 is installed
  • OR xen-tools-4.12.3_10-3.31 is installed
    • BACK