| Revision Date: | 2020-12-01 | Version: | 1 |
| Title: | Security update for python (Moderate) |
| Description: |
This update for python fixes the following issues:
Security issues fixed:
- CVE-2019-18348: Fixed a CRLF injection via the host part of the url passed to urlopen(). Now an InvalidURL exception is raised (bsc#1155094). - CVE-2019-9674: Improved the documentation to reflect the dangers of zip-bombs (bsc#1162825).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1155094
1162825
1177409
1177412
1177413
1177414
CVE-2019-18348
CVE-2019-9674
CVE-2020-27670
CVE-2020-27671
CVE-2020-27672
CVE-2020-27673
SUSE-SU-2020:1339-1
SUSE-SU-2020:3051-1
|
| Platform(s): | SUSE Linux Enterprise Module for Python2 packages 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP1
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information
python-2.7.17-7.38 is installed
OR python-base-2.7.17-7.38 is installed
OR python-curses-2.7.17-7.38 is installed
OR python-devel-2.7.17-7.38 is installed
OR python-gdbm-2.7.17-7.38 is installed
OR python-xml-2.7.17-7.38 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
AND Package Information
xen-4.12.3_10-3.31 is installed
OR xen-devel-4.12.3_10-3.31 is installed
OR xen-tools-4.12.3_10-3.31 is installed
|