Oval Definition:oval:org.opensuse.security:def:73947
Revision Date:2021-12-16Version:1
Title:Security update for python3 (Moderate)
Description:

This update for python3 fixes the following issues:

- CVE-2021-3426: Fixed information disclosure via pydoc (bsc#1183374). - CVE-2021-3733: Fixed infinitely reading potential HTTP headers after a 100 Continue status response from the server (bsc#1189241). - CVE-2021-3737: Fixed ReDoS in urllib.request (bsc#1189287).

- We do not require python-rpm-macros package (bsc#1180125). - Use versioned python-Sphinx to avoid dependency on other version of Python (bsc#1183858). - Stop providing 'python' symbol, which means python2 currently (bsc#1185588). - Modify Lib/ensurepip/__init__.py to contain the same version numbers as are in reality the ones in the bundled wheels (bsc#1187668).
Family:unixClass:patch
Status:Reference(s):1055186
1058115
1065600
1065729
1071995
1085030
1094244
1120163
1133021
1136666
1149032
1152148
1152472
1152489
1153274
1154353
1154492
1155518
1155798
1156395
1159058
1160634
1167527
1167773
1169790
1170232
1170774
1171000
1171068
1171073
1171558
1171634
1171688
1171742
1172108
1172197
1172247
1172418
1172419
1172757
1172871
1172873
1172963
1173017
1173060
1173115
1173267
1173468
1173485
1173746
1173798
1173813
1173954
1174002
1174003
1174026
1174029
1174110
1174111
1174358
1174387
1174484
1174486
1174625
1174645
1174689
1174699
1174737
1174757
1174762
1174770
1174771
1174777
1174805
1174824
1174825
1174852
1174865
1174880
1174897
1174899
1174906
1174969
1175009
1175010
1175011
1175012
1175013
1175014
1175015
1175016
1175017
1175018
1175019
1175020
1175021
1175052
1175112
1175116
1175128
1175149
1175175
1175176
1175180
1175181
1175182
1175183
1175184
1175185
1175186
1175187
1175188
1175189
1175190
1175191
1175192
1175195
1175199
1175213
1175232
1175263
1175284
1175296
1175344
1175345
1175346
1175347
1175367
1175377
1175440
1175493
1175546
1175550
1175654
1175667
1175691
1175718
1175749
1175768
1175769
1175770
1175771
1175772
1175774
1175775
1175787
1175834
1175873
1175882
1175952
1175996
1175997
1175998
1175999
1176000
1176001
1176019
1176022
1176038
1176063
1176137
1176235
1176236
1176237
1176242
1176278
1176357
1176358
1176359
1176360
1176361
1176362
1176363
1176364
1176365
1176366
1176367
1176381
1176423
1176449
1176482
1176486
1176507
1176536
1176537
1176538
1176539
1176540
1176541
1176542
1176544
1176545
1176546
1176548
1176558
1176559
1176587
1176588
1176659
1176698
1176699
1176700
1176721
1176722
1176725
1176732
1176763
1176775
1176788
1176789
1176833
1176869
1176877
1176925
1176962
1176980
1176990
1177021
1177030
1180125
1183374
1183858
1185588
1187668
1189241
1189287
CVE-2020-0404
CVE-2020-0427
CVE-2020-0431
CVE-2020-0432
CVE-2020-14314
CVE-2020-14356
CVE-2020-14385
CVE-2020-14390
CVE-2020-16166
CVE-2020-25212
CVE-2020-25284
CVE-2020-26088
CVE-2021-3426
CVE-2021-3733
CVE-2021-3737
SUSE-SU-2020:2879-1
SUSE-SU-2021:4104-1
Platform(s):SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Module for Basesystem 15 SP3
SUSE Linux Enterprise Module for Live Patching 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Manager Proxy 4.2
SUSE Manager Server 4.2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed
  • AND Package Information
  • libpython3_6m1_0-3.6.15-10.9.1 is installed
  • OR python3-3.6.15-10.9.1 is installed
  • OR python3-base-3.6.15-10.9.1 is installed
  • OR python3-curses-3.6.15-10.9.1 is installed
  • OR python3-dbm-3.6.15-10.9.1 is installed
  • OR python3-devel-3.6.15-10.9.1 is installed
  • OR python3-idle-3.6.15-10.9.1 is installed
  • OR python3-tk-3.6.15-10.9.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed
  • AND Package Information
  • kernel-default-5.3.18-24.24 is installed
  • OR kernel-default-livepatch-5.3.18-24.24 is installed
  • OR kernel-default-livepatch-devel-5.3.18-24.24 is installed
  • OR kernel-livepatch-5_3_18-24_24-default-1-5.3 is installed
  • OR kernel-livepatch-SLE15-SP2_Update_4-1-5.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • cluster-md-kmp-azure-5.3.18-18.15 is installed
  • OR dlm-kmp-azure-5.3.18-18.15 is installed
  • OR gfs2-kmp-azure-5.3.18-18.15 is installed
  • OR kernel-azure-5.3.18-18.15 is installed
  • OR kernel-azure-extra-5.3.18-18.15 is installed
  • OR kernel-azure-livepatch-devel-5.3.18-18.15 is installed
  • OR kselftests-kmp-azure-5.3.18-18.15 is installed
  • OR ocfs2-kmp-azure-5.3.18-18.15 is installed
  • OR reiserfs-kmp-azure-5.3.18-18.15 is installed
    • BACK