Oval Definition:oval:org.opensuse.security:def:74753
Revision Date:2021-12-16Version:1
Title:Security update for python3 (Moderate)
Description:

This update for python3 fixes the following issues:

- CVE-2021-3426: Fixed information disclosure via pydoc (bsc#1183374). - CVE-2021-3733: Fixed infinitely reading potential HTTP headers after a 100 Continue status response from the server (bsc#1189241). - CVE-2021-3737: Fixed ReDoS in urllib.request (bsc#1189287).

- We do not require python-rpm-macros package (bsc#1180125). - Use versioned python-Sphinx to avoid dependency on other version of Python (bsc#1183858). - Stop providing 'python' symbol, which means python2 currently (bsc#1185588). - Modify Lib/ensurepip/__init__.py to contain the same version numbers as are in reality the ones in the bundled wheels (bsc#1187668).
Family:unixClass:patch
Status:Reference(s):1165299
1165300
1165301
1171553
1180125
1183374
1183858
1185588
1187668
1189241
1189287
CVE-2020-10030
CVE-2020-10995
CVE-2020-12244
CVE-2020-7041
CVE-2020-7042
CVE-2020-7043
CVE-2021-3426
CVE-2021-3733
CVE-2021-3737
openSUSE-SU-2020:0301-1
openSUSE-SU-2020:0698-1
SUSE-SU-2021:4104-1
Platform(s):openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Module for Development Tools 15 SP3
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Manager Proxy 4.2
SUSE Manager Server 4.2
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND openfortivpn-1.12.0-lp151.2.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 SP3 is installed
  • AND python3-tools-3.6.15-10.9.1 is installed
    • BACK