Oval Definition:oval:org.opensuse.security:def:78417
Revision Date:2016-08-19Version:1
Title:Security update for python (Moderate)
Description:



This update for python fixes the following issues:

- CVE-2016-0772: smtplib vulnerability opens startTLS stripping attack (bsc#984751) - CVE-2016-5636: heap overflow when importing malformed zip files (bsc#985177) - CVE-2016-5699: incorrect validation of HTTP headers allow header injection (bsc#985348) - CVE-2016-1000110: HTTPoxy vulnerability in urllib, fixed by disregarding HTTP_PROXY when REQUEST_METHOD is also set (bsc#989523)
Family:unixClass:patch
Status:Reference(s):984751
985177
985348
989523
CVE-2016-0772
CVE-2016-1000110
CVE-2016-5636
CVE-2016-5699
SUSE-SU-2016:2106-1
Platform(s):SUSE Linux Enterprise Desktop 12 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • libpython2_7-1_0-2.7.9-24.2 is installed
  • OR libpython2_7-1_0-32bit-2.7.9-24.2 is installed
  • OR python-2.7.9-24.1 is installed
  • OR python-base-2.7.9-24.2 is installed
  • OR python-curses-2.7.9-24.1 is installed
  • OR python-devel-2.7.9-24.2 is installed
  • OR python-tk-2.7.9-24.1 is installed
  • OR python-xml-2.7.9-24.2 is installed
  • BACK