Oval Definition:oval:org.opensuse.security:def:80116
Revision Date:2014-02-24Version:1
Title:Security update for python
Description:



This update for Python fixes the following security issues:

* * bnc#834601: SSL module does not handle certificates that contain hostnames with NULL bytes. (CVE-2013-4238) * bnc#856836: Various stdlib read flaws. (CVE-2013-1752)

Additionally, the following non-security issues have been fixed:

* bnc#859068: Turn off OpenSSL's aggressive optimizations that conflict with Python's GC. * bnc#847135: Setting fips=1 at boot time causes problems with Python due to MD5 usage.

Security Issue references:

* CVE-2013-4073 * CVE-2013-4238

Family:unixClass:patch
Status:Reference(s):834601
847135
856836
859068
CVE-2013-4073
CVE-2013-4238
Platform(s):SUSE Linux Enterprise Desktop 11 SP3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • libpython2_6-1_0-2.6.9-0.25.1 is installed
  • OR libpython2_6-1_0-32bit-2.6.9-0.25.1 is installed
  • OR python-2.6.9-0.25.1 is installed
  • OR python-base-2.6.9-0.25.1 is installed
  • OR python-base-32bit-2.6.9-0.25.1 is installed
  • OR python-curses-2.6.9-0.25.1 is installed
  • OR python-devel-2.6.9-0.25.1 is installed
  • OR python-tk-2.6.9-0.25.1 is installed
  • OR python-xml-2.6.9-0.25.1 is installed
    • BACK