Oval Definition:oval:org.opensuse.security:def:93576
Revision Date:2021-08-23Version:1
Title: (Moderate)
Description:

This patch updates the Python AWS SDK stack in SLE 15:

General:

# aws-cli

- Version updated to upstream release v1.19.9 For a detailed list of all changes, please refer to the changelog file of this package.

# python-boto3

- Version updated to upstream release 1.17.9 For a detailed list of all changes, please refer to the changelog file of this package.

# python-botocore

- Version updated to upstream release 1.20.9 For a detailed list of all changes, please refer to the changelog file of this package.

# python-urllib3

- Version updated to upstream release 1.25.10 For a detailed list of all changes, please refer to the changelog file of this package.

# python-service_identity

- Added this new package to resolve runtime dependencies for other packages. Version: 18.1.0

# python-trustme

- Added this new package to resolve runtime dependencies for other packages. Version: 0.6.0

Security fixes:

# python-urllib3: - CVE-2020-26137: urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of putrequest() (bsc#1177120)
Family:unixClass:patch
Status:Reference(s):1102408
1113041
1138715
1138746
1144056
1154600
1155834
1156210
1157798
1157803
1176389
1177120
1182421
1182422
CVE-2017-7418
CVE-2019-12815
CVE-2019-18217
CVE-2019-19269
CVE-2019-19270
CVE-2020-26137
openSUSE-SU-2020:0031-1
Platform(s):Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Storage 6
SUSE Manager Proxy 4.0
SUSE Manager Server 4.0
SUSE Package Hub for SUSE Linux Enterprise 15 SP1
Product(s):
Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed
  • AND Package Information
  • proftpd-1.3.6b-bp151.4.6.2 is installed
  • OR proftpd-devel-1.3.6b-bp151.4.6.2 is installed
  • OR proftpd-doc-1.3.6b-bp151.4.6.2 is installed
  • OR proftpd-lang-1.3.6b-bp151.4.6.2 is installed
  • OR proftpd-ldap-1.3.6b-bp151.4.6.2 is installed
  • OR proftpd-mysql-1.3.6b-bp151.4.6.2 is installed
  • OR proftpd-pgsql-1.3.6b-bp151.4.6.2 is installed
  • OR proftpd-radius-1.3.6b-bp151.4.6.2 is installed
  • OR proftpd-sqlite-1.3.6b-bp151.4.6.2 is installed
    • Definition Synopsis
  • Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE is installed
  • AND Package Information
  • python3-asn1crypto-0.24.0-3.2.1 is installed
  • OR python3-cffi-1.13.2-3.2.5 is installed
  • OR python3-pyasn1-0.4.2-3.2.1 is installed
  • OR python3-pycparser-2.17-3.2.1 is installed
    • BACK