Oval Definition:oval:org.opensuse.security:def:99671
Revision Date:2021-08-23Version:1
Title: (Moderate)
Description:

This patch updates the Python AWS SDK stack in SLE 15:

General:

# aws-cli

- Version updated to upstream release v1.19.9 For a detailed list of all changes, please refer to the changelog file of this package.

# python-boto3

- Version updated to upstream release 1.17.9 For a detailed list of all changes, please refer to the changelog file of this package.

# python-botocore

- Version updated to upstream release 1.20.9 For a detailed list of all changes, please refer to the changelog file of this package.

# python-urllib3

- Version updated to upstream release 1.25.10 For a detailed list of all changes, please refer to the changelog file of this package.

# python-service_identity

- Added this new package to resolve runtime dependencies for other packages. Version: 18.1.0

# python-trustme

- Added this new package to resolve runtime dependencies for other packages. Version: 0.6.0

Security fixes:

# python-urllib3: - CVE-2020-26137: urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of putrequest() (bsc#1177120)
Family:unixClass:patch
Status:Reference(s):1102408
1138715
1138746
1176389
1177120
1181255
1182421
1182422
CVE-2020-26137
CVE-2021-3185
SUSE-SU-2021:1904-1
Platform(s):Image SLES15-SP3-Manager-4-2-Proxy-BYOS-GCE
SUSE Linux Enterprise Server for SAP Applications 15 SP1
Product(s):
Definition Synopsis
  • Image SLES15-SP3-Manager-4-2-Proxy-BYOS-GCE is installed
  • AND Package Information
  • python3-asn1crypto-0.24.0-3.2.1 is installed
  • OR python3-cffi-1.13.2-3.2.5 is installed
  • OR python3-cryptography-2.8-10.1 is installed
  • OR python3-pyasn1-0.4.2-3.2.1 is installed
  • OR python3-pycparser-2.17-3.2.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • AND Package Information
  • gstreamer-plugins-bad-1.12.5-3.6.1 is installed
  • OR gstreamer-plugins-bad-devel-1.12.5-3.6.1 is installed
  • OR gstreamer-plugins-bad-lang-1.12.5-3.6.1 is installed
  • OR libgstadaptivedemux-1_0-0-1.12.5-3.6.1 is installed
  • OR libgstbadallocators-1_0-0-1.12.5-3.6.1 is installed
  • OR libgstbadaudio-1_0-0-1.12.5-3.6.1 is installed
  • OR libgstbadbase-1_0-0-1.12.5-3.6.1 is installed
  • OR libgstbadvideo-1_0-0-1.12.5-3.6.1 is installed
  • OR libgstbasecamerabinsrc-1_0-0-1.12.5-3.6.1 is installed
  • OR libgstcodecparsers-1_0-0-1.12.5-3.6.1 is installed
  • OR libgstgl-1_0-0-1.12.5-3.6.1 is installed
  • OR libgstinsertbin-1_0-0-1.12.5-3.6.1 is installed
  • OR libgstmpegts-1_0-0-1.12.5-3.6.1 is installed
  • OR libgstphotography-1_0-0-1.12.5-3.6.1 is installed
  • OR libgstplayer-1_0-0-1.12.5-3.6.1 is installed
  • OR libgsturidownloader-1_0-0-1.12.5-3.6.1 is installed
  • OR libgstwayland-1_0-0-1.12.5-3.6.1 is installed
  • OR typelib-1_0-GstBadAllocators-1_0-1.12.5-3.6.1 is installed
  • OR typelib-1_0-GstGL-1_0-1.12.5-3.6.1 is installed
  • OR typelib-1_0-GstInsertBin-1_0-1.12.5-3.6.1 is installed
  • OR typelib-1_0-GstMpegts-1_0-1.12.5-3.6.1 is installed
  • OR typelib-1_0-GstPlayer-1_0-1.12.5-3.6.1 is installed
    • BACK