openSUSE: 2020:0086-1: important: python3

    Date21 Jan 2020
    119
    Posted ByLinuxSecurity Advisories
    An update that solves 26 vulnerabilities and has 30 fixes is now available.
       openSUSE Security Update: Security update for python3
    ______________________________________________________________________________
    
    Announcement ID:    openSUSE-SU-2020:0086-1
    Rating:             important
    References:         #1027282 #1029377 #1029902 #1040164 #1042670 
                        #1070853 #1079761 #1081750 #1083507 #1086001 
                        #1088004 #1088009 #1088573 #1094814 #1107030 
                        #1109663 #1109847 #1120644 #1122191 #1129346 
                        #1130840 #1133452 #1137942 #1138459 #1141853 
                        #1149121 #1149792 #1149955 #1151490 #1153238 
                        #1159035 #1159622 #637176 #658604 #673071 
                        #709442 #743787 #747125 #751718 #754447 #754677 
                        #787526 #809831 #831629 #834601 #871152 #885662 
                        #885882 #917607 #942751 #951166 #983582 #984751 
                        #985177 #985348 #989523 
    Cross-References:   CVE-2011-3389 CVE-2011-4944 CVE-2012-0845
                        CVE-2012-1150 CVE-2013-1752 CVE-2013-4238
                        CVE-2014-2667 CVE-2014-4650 CVE-2016-0772
                        CVE-2016-1000110 CVE-2016-5636 CVE-2016-5699
                        CVE-2017-18207 CVE-2018-1000802 CVE-2018-1060
                        CVE-2018-1061 CVE-2018-14647 CVE-2018-20406
                        CVE-2018-20852 CVE-2019-10160 CVE-2019-15903
                        CVE-2019-16056 CVE-2019-16935 CVE-2019-5010
                        CVE-2019-9636 CVE-2019-9947
    Affected Products:
                        openSUSE Leap 15.1
    ______________________________________________________________________________
    
       An update that solves 26 vulnerabilities and has 30 fixes
       is now available.
    
    Description:
    
       This update for python3 to version 3.6.10 fixes the following issues:
    
       - CVE-2017-18207: Fixed a denial of service in Wave_read._read_fmt_chunk()
         (bsc#1083507).
       - CVE-2019-16056: Fixed an issue where email parsing could fail for
         multiple @ (bsc#1149955).
       - CVE-2019-15903: Fixed a heap-based buffer over-read in libexpat
         (bsc#1149429).
    
       This update was imported from the SUSE:SLE-15:Update update project.
    
    
    Patch Instructions:
    
       To install this openSUSE Security Update use the SUSE recommended installation methods
       like YaST online_update or "zypper patch".
    
       Alternatively you can run the command listed for your product:
    
       - openSUSE Leap 15.1:
    
          zypper in -t patch openSUSE-2020-86=1
    
    
    
    Package List:
    
       - openSUSE Leap 15.1 (i586 x86_64):
    
          libpython3_6m1_0-3.6.10-lp151.6.7.1
          libpython3_6m1_0-debuginfo-3.6.10-lp151.6.7.1
          python3-3.6.10-lp151.6.7.1
          python3-base-3.6.10-lp151.6.7.1
          python3-base-debuginfo-3.6.10-lp151.6.7.1
          python3-base-debugsource-3.6.10-lp151.6.7.1
          python3-curses-3.6.10-lp151.6.7.1
          python3-curses-debuginfo-3.6.10-lp151.6.7.1
          python3-dbm-3.6.10-lp151.6.7.1
          python3-dbm-debuginfo-3.6.10-lp151.6.7.1
          python3-debuginfo-3.6.10-lp151.6.7.1
          python3-debugsource-3.6.10-lp151.6.7.1
          python3-devel-3.6.10-lp151.6.7.1
          python3-devel-debuginfo-3.6.10-lp151.6.7.1
          python3-idle-3.6.10-lp151.6.7.1
          python3-testsuite-3.6.10-lp151.6.7.1
          python3-testsuite-debuginfo-3.6.10-lp151.6.7.1
          python3-tk-3.6.10-lp151.6.7.1
          python3-tk-debuginfo-3.6.10-lp151.6.7.1
          python3-tools-3.6.10-lp151.6.7.1
    
       - openSUSE Leap 15.1 (x86_64):
    
          libpython3_6m1_0-32bit-3.6.10-lp151.6.7.1
          libpython3_6m1_0-32bit-debuginfo-3.6.10-lp151.6.7.1
          python3-32bit-3.6.10-lp151.6.7.1
          python3-32bit-debuginfo-3.6.10-lp151.6.7.1
          python3-base-32bit-3.6.10-lp151.6.7.1
          python3-base-32bit-debuginfo-3.6.10-lp151.6.7.1
    
    
    References:
    
       https://www.suse.com/security/cve/CVE-2011-3389.html
       https://www.suse.com/security/cve/CVE-2011-4944.html
       https://www.suse.com/security/cve/CVE-2012-0845.html
       https://www.suse.com/security/cve/CVE-2012-1150.html
       https://www.suse.com/security/cve/CVE-2013-1752.html
       https://www.suse.com/security/cve/CVE-2013-4238.html
       https://www.suse.com/security/cve/CVE-2014-2667.html
       https://www.suse.com/security/cve/CVE-2014-4650.html
       https://www.suse.com/security/cve/CVE-2016-0772.html
       https://www.suse.com/security/cve/CVE-2016-1000110.html
       https://www.suse.com/security/cve/CVE-2016-5636.html
       https://www.suse.com/security/cve/CVE-2016-5699.html
       https://www.suse.com/security/cve/CVE-2017-18207.html
       https://www.suse.com/security/cve/CVE-2018-1000802.html
       https://www.suse.com/security/cve/CVE-2018-1060.html
       https://www.suse.com/security/cve/CVE-2018-1061.html
       https://www.suse.com/security/cve/CVE-2018-14647.html
       https://www.suse.com/security/cve/CVE-2018-20406.html
       https://www.suse.com/security/cve/CVE-2018-20852.html
       https://www.suse.com/security/cve/CVE-2019-10160.html
       https://www.suse.com/security/cve/CVE-2019-15903.html
       https://www.suse.com/security/cve/CVE-2019-16056.html
       https://www.suse.com/security/cve/CVE-2019-16935.html
       https://www.suse.com/security/cve/CVE-2019-5010.html
       https://www.suse.com/security/cve/CVE-2019-9636.html
       https://www.suse.com/security/cve/CVE-2019-9947.html
       https://bugzilla.suse.com/1027282
       https://bugzilla.suse.com/1029377
       https://bugzilla.suse.com/1029902
       https://bugzilla.suse.com/1040164
       https://bugzilla.suse.com/1042670
       https://bugzilla.suse.com/1070853
       https://bugzilla.suse.com/1079761
       https://bugzilla.suse.com/1081750
       https://bugzilla.suse.com/1083507
       https://bugzilla.suse.com/1086001
       https://bugzilla.suse.com/1088004
       https://bugzilla.suse.com/1088009
       https://bugzilla.suse.com/1088573
       https://bugzilla.suse.com/1094814
       https://bugzilla.suse.com/1107030
       https://bugzilla.suse.com/1109663
       https://bugzilla.suse.com/1109847
       https://bugzilla.suse.com/1120644
       https://bugzilla.suse.com/1122191
       https://bugzilla.suse.com/1129346
       https://bugzilla.suse.com/1130840
       https://bugzilla.suse.com/1133452
       https://bugzilla.suse.com/1137942
       https://bugzilla.suse.com/1138459
       https://bugzilla.suse.com/1141853
       https://bugzilla.suse.com/1149121
       https://bugzilla.suse.com/1149792
       https://bugzilla.suse.com/1149955
       https://bugzilla.suse.com/1151490
       https://bugzilla.suse.com/1153238
       https://bugzilla.suse.com/1159035
       https://bugzilla.suse.com/1159622
       https://bugzilla.suse.com/637176
       https://bugzilla.suse.com/658604
       https://bugzilla.suse.com/673071
       https://bugzilla.suse.com/709442
       https://bugzilla.suse.com/743787
       https://bugzilla.suse.com/747125
       https://bugzilla.suse.com/751718
       https://bugzilla.suse.com/754447
       https://bugzilla.suse.com/754677
       https://bugzilla.suse.com/787526
       https://bugzilla.suse.com/809831
       https://bugzilla.suse.com/831629
       https://bugzilla.suse.com/834601
       https://bugzilla.suse.com/871152
       https://bugzilla.suse.com/885662
       https://bugzilla.suse.com/885882
       https://bugzilla.suse.com/917607
       https://bugzilla.suse.com/942751
       https://bugzilla.suse.com/951166
       https://bugzilla.suse.com/983582
       https://bugzilla.suse.com/984751
       https://bugzilla.suse.com/985177
       https://bugzilla.suse.com/985348
       https://bugzilla.suse.com/989523
    
    -- 
    
    You are not authorised to post comments.

    Comments powered by CComment

    LinuxSecurity Poll

    What do you think of the LinuxSecurity Privacy news articles?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/25-what-do-you-think-of-the-linuxsecurity-privacy-news-articles?task=poll.vote&format=json
    25
    radio
    [{"id":"90","title":"Love them!","votes":"35","type":"x","order":"1","pct":92.11,"resources":[]},{"id":"91","title":"I'm indifferent","votes":"2","type":"x","order":"2","pct":5.26,"resources":[]},{"id":"92","title":"Not interested in this topic","votes":"1","type":"x","order":"3","pct":2.63,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.