SUSE-RU-2019:2627-1

Опубликовано: 11 окт. 2019

Источник: suse-cvrf

Описание

Recommended update for python-setuptools and dependend packages

All changes necessary for upgrade of python-setuptools to 40.6.2 (bsc#1075812)

New packages:

python-cachetools
python-google-auth
python-packaging

Rebuilt without source changes:

python-cffi
python-cliff
python-mock
python-oauthlib
python-pbr
python-PyJWT
python-pytest

Added python3 packages:

python-hgtools
python-pyasn1-modules
python-rsa

Updated:

python-kubernetes Updated to version 6.0
python-pyparsing

Was updated to version 2.2.0.
python-setuptools

Was upgraded to version 40.6.2.

Список пакетов

HPE Helion OpenStack 8

python-oauthlib-0.7.2-3.9.20

Image SLES12-SP4-Azure-BYOS

python-packaging-17.1-2.3.1

python-setuptools-40.6.2-4.12.23

python3-PyJWT-1.4.2-3.10.27

python3-mock-2.0.0-3.7.25

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-pbr-3.1.1-3.5.2

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP4-EC2-HVM-BYOS

python-packaging-17.1-2.3.1

python-rsa-3.1.4-12.9.17

python-setuptools-40.6.2-4.12.23

python3-PyJWT-1.4.2-3.10.27

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP4-GCE-BYOS

python-packaging-17.1-2.3.1

python-setuptools-40.6.2-4.12.23

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP4-OCI-BYOS

python3-PyJWT-1.4.2-3.10.27

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP4-SAP-Azure

python-packaging-17.1-2.3.1

python-setuptools-40.6.2-4.12.23

python3-PyJWT-1.4.2-3.10.27

python3-mock-2.0.0-3.7.25

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-pbr-3.1.1-3.5.2

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP4-SAP-Azure-BYOS

python-packaging-17.1-2.3.1

python-setuptools-40.6.2-4.12.23

python3-PyJWT-1.4.2-3.10.27

python3-mock-2.0.0-3.7.25

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-pbr-3.1.1-3.5.2

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP4-SAP-Azure-LI-BYOS-Production

python-packaging-17.1-2.3.1

python-setuptools-40.6.2-4.12.23

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production

python-packaging-17.1-2.3.1

python-setuptools-40.6.2-4.12.23

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP4-SAP-EC2-HVM

python-packaging-17.1-2.3.1

python-rsa-3.1.4-12.9.17

python-setuptools-40.6.2-4.12.23

python3-PyJWT-1.4.2-3.10.27

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP4-SAP-EC2-HVM-BYOS

python-packaging-17.1-2.3.1

python-rsa-3.1.4-12.9.17

python-setuptools-40.6.2-4.12.23

python3-PyJWT-1.4.2-3.10.27

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP4-SAP-GCE

python-packaging-17.1-2.3.1

python-setuptools-40.6.2-4.12.23

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP4-SAP-GCE-BYOS

python-packaging-17.1-2.3.1

python-setuptools-40.6.2-4.12.23

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP4-SAP-OCI-BYOS

python-packaging-17.1-2.3.1

python-setuptools-40.6.2-4.12.23

python3-PyJWT-1.4.2-3.10.27

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP5-Azure-BYOS

python-packaging-17.1-2.3.1

python-setuptools-40.6.2-4.12.23

python3-PyJWT-1.4.2-3.10.27

python3-mock-2.0.0-3.7.25

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-pbr-3.1.1-3.5.2

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP5-Azure-Basic-On-Demand

python3-PyJWT-1.4.2-3.10.27

python3-mock-2.0.0-3.7.25

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-pbr-3.1.1-3.5.2

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP5-Azure-HPC-BYOS

python-packaging-17.1-2.3.1

python-setuptools-40.6.2-4.12.23

python3-PyJWT-1.4.2-3.10.27

python3-mock-2.0.0-3.7.25

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-pbr-3.1.1-3.5.2

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP5-Azure-HPC-On-Demand

python3-PyJWT-1.4.2-3.10.27

python3-mock-2.0.0-3.7.25

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-pbr-3.1.1-3.5.2

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP5-Azure-SAP-BYOS

python-PyJWT-1.4.2-3.10.27

python-oauthlib-0.7.2-3.9.20

python-packaging-17.1-2.3.1

python-setuptools-40.6.2-4.12.23

python3-PyJWT-1.4.2-3.10.27

python3-mock-2.0.0-3.7.25

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-pbr-3.1.1-3.5.2

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP5-Azure-SAP-On-Demand

python-PyJWT-1.4.2-3.10.27

python-oauthlib-0.7.2-3.9.20

python-packaging-17.1-2.3.1

python-setuptools-40.6.2-4.12.23

python3-PyJWT-1.4.2-3.10.27

python3-mock-2.0.0-3.7.25

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-pbr-3.1.1-3.5.2

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP5-Azure-Standard-On-Demand

python3-PyJWT-1.4.2-3.10.27

python3-mock-2.0.0-3.7.25

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-pbr-3.1.1-3.5.2

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP5-EC2-BYOS

python-packaging-17.1-2.3.1

python-rsa-3.1.4-12.9.17

python-setuptools-40.6.2-4.12.23

python3-PyJWT-1.4.2-3.10.27

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP5-EC2-ECS-On-Demand

python-packaging-17.1-2.3.1

python-rsa-3.1.4-12.9.17

python-setuptools-40.6.2-4.12.23

python3-PyJWT-1.4.2-3.10.27

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP5-EC2-On-Demand

python-packaging-17.1-2.3.1

python-rsa-3.1.4-12.9.17

python-setuptools-40.6.2-4.12.23

python3-PyJWT-1.4.2-3.10.27

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP5-EC2-SAP-BYOS

python-packaging-17.1-2.3.1

python-rsa-3.1.4-12.9.17

python-setuptools-40.6.2-4.12.23

python3-PyJWT-1.4.2-3.10.27

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP5-EC2-SAP-On-Demand

python-packaging-17.1-2.3.1

python-rsa-3.1.4-12.9.17

python-setuptools-40.6.2-4.12.23

python3-PyJWT-1.4.2-3.10.27

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP5-GCE-BYOS

python-packaging-17.1-2.3.1

python-setuptools-40.6.2-4.12.23

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP5-GCE-On-Demand

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP5-GCE-SAP-BYOS

python-cachetools-1.1.6-2.3.1

python-google-auth-1.4.2-2.3.1

python-packaging-17.1-2.3.1

python-pyasn1-modules-0.0.5-7.3.1

python-rsa-3.1.4-12.9.17

python-setuptools-40.6.2-4.12.23

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP5-GCE-SAP-On-Demand

python-cachetools-1.1.6-2.3.1

python-google-auth-1.4.2-2.3.1

python-packaging-17.1-2.3.1

python-pyasn1-modules-0.0.5-7.3.1

python-rsa-3.1.4-12.9.17

python-setuptools-40.6.2-4.12.23

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP5-OCI-BYOS-BYOS

python3-PyJWT-1.4.2-3.10.27

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP5-OCI-BYOS-SAP-BYOS

python-packaging-17.1-2.3.1

python-setuptools-40.6.2-4.12.23

python3-PyJWT-1.4.2-3.10.27

python3-oauthlib-0.7.2-3.9.20

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP5-SAP-Azure-LI-BYOS-Production

python-packaging-17.1-2.3.1

python-setuptools-40.6.2-4.12.23

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production

python-packaging-17.1-2.3.1

python-setuptools-40.6.2-4.12.23

python3-packaging-17.1-2.3.1

python3-setuptools-40.6.2-4.12.23

SUSE Enterprise Storage 4

python-rsa-3.1.4-12.9.17

SUSE Enterprise Storage 5

python-rsa-3.1.4-12.9.17

SUSE Linux Enterprise Desktop 12 SP4

python-setuptools-40.6.2-4.12.23

python3-setuptools-40.6.2-4.12.23

SUSE Linux Enterprise Module for Containers 12

python-setuptools-40.6.2-4.12.23

SUSE Linux Enterprise Module for Public Cloud 12

python-PyJWT-1.4.2-3.10.27

python-cliff-1.14.0-11.3.2

python-mock-2.0.0-3.7.25

python-oauthlib-0.7.2-3.9.20

python-pbr-3.1.1-3.5.2

python-rsa-3.1.4-12.9.17

python-setuptools-40.6.2-4.12.23

python-stevedore-1.8.0-16.2.1

python3-PyJWT-1.4.2-3.10.27

python3-mock-2.0.0-3.7.25

python3-oauthlib-0.7.2-3.9.20

python3-pbr-3.1.1-3.5.2

python3-setuptools-40.6.2-4.12.23

SUSE Linux Enterprise Server 12 SP4

python-setuptools-40.6.2-4.12.23

python3-setuptools-40.6.2-4.12.23

SUSE Linux Enterprise Server for SAP Applications 12 SP4

python-setuptools-40.6.2-4.12.23

python3-setuptools-40.6.2-4.12.23

SUSE Linux Enterprise Software Development Kit 12 SP4

python3-setuptools-40.6.2-4.12.23

SUSE Manager Server 3.2

python-PyJWT-1.4.2-3.10.27

python-oauthlib-0.7.2-3.9.20

python-rsa-3.1.4-12.9.17

SUSE OpenStack Cloud 7

python-PyJWT-1.4.2-3.10.27

python-oauthlib-0.7.2-3.9.20

python-rsa-3.1.4-12.9.17

python-setuptools-40.6.2-4.12.23

SUSE OpenStack Cloud 8

python-oauthlib-0.7.2-3.9.20

SUSE OpenStack Cloud Crowbar 8

python-oauthlib-0.7.2-3.9.20

Ссылки

https://www.suse.com/support/update/announcement/-2019-2627/suse-ru-20192627-1/
Link for SUSE-RU-2019:2627-1
https://lists.suse.com/pipermail/sle-updates/2019-October/012691.html
E-Mail link for SUSE-RU-2019:2627-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1024540
SUSE Bug 1024540
https://bugzilla.suse.com/1054413
SUSE Bug 1054413
https://bugzilla.suse.com/1074247
SUSE Bug 1074247
https://bugzilla.suse.com/1075812
SUSE Bug 1075812
https://bugzilla.suse.com/1088358
SUSE Bug 1088358
https://bugzilla.suse.com/1091826
SUSE Bug 1091826
https://bugzilla.suse.com/1110422
SUSE Bug 1110422
https://www.suse.com/security/cve/CVE-2016-9015/
SUSE CVE CVE-2016-9015 page

Описание

Versions 1.17 and 1.18 of the Python urllib3 library suffer from a vulnerability that can cause them, in certain configurations, to not correctly validate TLS certificates. This places users of the library with those configurations at risk of man-in-the-middle and information leakage attacks. This vulnerability affects users using versions 1.17 and 1.18 of the urllib3 library, who are using the optional PyOpenSSL support for TLS instead of the regular standard library TLS backend, and who are using OpenSSL 1.1.0 via PyOpenSSL. This is an extremely uncommon configuration, so the security impact of this vulnerability is low.

Затронутые продукты

HPE Helion OpenStack 8:python-oauthlib-0.7.2-3.9.20

Image SLES12-SP4-Azure-BYOS:python-packaging-17.1-2.3.1

Image SLES12-SP4-Azure-BYOS:python-setuptools-40.6.2-4.12.23

Image SLES12-SP4-Azure-BYOS:python3-PyJWT-1.4.2-3.10.27

Ссылки

https://www.suse.com/security/cve/CVE-2016-9015.html
CVE-2016-9015
https://bugzilla.suse.com/1023502
SUSE Bug 1023502
https://bugzilla.suse.com/1024540
SUSE Bug 1024540

SUSE-RU-2019:2627-1

Описание

Список пакетов

HPE Helion OpenStack 8

Image SLES12-SP4-Azure-BYOS

Image SLES12-SP4-EC2-HVM-BYOS

Image SLES12-SP4-GCE-BYOS

Image SLES12-SP4-OCI-BYOS

Image SLES12-SP4-SAP-Azure

Image SLES12-SP4-SAP-Azure-BYOS

Image SLES12-SP4-SAP-Azure-LI-BYOS-Production

Image SLES12-SP4-SAP-Azure-VLI-BYOS-Production

Image SLES12-SP4-SAP-EC2-HVM

Image SLES12-SP4-SAP-EC2-HVM-BYOS

Image SLES12-SP4-SAP-GCE

Image SLES12-SP4-SAP-GCE-BYOS

Image SLES12-SP4-SAP-OCI-BYOS

Image SLES12-SP5-Azure-BYOS

Image SLES12-SP5-Azure-Basic-On-Demand

Image SLES12-SP5-Azure-HPC-BYOS

Image SLES12-SP5-Azure-HPC-On-Demand

Image SLES12-SP5-Azure-SAP-BYOS

Image SLES12-SP5-Azure-SAP-On-Demand

Image SLES12-SP5-Azure-Standard-On-Demand

Image SLES12-SP5-EC2-BYOS

Image SLES12-SP5-EC2-ECS-On-Demand

Image SLES12-SP5-EC2-On-Demand

Image SLES12-SP5-EC2-SAP-BYOS

Image SLES12-SP5-EC2-SAP-On-Demand

Image SLES12-SP5-GCE-BYOS

Image SLES12-SP5-GCE-On-Demand

Image SLES12-SP5-GCE-SAP-BYOS

Image SLES12-SP5-GCE-SAP-On-Demand

Image SLES12-SP5-OCI-BYOS-BYOS

Image SLES12-SP5-OCI-BYOS-SAP-BYOS

Image SLES12-SP5-SAP-Azure-LI-BYOS-Production

Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production

SUSE Enterprise Storage 4

SUSE Enterprise Storage 5

SUSE Linux Enterprise Desktop 12 SP4

SUSE Linux Enterprise Module for Containers 12

SUSE Linux Enterprise Module for Public Cloud 12

SUSE Linux Enterprise Server 12 SP4

SUSE Linux Enterprise Server for SAP Applications 12 SP4

SUSE Linux Enterprise Software Development Kit 12 SP4

SUSE Manager Server 3.2

SUSE OpenStack Cloud 7

SUSE OpenStack Cloud 8

SUSE OpenStack Cloud Crowbar 8

Ссылки

Уязвимость: CVE-2016-9015

Описание

Затронутые продукты

Ссылки