SUSE-RU-2020:0775-1

Source
https://www.suse.com/support/update/announcement/2020/suse-ru-20200775-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-RU-2020:0775-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-RU-2020:0775-1
Related
Published
2020-03-24T16:41:41Z
Modified
2020-03-24T16:41:41Z
Summary
Recommended update for python-botocore
Details

This update for python-boto3, python-botocore and python-futures fixes the following issues:

python-botocore was updated to 1.13.33:

  • Fix for python3-botocore versioning issues between SLES12 SP3 Teradata and Public Cloud Module. (bsc#1129696)
  • Remove the broken attempt to avoid using the bundled requests module provided by the source. (boo#1088310)
  • Update to the latest SDK components. (bsc#1146853, bsc#1146854)
  • Add support for urllib 1.25 for CVE-2019-9947. (boo#1136184)
  • Fix implementing MD5 header injection into new operations if they are necessary and create default session configuration. (bsc#1118021, bsc#1118024, bsc#1118027)
  • Add attribute 'ssl_context' to 'AWSHTTPSConnection'. (bsc#1095041)

python-boto3 was updated to 1.10.33.

python-futures also provides python2-futures in the python2 build.

References

Affected packages

SUSE:HPE Helion OpenStack 8 / python-botocore

Package

Name
python-botocore
Purl
pkg:rpm/suse/python-botocore&distro=HPE%20Helion%20OpenStack%208

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.13.33-28.20.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1",
            "python-botocore": "1.13.33-28.20.1"
        }
    ]
}

SUSE:HPE Helion OpenStack 8 / python-futures

Package

Name
python-futures
Purl
pkg:rpm/suse/python-futures&distro=HPE%20Helion%20OpenStack%208

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1",
            "python-botocore": "1.13.33-28.20.1"
        }
    ]
}

SUSE:OpenStack Cloud 7 / python-futures

Package

Name
python-futures
Purl
pkg:rpm/suse/python-futures&distro=SUSE%20OpenStack%20Cloud%207

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1"
        }
    ]
}

SUSE:OpenStack Cloud 8 / python-botocore

Package

Name
python-botocore
Purl
pkg:rpm/suse/python-botocore&distro=SUSE%20OpenStack%20Cloud%208

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.13.33-28.20.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1",
            "python-botocore": "1.13.33-28.20.1"
        }
    ]
}

SUSE:OpenStack Cloud 8 / python-futures

Package

Name
python-futures
Purl
pkg:rpm/suse/python-futures&distro=SUSE%20OpenStack%20Cloud%208

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1",
            "python-botocore": "1.13.33-28.20.1"
        }
    ]
}

SUSE:OpenStack Cloud Crowbar 8 / python-botocore

Package

Name
python-botocore
Purl
pkg:rpm/suse/python-botocore&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.13.33-28.20.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1",
            "python-botocore": "1.13.33-28.20.1"
        }
    ]
}

SUSE:OpenStack Cloud Crowbar 8 / python-futures

Package

Name
python-futures
Purl
pkg:rpm/suse/python-futures&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1",
            "python-botocore": "1.13.33-28.20.1"
        }
    ]
}

SUSE:Manager Client Tools 12 / python-futures

Package

Name
python-futures
Purl
pkg:rpm/suse/python-futures&distro=SUSE%20Manager%20Client%20Tools%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Advanced Systems Management 12 / python-futures

Package

Name
python-futures
Purl
pkg:rpm/suse/python-futures&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Advanced%20Systems%20Management%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Public Cloud 12 / python-boto3

Package

Name
python-boto3
Purl
pkg:rpm/suse/python-boto3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.10.33-14.14.1

Ecosystem specific

{
    "binaries": [
        {
            "python3-s3transfer": "0.2.1-8.7.1",
            "python3-botocore": "1.13.33-28.20.1",
            "python-botocore": "1.13.33-28.20.1",
            "python-boto3": "1.10.33-14.14.1",
            "python-futures": "3.0.2-15.3.1",
            "python3-boto3": "1.10.33-14.14.1",
            "python-s3transfer": "0.2.1-8.7.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Public Cloud 12 / python-botocore

Package

Name
python-botocore
Purl
pkg:rpm/suse/python-botocore&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.13.33-28.20.1

Ecosystem specific

{
    "binaries": [
        {
            "python3-s3transfer": "0.2.1-8.7.1",
            "python3-botocore": "1.13.33-28.20.1",
            "python-botocore": "1.13.33-28.20.1",
            "python-boto3": "1.10.33-14.14.1",
            "python-futures": "3.0.2-15.3.1",
            "python3-boto3": "1.10.33-14.14.1",
            "python-s3transfer": "0.2.1-8.7.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Public Cloud 12 / python-futures

Package

Name
python-futures
Purl
pkg:rpm/suse/python-futures&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python3-s3transfer": "0.2.1-8.7.1",
            "python3-botocore": "1.13.33-28.20.1",
            "python-botocore": "1.13.33-28.20.1",
            "python-boto3": "1.10.33-14.14.1",
            "python-futures": "3.0.2-15.3.1",
            "python3-boto3": "1.10.33-14.14.1",
            "python-s3transfer": "0.2.1-8.7.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Public Cloud 12 / python-s3transfer

Package

Name
python-s3transfer
Purl
pkg:rpm/suse/python-s3transfer&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.2.1-8.7.1

Ecosystem specific

{
    "binaries": [
        {
            "python3-s3transfer": "0.2.1-8.7.1",
            "python3-botocore": "1.13.33-28.20.1",
            "python-botocore": "1.13.33-28.20.1",
            "python-boto3": "1.10.33-14.14.1",
            "python-futures": "3.0.2-15.3.1",
            "python3-boto3": "1.10.33-14.14.1",
            "python-s3transfer": "0.2.1-8.7.1"
        }
    ]
}

SUSE:Linux Enterprise Point of Sale 12 SP2 / python-futures

Package

Name
python-futures
Purl
pkg:rpm/suse/python-futures&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2012%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1"
        }
    ]
}

SUSE:Manager Proxy 3.2 / python-futures

Package

Name
python-futures
Purl
pkg:rpm/suse/python-futures&distro=SUSE%20Manager%20Proxy%203.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1"
        }
    ]
}

SUSE:Manager Server 3.2 / python-futures

Package

Name
python-futures
Purl
pkg:rpm/suse/python-futures&distro=SUSE%20Manager%20Server%203.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1"
        }
    ]
}

SUSE:Enterprise Storage 5 / python-futures

Package

Name
python-futures
Purl
pkg:rpm/suse/python-futures&distro=SUSE%20Enterprise%20Storage%205

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1"
        }
    ]
}