SUSE-RU-2020:0775-1

See a problem?
Please try reporting it to the source first.

Source

https://www.suse.com/support/update/announcement/2020/suse-ru-20200775-1/

Import Source

https://ftp.suse.com/pub/projects/security/osv/SUSE-RU-2020:0775-1.json

JSON Data

https://api.osv.dev/v1/vulns/SUSE-RU-2020:0775-1

Related

CVE-2019-9947

Published

2020-03-24T16:41:41Z

Modified

2020-03-24T16:41:41Z

Summary

Recommended update for python-botocore

Details

This update for python-boto3, python-botocore and python-futures fixes the following issues:

python-botocore was updated to 1.13.33:

Fix for python3-botocore versioning issues between SLES12 SP3 Teradata and Public Cloud Module. (bsc#1129696)
Remove the broken attempt to avoid using the bundled requests module provided by the source. (boo#1088310)
Update to the latest SDK components. (bsc#1146853, bsc#1146854)
Add support for urllib 1.25 for CVE-2019-9947. (boo#1136184)
Fix implementing MD5 header injection into new operations if they are necessary and create default session configuration. (bsc#1118021, bsc#1118024, bsc#1118027)
Add attribute 'ssl_context' to 'AWSHTTPSConnection'. (bsc#1095041)

python-boto3 was updated to 1.10.33.

python-futures also provides python2-futures in the python2 build.

References

Affected packages

SUSE:HPE Helion OpenStack 8 / python-botocore

Package

Name: python-botocore
Purl: purl:rpm/suse/python-botocore&distro=HPE%20Helion%20OpenStack%208

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.13.33-28.20.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1",
            "python-botocore": "1.13.33-28.20.1"
        }
    ]
}

SUSE:HPE Helion OpenStack 8 / python-futures

Package

Name: python-futures
Purl: purl:rpm/suse/python-futures&distro=HPE%20Helion%20OpenStack%208

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1",
            "python-botocore": "1.13.33-28.20.1"
        }
    ]
}

SUSE:OpenStack Cloud 7 / python-futures

Package

Name: python-futures
Purl: purl:rpm/suse/python-futures&distro=SUSE%20OpenStack%20Cloud%207

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1"
        }
    ]
}

SUSE:OpenStack Cloud 8 / python-botocore

Package

Name: python-botocore
Purl: purl:rpm/suse/python-botocore&distro=SUSE%20OpenStack%20Cloud%208

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.13.33-28.20.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1",
            "python-botocore": "1.13.33-28.20.1"
        }
    ]
}

SUSE:OpenStack Cloud 8 / python-futures

Package

Name: python-futures
Purl: purl:rpm/suse/python-futures&distro=SUSE%20OpenStack%20Cloud%208

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1",
            "python-botocore": "1.13.33-28.20.1"
        }
    ]
}

SUSE:OpenStack Cloud Crowbar 8 / python-botocore

Package

Name: python-botocore
Purl: purl:rpm/suse/python-botocore&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.13.33-28.20.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1",
            "python-botocore": "1.13.33-28.20.1"
        }
    ]
}

SUSE:OpenStack Cloud Crowbar 8 / python-futures

Package

Name: python-futures
Purl: purl:rpm/suse/python-futures&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1",
            "python-botocore": "1.13.33-28.20.1"
        }
    ]
}

SUSE:Manager Tools 12 / python-futures

Package

Name: python-futures
Purl: purl:rpm/suse/python-futures&distro=SUSE%20Manager%20Tools%2012

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Advanced Systems Management 12 / python-futures

Package

Name: python-futures
Purl: purl:rpm/suse/python-futures&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Advanced%20Systems%20Management%2012

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Public Cloud 12 / python-boto3

Package

Name: python-boto3
Purl: purl:rpm/suse/python-boto3&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2012

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.33-14.14.1

Ecosystem specific

{
    "binaries": [
        {
            "python3-s3transfer": "0.2.1-8.7.1",
            "python3-botocore": "1.13.33-28.20.1",
            "python-botocore": "1.13.33-28.20.1",
            "python-boto3": "1.10.33-14.14.1",
            "python-futures": "3.0.2-15.3.1",
            "python3-boto3": "1.10.33-14.14.1",
            "python-s3transfer": "0.2.1-8.7.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Public Cloud 12 / python-botocore

Package

Name: python-botocore
Purl: purl:rpm/suse/python-botocore&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2012

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.13.33-28.20.1

Ecosystem specific

{
    "binaries": [
        {
            "python3-s3transfer": "0.2.1-8.7.1",
            "python3-botocore": "1.13.33-28.20.1",
            "python-botocore": "1.13.33-28.20.1",
            "python-boto3": "1.10.33-14.14.1",
            "python-futures": "3.0.2-15.3.1",
            "python3-boto3": "1.10.33-14.14.1",
            "python-s3transfer": "0.2.1-8.7.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Public Cloud 12 / python-futures

Package

Name: python-futures
Purl: purl:rpm/suse/python-futures&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2012

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python3-s3transfer": "0.2.1-8.7.1",
            "python3-botocore": "1.13.33-28.20.1",
            "python-botocore": "1.13.33-28.20.1",
            "python-boto3": "1.10.33-14.14.1",
            "python-futures": "3.0.2-15.3.1",
            "python3-boto3": "1.10.33-14.14.1",
            "python-s3transfer": "0.2.1-8.7.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Public Cloud 12 / python-s3transfer

Package

Name: python-s3transfer
Purl: purl:rpm/suse/python-s3transfer&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2012

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.2.1-8.7.1

Ecosystem specific

{
    "binaries": [
        {
            "python3-s3transfer": "0.2.1-8.7.1",
            "python3-botocore": "1.13.33-28.20.1",
            "python-botocore": "1.13.33-28.20.1",
            "python-boto3": "1.10.33-14.14.1",
            "python-futures": "3.0.2-15.3.1",
            "python3-boto3": "1.10.33-14.14.1",
            "python-s3transfer": "0.2.1-8.7.1"
        }
    ]
}

SUSE:Linux Enterprise Point of Sale 12 SP2 / python-futures

Package

Name: python-futures
Purl: purl:rpm/suse/python-futures&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2012%20SP2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1"
        }
    ]
}

SUSE:Manager Proxy 3.2 / python-futures

Package

Name: python-futures
Purl: purl:rpm/suse/python-futures&distro=SUSE%20Manager%20Proxy%203.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1"
        }
    ]
}

SUSE:Manager Server 3.2 / python-futures

Package

Name: python-futures
Purl: purl:rpm/suse/python-futures&distro=SUSE%20Manager%20Server%203.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1"
        }
    ]
}

SUSE:Enterprise Storage 5 / python-futures

Package

Name: python-futures
Purl: purl:rpm/suse/python-futures&distro=SUSE%20Enterprise%20Storage%205

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.0.2-15.3.1

Ecosystem specific

{
    "binaries": [
        {
            "python-futures": "3.0.2-15.3.1"
        }
    ]
}