These are all security issues fixed in the python36-CherryPy-18.6.1-1.2 package on the GA media of openSUSE Tumbleweed.
{ "binaries": [ { "python38-CherryPy": "18.6.1-1.2", "python39-CherryPy": "18.6.1-1.2", "python36-CherryPy": "18.6.1-1.2" } ] }