CVE-2019-10160

A security regression of CVE-2019-9636 was discovered in python since commit d537ab0ff9767ef024f26246899728f0116b1ec3 affecting versions 2.7, 3.5, 3.6, 3.7 and from v3.8.0a4 through v3.8.0b1, which still allows an attacker to exploit CVE-2019-9636 by abusing the user and password parts of a URL. When an application parses user-supplied URLs to store cookies, authentication credentials, or other kind of information, it is possible for an attacker to provide specially crafted URLs to make the application locate host-related information (e.g. cookies, authentication data) and send them to a different host than where it should, unlike if the URLs had been correctly parsed. The result of an attack may vary based on the application.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 81%
Affected Products (NVD)
VendorProductVersion
pythonpython
2.7.0 ≤
𝑥
< 2.7.17
pythonpython
3.5.0 ≤
𝑥
< 3.5.8
pythonpython
3.6.0 ≤
𝑥
< 3.6.9
pythonpython
3.7.0 ≤
𝑥
< 3.7.4
pythonpython
3.8.0:alpha4
pythonpython
3.8.0:beta1
redhatenterprise_linux_desktop
7.0
redhatenterprise_linux_eus
7.6
redhatenterprise_linux_server
7.0
redhatenterprise_linux_server_aus
7.6
redhatenterprise_linux_server_tus
7.6
redhatenterprise_linux_workstation
7.0
debiandebian_linux
8.0
debiandebian_linux
9.0
opensuseleap
15.0
opensuseleap
15.1
canonicalubuntu_linux
12.04
canonicalubuntu_linux
14.04
canonicalubuntu_linux
16.04
canonicalubuntu_linux
18.04
canonicalubuntu_linux
19.04
redhatvirtualization
4.0
netappcloud_backup
-
netappconverged_systems_advisor_agent
-
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
python2.7
bullseye
2.7.18-8+deb11u1
fixed
jessie
not-affected
stretch
not-affected
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
python2.7
bionic
Fixed 2.7.15-4ubuntu4~18.04.1
released
cosmic
ignored
disco
Fixed 2.7.16-2ubuntu0.1
released
eoan
not-affected
focal
not-affected
groovy
not-affected
hirsute
not-affected
impish
not-affected
jammy
not-affected
kinetic
not-affected
lunar
dne
mantic
dne
noble
dne
trusty
Fixed 2.7.6-8ubuntu0.6+esm2
released
xenial
Fixed 2.7.12-1ubuntu0~16.04.8
released
python3.4
bionic
dne
cosmic
dne
disco
dne
eoan
dne
focal
dne
groovy
dne
hirsute
dne
impish
dne
jammy
dne
kinetic
dne
lunar
dne
mantic
dne
noble
dne
trusty
Fixed 3.4.3-1ubuntu1~14.04.7+esm2
released
xenial
dne
python3.5
bionic
dne
cosmic
dne
disco
dne
eoan
dne
focal
dne
groovy
dne
hirsute
dne
impish
dne
jammy
dne
kinetic
dne
lunar
dne
mantic
dne
noble
dne
trusty
Fixed 3.5.2-2ubuntu0~16.04.4~14.04.1+esm1
released
xenial
Fixed 3.5.2-2ubuntu0~16.04.8
released
python3.6
bionic
Fixed 3.6.8-1~18.04.2
released
cosmic
ignored
disco
dne
eoan
dne
focal
dne
groovy
dne
hirsute
dne
impish
dne
jammy
dne
kinetic
dne
lunar
dne
mantic
dne
noble
dne
trusty
dne
xenial
dne
python3.7
bionic
not-affected
cosmic
ignored
disco
Fixed 3.7.3-2ubuntu0.1
released
eoan
not-affected
focal
dne
groovy
dne
hirsute
dne
impish
dne
jammy
dne
kinetic
dne
lunar
dne
mantic
dne
noble
dne
trusty
dne
xenial
dne
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libpython2_7-1_0
suse enterprise desktop 15
2.7.17-7.32.1
fixed
suse enterprise desktop 15 SP1
2.7.17-7.32.1
fixed
suse enterprise desktop 15 SP2
2.7.17-7.32.1
fixed
suse enterprise desktop 15 SP3
2.7.17-7.32.1
fixed
suse enterprise sap 12 SP2
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP3
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP4
2.7.13-28.31.1
fixed
suse enterprise sap 15
2.7.17-7.32.1
fixed
suse enterprise sap 15 SP1
2.7.17-7.32.1
fixed
suse enterprise sap 15 SP2
2.7.17-7.32.1
fixed
suse enterprise sap 15 SP3
2.7.17-7.32.1
fixed
suse enterprise server 12 SP1
2.7.13-28.31.1
fixed
suse enterprise server 12 SP2
2.7.13-28.31.1
fixed
suse enterprise server 12 SP3
2.7.13-28.31.1
fixed
suse enterprise server 12 SP4
2.7.13-28.31.1
fixed
suse enterprise server 15
2.7.17-7.32.1
fixed
suse enterprise server 15 SP1
2.7.17-7.32.1
fixed
suse enterprise server 15 SP2
2.7.17-7.32.1
fixed
suse enterprise server 15 SP3
2.7.17-7.32.1
fixed
libpython2_7-1_0-32bit
suse enterprise sap 12 SP2
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP3
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP4
2.7.13-28.31.1
fixed
suse enterprise server 12 SP1
2.7.13-28.31.1
fixed
suse enterprise server 12 SP2
2.7.13-28.31.1
fixed
suse enterprise server 12 SP3
2.7.13-28.31.1
fixed
suse enterprise server 12 SP4
2.7.13-28.31.1
fixed
libpython3_4m1_0
suse enterprise sap 12
3.4.6-25.29.1
fixed
suse enterprise sap 12 SP2
3.4.6-25.29.1
fixed
suse enterprise sap 12 SP3
3.4.6-25.29.1
fixed
suse enterprise sap 12 SP4
3.4.6-25.29.1
fixed
suse enterprise sap 12 SP5
3.4.6-25.29.1
fixed
suse enterprise server 12
3.4.6-25.29.1
fixed
suse enterprise server 12 SP1
3.4.6-25.29.1
fixed
suse enterprise server 12 SP2
3.4.6-25.29.1
fixed
suse enterprise server 12 SP3
3.4.6-25.29.1
fixed
suse enterprise server 12 SP4
3.4.6-25.29.1
fixed
suse enterprise server 12 SP5
3.4.6-25.29.1
fixed
libpython3_6m1_0
suse enterprise desktop 15
3.6.10-3.42.2
fixed
suse enterprise desktop 15 SP1
3.6.10-3.42.2
fixed
suse enterprise desktop 15 SP2
3.6.8-3.23.1
fixed
suse enterprise desktop 15 SP3
3.6.8-3.23.1
fixed
suse enterprise desktop 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise desktop 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise desktop 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise desktop 15 SP7
3.6.15-150300.10.84.1
fixed
suse enterprise sap 15
3.6.10-3.42.2
fixed
suse enterprise sap 15 SP1
3.6.10-3.42.2
fixed
suse enterprise sap 15 SP2
3.6.8-3.23.1
fixed
suse enterprise sap 15 SP3
3.6.8-3.23.1
fixed
suse enterprise sap 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise sap 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise sap 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise sap 15 SP7
3.6.15-150300.10.84.1
fixed
suse enterprise server 12 SP3
3.6.8-6.14.1
fixed
suse enterprise server 15
3.6.10-3.42.2
fixed
suse enterprise server 15 SP1
3.6.10-3.42.2
fixed
suse enterprise server 15 SP2
3.6.8-3.23.1
fixed
suse enterprise server 15 SP3
3.6.8-3.23.1
fixed
suse enterprise server 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise server 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise server 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise server 15 SP7
3.6.15-150300.10.84.1
fixed
python
suse enterprise desktop 15
2.7.17-7.32.2
fixed
suse enterprise desktop 15 SP1
2.7.17-7.32.2
fixed
suse enterprise desktop 15 SP2
2.7.17-7.32.2
fixed
suse enterprise desktop 15 SP3
2.7.17-7.32.2
fixed
suse enterprise sap 12 SP2
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP3
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP4
2.7.13-28.31.1
fixed
suse enterprise sap 15
2.7.17-7.32.2
fixed
suse enterprise sap 15 SP1
2.7.17-7.32.2
fixed
suse enterprise sap 15 SP2
2.7.17-7.32.2
fixed
suse enterprise sap 15 SP3
2.7.17-7.32.2
fixed
suse enterprise server 12 SP1
2.7.13-28.31.1
fixed
suse enterprise server 12 SP2
2.7.13-28.31.1
fixed
suse enterprise server 12 SP3
2.7.13-28.31.1
fixed
suse enterprise server 12 SP4
2.7.13-28.31.1
fixed
suse enterprise server 15
2.7.17-7.32.2
fixed
suse enterprise server 15 SP1
2.7.17-7.32.2
fixed
suse enterprise server 15 SP2
2.7.17-7.32.2
fixed
suse enterprise server 15 SP3
2.7.17-7.32.2
fixed
python-32bit
suse enterprise sap 12 SP2
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP3
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP4
2.7.13-28.31.1
fixed
suse enterprise server 12 SP1
2.7.13-28.31.1
fixed
suse enterprise server 12 SP2
2.7.13-28.31.1
fixed
suse enterprise server 12 SP3
2.7.13-28.31.1
fixed
suse enterprise server 12 SP4
2.7.13-28.31.1
fixed
python-base
suse enterprise desktop 15
2.7.17-7.32.1
fixed
suse enterprise desktop 15 SP1
2.7.17-7.32.1
fixed
suse enterprise desktop 15 SP2
2.7.17-7.32.1
fixed
suse enterprise desktop 15 SP3
2.7.17-7.32.1
fixed
suse enterprise sap 12 SP2
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP3
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP4
2.7.13-28.31.1
fixed
suse enterprise sap 15
2.7.17-7.32.1
fixed
suse enterprise sap 15 SP1
2.7.17-7.32.1
fixed
suse enterprise sap 15 SP2
2.7.17-7.32.1
fixed
suse enterprise sap 15 SP3
2.7.17-7.32.1
fixed
suse enterprise server 12 SP1
2.7.13-28.31.1
fixed
suse enterprise server 12 SP2
2.7.13-28.31.1
fixed
suse enterprise server 12 SP3
2.7.13-28.31.1
fixed
suse enterprise server 12 SP4
2.7.13-28.31.1
fixed
suse enterprise server 15
2.7.17-7.32.1
fixed
suse enterprise server 15 SP1
2.7.17-7.32.1
fixed
suse enterprise server 15 SP2
2.7.17-7.32.1
fixed
suse enterprise server 15 SP3
2.7.17-7.32.1
fixed
python-base-32bit
suse enterprise sap 12 SP2
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP3
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP4
2.7.13-28.31.1
fixed
suse enterprise server 12 SP1
2.7.13-28.31.1
fixed
suse enterprise server 12 SP2
2.7.13-28.31.1
fixed
suse enterprise server 12 SP3
2.7.13-28.31.1
fixed
suse enterprise server 12 SP4
2.7.13-28.31.1
fixed
python-curses
suse enterprise desktop 15
2.7.17-7.32.2
fixed
suse enterprise desktop 15 SP1
2.7.17-7.32.2
fixed
suse enterprise desktop 15 SP2
2.7.17-7.32.2
fixed
suse enterprise desktop 15 SP3
2.7.17-7.32.2
fixed
suse enterprise sap 12 SP2
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP3
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP4
2.7.13-28.31.1
fixed
suse enterprise sap 15
2.7.17-7.32.2
fixed
suse enterprise sap 15 SP1
2.7.17-7.32.2
fixed
suse enterprise sap 15 SP2
2.7.17-7.32.2
fixed
suse enterprise sap 15 SP3
2.7.17-7.32.2
fixed
suse enterprise server 12 SP1
2.7.13-28.31.1
fixed
suse enterprise server 12 SP2
2.7.13-28.31.1
fixed
suse enterprise server 12 SP3
2.7.13-28.31.1
fixed
suse enterprise server 12 SP4
2.7.13-28.31.1
fixed
suse enterprise server 15
2.7.17-7.32.2
fixed
suse enterprise server 15 SP1
2.7.17-7.32.2
fixed
suse enterprise server 15 SP2
2.7.17-7.32.2
fixed
suse enterprise server 15 SP3
2.7.17-7.32.2
fixed
python-demo
suse enterprise sap 12 SP2
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP3
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP4
2.7.13-28.31.1
fixed
suse enterprise server 12 SP1
2.7.13-28.31.1
fixed
suse enterprise server 12 SP2
2.7.13-28.31.1
fixed
suse enterprise server 12 SP3
2.7.13-28.31.1
fixed
suse enterprise server 12 SP4
2.7.13-28.31.1
fixed
python-devel
suse enterprise desktop 15
2.7.17-7.32.1
fixed
suse enterprise desktop 15 SP1
2.7.17-7.32.1
fixed
suse enterprise desktop 15 SP2
2.7.17-7.32.1
fixed
suse enterprise desktop 15 SP3
2.7.17-7.32.1
fixed
suse enterprise sap 12 SP2
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP3
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP4
2.7.13-28.31.1
fixed
suse enterprise sap 15
2.7.17-7.32.1
fixed
suse enterprise sap 15 SP1
2.7.17-7.32.1
fixed
suse enterprise sap 15 SP2
2.7.17-7.32.1
fixed
suse enterprise sap 15 SP3
2.7.17-7.32.1
fixed
suse enterprise server 12 SP1
2.7.13-28.31.1
fixed
suse enterprise server 12 SP2
2.7.13-28.31.1
fixed
suse enterprise server 12 SP3
2.7.13-28.31.1
fixed
suse enterprise server 12 SP4
2.7.13-28.31.1
fixed
suse enterprise server 15
2.7.17-7.32.1
fixed
suse enterprise server 15 SP1
2.7.17-7.32.1
fixed
suse enterprise server 15 SP2
2.7.17-7.32.1
fixed
suse enterprise server 15 SP3
2.7.17-7.32.1
fixed
python-doc
suse enterprise sap 12 SP2
2.7.13-28.31.2
fixed
suse enterprise sap 12 SP3
2.7.13-28.31.2
fixed
suse enterprise sap 12 SP4
2.7.13-28.31.2
fixed
suse enterprise server 12 SP1
2.7.13-28.31.2
fixed
suse enterprise server 12 SP2
2.7.13-28.31.2
fixed
suse enterprise server 12 SP3
2.7.13-28.31.2
fixed
suse enterprise server 12 SP4
2.7.13-28.31.2
fixed
python-doc-pdf
suse enterprise sap 12 SP2
2.7.13-28.31.2
fixed
suse enterprise sap 12 SP3
2.7.13-28.31.2
fixed
suse enterprise sap 12 SP4
2.7.13-28.31.2
fixed
suse enterprise server 12 SP1
2.7.13-28.31.2
fixed
suse enterprise server 12 SP2
2.7.13-28.31.2
fixed
suse enterprise server 12 SP3
2.7.13-28.31.2
fixed
suse enterprise server 12 SP4
2.7.13-28.31.2
fixed
python-gdbm
suse enterprise desktop 15
2.7.17-7.32.2
fixed
suse enterprise desktop 15 SP1
2.7.17-7.32.2
fixed
suse enterprise desktop 15 SP2
2.7.17-7.32.2
fixed
suse enterprise desktop 15 SP3
2.7.17-7.32.2
fixed
suse enterprise sap 12 SP2
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP3
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP4
2.7.13-28.31.1
fixed
suse enterprise sap 15
2.7.17-7.32.2
fixed
suse enterprise sap 15 SP1
2.7.17-7.32.2
fixed
suse enterprise sap 15 SP2
2.7.17-7.32.2
fixed
suse enterprise sap 15 SP3
2.7.17-7.32.2
fixed
suse enterprise server 12 SP1
2.7.13-28.31.1
fixed
suse enterprise server 12 SP2
2.7.13-28.31.1
fixed
suse enterprise server 12 SP3
2.7.13-28.31.1
fixed
suse enterprise server 12 SP4
2.7.13-28.31.1
fixed
suse enterprise server 15
2.7.17-7.32.2
fixed
suse enterprise server 15 SP1
2.7.17-7.32.2
fixed
suse enterprise server 15 SP2
2.7.17-7.32.2
fixed
suse enterprise server 15 SP3
2.7.17-7.32.2
fixed
python-idle
suse enterprise sap 12 SP2
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP3
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP4
2.7.13-28.31.1
fixed
suse enterprise server 12 SP1
2.7.13-28.31.1
fixed
suse enterprise server 12 SP2
2.7.13-28.31.1
fixed
suse enterprise server 12 SP3
2.7.13-28.31.1
fixed
suse enterprise server 12 SP4
2.7.13-28.31.1
fixed
python-tk
suse enterprise sap 12 SP2
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP3
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP4
2.7.13-28.31.1
fixed
suse enterprise server 12 SP1
2.7.13-28.31.1
fixed
suse enterprise server 12 SP2
2.7.13-28.31.1
fixed
suse enterprise server 12 SP3
2.7.13-28.31.1
fixed
suse enterprise server 12 SP4
2.7.13-28.31.1
fixed
python-xml
suse enterprise desktop 15
2.7.17-7.32.1
fixed
suse enterprise desktop 15 SP1
2.7.17-7.32.1
fixed
suse enterprise desktop 15 SP2
2.7.17-7.32.1
fixed
suse enterprise desktop 15 SP3
2.7.17-7.32.1
fixed
suse enterprise sap 12 SP2
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP3
2.7.13-28.31.1
fixed
suse enterprise sap 12 SP4
2.7.13-28.31.1
fixed
suse enterprise sap 15
2.7.17-7.32.1
fixed
suse enterprise sap 15 SP1
2.7.17-7.32.1
fixed
suse enterprise sap 15 SP2
2.7.17-7.32.1
fixed
suse enterprise sap 15 SP3
2.7.17-7.32.1
fixed
suse enterprise server 12 SP1
2.7.13-28.31.1
fixed
suse enterprise server 12 SP2
2.7.13-28.31.1
fixed
suse enterprise server 12 SP3
2.7.13-28.31.1
fixed
suse enterprise server 12 SP4
2.7.13-28.31.1
fixed
suse enterprise server 15
2.7.17-7.32.1
fixed
suse enterprise server 15 SP1
2.7.17-7.32.1
fixed
suse enterprise server 15 SP2
2.7.17-7.32.1
fixed
suse enterprise server 15 SP3
2.7.17-7.32.1
fixed
python3
suse enterprise desktop 15
3.6.10-3.42.2
fixed
suse enterprise desktop 15 SP1
3.6.10-3.42.2
fixed
suse enterprise desktop 15 SP2
3.6.8-3.23.1
fixed
suse enterprise desktop 15 SP3
3.6.8-3.23.1
fixed
suse enterprise desktop 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise desktop 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise desktop 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise desktop 15 SP7
3.6.15-150300.10.84.1
fixed
suse enterprise sap 12
3.4.6-25.29.1
fixed
suse enterprise sap 12 SP2
3.4.6-25.29.1
fixed
suse enterprise sap 12 SP3
3.4.6-25.29.1
fixed
suse enterprise sap 12 SP4
3.4.6-25.29.1
fixed
suse enterprise sap 12 SP5
3.4.6-25.29.1
fixed
suse enterprise sap 15
3.6.10-3.42.2
fixed
suse enterprise sap 15 SP1
3.6.10-3.42.2
fixed
suse enterprise sap 15 SP2
3.6.8-3.23.1
fixed
suse enterprise sap 15 SP3
3.6.8-3.23.1
fixed
suse enterprise sap 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise sap 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise sap 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise sap 15 SP7
3.6.15-150300.10.84.1
fixed
suse enterprise server 12
3.4.6-25.29.1
fixed
suse enterprise server 12 SP1
3.4.6-25.29.1
fixed
suse enterprise server 12 SP2
3.4.6-25.29.1
fixed
suse enterprise server 12 SP3
3.4.6-25.29.1
fixed
suse enterprise server 12 SP4
3.4.6-25.29.1
fixed
suse enterprise server 12 SP5
3.4.6-25.29.1
fixed
suse enterprise server 15
3.6.10-3.42.2
fixed
suse enterprise server 15 SP1
3.6.10-3.42.2
fixed
suse enterprise server 15 SP2
3.6.8-3.23.1
fixed
suse enterprise server 15 SP3
3.6.8-3.23.1
fixed
suse enterprise server 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise server 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise server 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise server 15 SP7
3.6.15-150300.10.84.1
fixed
python3-base
suse enterprise desktop 15
3.6.10-3.42.2
fixed
suse enterprise desktop 15 SP1
3.6.10-3.42.2
fixed
suse enterprise desktop 15 SP2
3.6.8-3.23.1
fixed
suse enterprise desktop 15 SP3
3.6.8-3.23.1
fixed
suse enterprise desktop 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise desktop 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise desktop 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise desktop 15 SP7
3.6.15-150300.10.84.1
fixed
suse enterprise sap 12
3.4.6-25.29.1
fixed
suse enterprise sap 12 SP2
3.4.6-25.29.1
fixed
suse enterprise sap 12 SP3
3.4.6-25.29.1
fixed
suse enterprise sap 12 SP4
3.4.6-25.29.1
fixed
suse enterprise sap 12 SP5
3.4.6-25.29.1
fixed
suse enterprise sap 15
3.6.10-3.42.2
fixed
suse enterprise sap 15 SP1
3.6.10-3.42.2
fixed
suse enterprise sap 15 SP2
3.6.8-3.23.1
fixed
suse enterprise sap 15 SP3
3.6.8-3.23.1
fixed
suse enterprise sap 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise sap 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise sap 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise sap 15 SP7
3.6.15-150300.10.84.1
fixed
suse enterprise server 12
3.4.6-25.29.1
fixed
suse enterprise server 12 SP1
3.4.6-25.29.1
fixed
suse enterprise server 12 SP2
3.4.6-25.29.1
fixed
suse enterprise server 12 SP3
3.4.6-25.29.1
fixed
suse enterprise server 12 SP4
3.4.6-25.29.1
fixed
suse enterprise server 12 SP5
3.4.6-25.29.1
fixed
suse enterprise server 15
3.6.10-3.42.2
fixed
suse enterprise server 15 SP1
3.6.10-3.42.2
fixed
suse enterprise server 15 SP2
3.6.8-3.23.1
fixed
suse enterprise server 15 SP3
3.6.8-3.23.1
fixed
suse enterprise server 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise server 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise server 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise server 15 SP7
3.6.15-150300.10.84.1
fixed
python3-curses
suse enterprise desktop 15
3.6.10-3.42.2
fixed
suse enterprise desktop 15 SP1
3.6.10-3.42.2
fixed
suse enterprise desktop 15 SP2
3.6.8-3.23.1
fixed
suse enterprise desktop 15 SP3
3.6.8-3.23.1
fixed
suse enterprise desktop 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise desktop 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise desktop 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise desktop 15 SP7
3.6.15-150300.10.84.1
fixed
suse enterprise sap 12 SP2
3.4.6-25.29.1
fixed
suse enterprise sap 12 SP3
3.4.6-25.29.1
fixed
suse enterprise sap 12 SP4
3.4.6-25.29.1
fixed
suse enterprise sap 15
3.6.10-3.42.2
fixed
suse enterprise sap 15 SP1
3.6.10-3.42.2
fixed
suse enterprise sap 15 SP2
3.6.8-3.23.1
fixed
suse enterprise sap 15 SP3
3.6.8-3.23.1
fixed
suse enterprise sap 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise sap 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise sap 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise sap 15 SP7
3.6.15-150300.10.84.1
fixed
suse enterprise server 12 SP2
3.4.6-25.29.1
fixed
suse enterprise server 12 SP3
3.4.6-25.29.1
fixed
suse enterprise server 12 SP4
3.4.6-25.29.1
fixed
suse enterprise server 15
3.6.10-3.42.2
fixed
suse enterprise server 15 SP1
3.6.10-3.42.2
fixed
suse enterprise server 15 SP2
3.6.8-3.23.1
fixed
suse enterprise server 15 SP3
3.6.8-3.23.1
fixed
suse enterprise server 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise server 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise server 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise server 15 SP7
3.6.15-150300.10.84.1
fixed
python3-dbm
suse enterprise desktop 15
3.6.10-3.42.2
fixed
suse enterprise desktop 15 SP1
3.6.10-3.42.2
fixed
suse enterprise desktop 15 SP2
3.6.8-3.23.1
fixed
suse enterprise desktop 15 SP3
3.6.8-3.23.1
fixed
suse enterprise desktop 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise desktop 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise desktop 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise desktop 15 SP7
3.6.15-150300.10.84.1
fixed
suse enterprise sap 15
3.6.10-3.42.2
fixed
suse enterprise sap 15 SP1
3.6.10-3.42.2
fixed
suse enterprise sap 15 SP2
3.6.8-3.23.1
fixed
suse enterprise sap 15 SP3
3.6.8-3.23.1
fixed
suse enterprise sap 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise sap 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise sap 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise sap 15 SP7
3.6.15-150300.10.84.1
fixed
suse enterprise server 15
3.6.10-3.42.2
fixed
suse enterprise server 15 SP1
3.6.10-3.42.2
fixed
suse enterprise server 15 SP2
3.6.8-3.23.1
fixed
suse enterprise server 15 SP3
3.6.8-3.23.1
fixed
suse enterprise server 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise server 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise server 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise server 15 SP7
3.6.15-150300.10.84.1
fixed
python3-devel
suse enterprise desktop 15
3.6.10-3.42.2
fixed
suse enterprise desktop 15 SP1
3.6.10-3.42.2
fixed
suse enterprise desktop 15 SP2
3.6.8-3.23.1
fixed
suse enterprise desktop 15 SP3
3.6.8-3.23.1
fixed
suse enterprise desktop 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise desktop 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise desktop 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise desktop 15 SP7
3.6.15-150300.10.84.1
fixed
suse enterprise sap 15
3.6.10-3.42.2
fixed
suse enterprise sap 15 SP1
3.6.10-3.42.2
fixed
suse enterprise sap 15 SP2
3.6.8-3.23.1
fixed
suse enterprise sap 15 SP3
3.6.8-3.23.1
fixed
suse enterprise sap 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise sap 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise sap 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise sap 15 SP7
3.6.15-150300.10.84.1
fixed
suse enterprise server 15
3.6.10-3.42.2
fixed
suse enterprise server 15 SP1
3.6.10-3.42.2
fixed
suse enterprise server 15 SP2
3.6.8-3.23.1
fixed
suse enterprise server 15 SP3
3.6.8-3.23.1
fixed
suse enterprise server 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise server 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise server 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise server 15 SP7
3.6.15-150300.10.84.1
fixed
python3-idle
suse enterprise desktop 15
3.6.10-3.42.2
fixed
suse enterprise desktop 15 SP1
3.6.10-3.42.2
fixed
suse enterprise desktop 15 SP2
3.6.8-3.23.1
fixed
suse enterprise desktop 15 SP3
3.6.8-3.23.1
fixed
suse enterprise desktop 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise desktop 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise desktop 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise desktop 15 SP7
3.6.15-150300.10.84.1
fixed
suse enterprise sap 15
3.6.10-3.42.2
fixed
suse enterprise sap 15 SP1
3.6.10-3.42.2
fixed
suse enterprise sap 15 SP2
3.6.8-3.23.1
fixed
suse enterprise sap 15 SP3
3.6.8-3.23.1
fixed
suse enterprise sap 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise sap 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise sap 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise sap 15 SP7
3.6.15-150300.10.84.1
fixed
suse enterprise server 15
3.6.10-3.42.2
fixed
suse enterprise server 15 SP1
3.6.10-3.42.2
fixed
suse enterprise server 15 SP2
3.6.8-3.23.1
fixed
suse enterprise server 15 SP3
3.6.8-3.23.1
fixed
suse enterprise server 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise server 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise server 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise server 15 SP7
3.6.15-150300.10.84.1
fixed
python3-tk
suse enterprise desktop 15
3.6.10-3.42.2
fixed
suse enterprise desktop 15 SP1
3.6.10-3.42.2
fixed
suse enterprise desktop 15 SP2
3.6.8-3.23.1
fixed
suse enterprise desktop 15 SP3
3.6.8-3.23.1
fixed
suse enterprise desktop 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise desktop 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise desktop 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise desktop 15 SP7
3.6.15-150300.10.84.1
fixed
suse enterprise sap 15
3.6.10-3.42.2
fixed
suse enterprise sap 15 SP1
3.6.10-3.42.2
fixed
suse enterprise sap 15 SP2
3.6.8-3.23.1
fixed
suse enterprise sap 15 SP3
3.6.8-3.23.1
fixed
suse enterprise sap 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise sap 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise sap 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise sap 15 SP7
3.6.15-150300.10.84.1
fixed
suse enterprise server 15
3.6.10-3.42.2
fixed
suse enterprise server 15 SP1
3.6.10-3.42.2
fixed
suse enterprise server 15 SP2
3.6.8-3.23.1
fixed
suse enterprise server 15 SP3
3.6.8-3.23.1
fixed
suse enterprise server 15 SP4
3.6.15-150300.10.21.1
fixed
suse enterprise server 15 SP5
3.6.15-150300.10.45.1
fixed
suse enterprise server 15 SP6
3.6.15-150300.10.60.1
fixed
suse enterprise server 15 SP7
3.6.15-150300.10.84.1
fixed
python36
suse enterprise server 12 SP3
3.6.8-6.14.1
fixed
python36-base
suse enterprise server 12 SP3
3.6.8-6.14.1
fixed
python36-curses
suse enterprise server 12 SP3
3.6.8-6.14.1
fixed
python36-dbm
suse enterprise server 12 SP3
3.6.8-6.14.1
fixed
python36-devel
suse enterprise server 12 SP3
3.6.8-6.14.1
fixed
python36-doc
suse enterprise server 12 SP3
3.6.8-6.14.1
fixed
python36-testsuite
suse enterprise server 12 SP3
3.6.8-6.14.1
fixed
python36-tk
suse enterprise server 12 SP3
3.6.8-6.14.1
fixed
python36-tools
suse enterprise server 12 SP3
3.6.8-6.14.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
python
RHEL 7
0:2.7.5-80.el7_6
fixed
python-debug
RHEL 7
0:2.7.5-80.el7_6
fixed
python-devel
RHEL 7
0:2.7.5-80.el7_6
fixed
python-libs
RHEL 7
0:2.7.5-80.el7_6
fixed
python-test
RHEL 7
0:2.7.5-80.el7_6
fixed
python-tools
RHEL 7
0:2.7.5-80.el7_6
fixed
tkinter
RHEL 7
0:2.7.5-80.el7_6
fixed
Common Weakness Enumeration
References
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00042.html
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html
https://access.redhat.com/errata/RHSA-2019:1587
https://access.redhat.com/errata/RHSA-2019:1700
https://access.redhat.com/errata/RHSA-2019:2437
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10160
https://github.com/python/cpython/commit/250b62acc59921d399f0db47db3b462cd6037e09
https://github.com/python/cpython/commit/8d0ef0b5edeae52960c7ed05ae8a12388324f87e
https://github.com/python/cpython/commit/f61599b050c621386a3fc6bc480359e2d3bb93de
https://github.com/python/cpython/commit/fd1771dbdd28709716bd531580c40ae5ed814468
https://lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab6a444e64e840a0%40%3Cissues.bookkeeper.apache.org%3E
https://lists.debian.org/debian-lts-announce/2019/06/msg00022.html
https://lists.debian.org/debian-lts-announce/2020/07/msg00011.html
https://lists.debian.org/debian-lts-announce/2020/08/msg00034.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ORNTF62QPLMJXIQ7KTZQ2776LMIXEKL/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/44TS66GJMO5H3RLMVZEBGEFTB6O2LJJU/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4X3HW5JRZ7GCPSR7UHJOLD7AWLTQCDVR/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E2HP37NUVLQSBW3J735A2DQDOZ4ZGBLY/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ER6LONC2B2WYIO56GBQUDU6QTWZDPUNQ/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HQEQLXLOCR3SNM3AA5RRYJFQ5AZBYJ4L/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JCPGLTTOBB3QEARDX4JOYURP6ELNNA2V/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KRYFIMISZ47NTAU3XWZUOFB7CYL62KES/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M34WOYCDKTDE5KLUACE2YIEH7D37KHRX/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NF3DRDGMVIRYNZMSLJIHNW47HOUQYXVG/
https://python-security.readthedocs.io/vuln/urlsplit-nfkc-normalization2.html
https://security.netapp.com/advisory/ntap-20190617-0003/
https://usn.ubuntu.com/4127-1/
https://usn.ubuntu.com/4127-2/
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00042.html
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html
https://access.redhat.com/errata/RHSA-2019:1587
https://access.redhat.com/errata/RHSA-2019:1700
https://access.redhat.com/errata/RHSA-2019:2437
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10160
https://github.com/python/cpython/commit/250b62acc59921d399f0db47db3b462cd6037e09
https://github.com/python/cpython/commit/8d0ef0b5edeae52960c7ed05ae8a12388324f87e
https://github.com/python/cpython/commit/f61599b050c621386a3fc6bc480359e2d3bb93de
https://github.com/python/cpython/commit/fd1771dbdd28709716bd531580c40ae5ed814468
https://lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab6a444e64e840a0%40%3Cissues.bookkeeper.apache.org%3E
https://lists.debian.org/debian-lts-announce/2019/06/msg00022.html
https://lists.debian.org/debian-lts-announce/2020/07/msg00011.html
https://lists.debian.org/debian-lts-announce/2020/08/msg00034.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ORNTF62QPLMJXIQ7KTZQ2776LMIXEKL/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/44TS66GJMO5H3RLMVZEBGEFTB6O2LJJU/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4X3HW5JRZ7GCPSR7UHJOLD7AWLTQCDVR/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E2HP37NUVLQSBW3J735A2DQDOZ4ZGBLY/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ER6LONC2B2WYIO56GBQUDU6QTWZDPUNQ/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HQEQLXLOCR3SNM3AA5RRYJFQ5AZBYJ4L/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JCPGLTTOBB3QEARDX4JOYURP6ELNNA2V/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KRYFIMISZ47NTAU3XWZUOFB7CYL62KES/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M34WOYCDKTDE5KLUACE2YIEH7D37KHRX/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NF3DRDGMVIRYNZMSLJIHNW47HOUQYXVG/
https://python-security.readthedocs.io/vuln/urlsplit-nfkc-normalization2.html
https://security.netapp.com/advisory/ntap-20190617-0003/
https://usn.ubuntu.com/4127-1/
https://usn.ubuntu.com/4127-2/