Hello community, here is the log from the commit of package patchinfo.15192 for openSUSE:Leap:15.1:Update checked in at 2020-12-07 12:05:11 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Leap:15.1:Update/patchinfo.15192 (Old) and /work/SRC/openSUSE:Leap:15.1:Update/.patchinfo.15192.new.5913 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "patchinfo.15192" Mon Dec 7 12:05:11 2020 rev:1 rq:852053 version:unknown Changes: -------- New Changes file: NO CHANGES FILE!!! New: ---- _patchinfo ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ _patchinfo ++++++ <patchinfo incident="15192"> <issue tracker="bnc" id="1176262">VUL-0: CVE-2019-20916: python3,python-pip: directory traversal in _download_http_url() function in src/pip/_internal/download.py</issue> <issue tracker="cve" id="2019-20916"/> <packager>mcepl</packager> <rating>important</rating> <category>security</category> <summary>Security update for python-setuptools</summary> <description>This update for python-setuptools fixes the following issues: - Fixed a directory traversal in _download_http_url() (bsc#1176262 CVE-2019-20916) This update was imported from the SUSE:SLE-15-SP1:Update update project.</description> </patchinfo> _______________________________________________ openSUSE Commits mailing list -- commit@lists.opensuse.org To unsubscribe, email commit-le...@lists.opensuse.org List Netiquette: https://en.opensuse.org/openSUSE:Mailing_list_netiquette List Archives: https://lists.opensuse.org/archives/list/commit@lists.opensuse.org
