openSUSE Security Update: Security update for python-rtslib-fb ______________________________________________________________________________ Announcement ID: openSUSE-SU-2020:1156-1 Rating: moderate References: #1173257 Cross-References: CVE-2020-14019 Affected Products: openSUSE Leap 15.2 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for python-rtslib-fb fixes the following issues: - Update to version v2.1.73 (bsc#1173257 CVE-2020-14019): * version 2.1.73 * save_to_file: fix fd open mode * saveconfig: copy temp configfile with permissions * saveconfig: open the temp configfile with modes set * Fix "is not" with a literal SyntaxWarning * Fix an incorrect config path in two comments * version 2.1.72 * Do not change dbroot after drivers have been registered * Remove '_if_needed' from RTSRoot._set_dbroot()'s name Replacing old tarball with python-rtslib-fb-v2.1.73.tar.xz This update was imported from the SUSE:SLE-15-SP2:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.2: zypper in -t patch openSUSE-2020-1156=1 Package List: - openSUSE Leap 15.2 (noarch): python2-rtslib-fb-2.1.73-lp152.2.3.1 python3-rtslib-fb-2.1.73-lp152.2.3.1 References: https://www.suse.com/security/cve/CVE-2020-14019.html https://bugzilla.suse.com/1173257 -- To unsubscribe, e-mail: opensuse-security-announce+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security-announce+help@opensuse.org