This update for python-requests fixes the following issues:
CVE-2018-18074: Fixed to prevent the package to send an HTTP Authorization header to an http URI
upon receiving a same-hostname https-to-http redirect. (bsc#1111622)
Affected Packages
python-requests
SUSE HPE Helion OpenStack 8SUSE Linux Enterprise High Availability Extension 12 SP3SUSE Linux Enterprise High Availability Extension 12 SP4SUSE Linux Enterprise Module for Advanced Systems Management 12SUSE Linux Enterprise Server 12 SP2-BCL
Fixed in:
2.11.1-6.31.1
python3-requests
SUSE Linux Enterprise Module for Advanced Systems Management 12SUSE Manager Client Tools 12