This update for python-requests fixes the following issues:
CVE-2018-18074: Fixed to prevent the package to send an HTTP Authorization header to an http URI
upon receiving a same-hostname https-to-http redirect. (bsc#1111622)
Affected Packages
python-requests
SUSE Linux Enterprise High Availability Extension 12 SP3SUSE Linux Enterprise High Availability Extension 12 SP4SUSE Linux Enterprise Module for Advanced Systems Management 12SUSE Linux Enterprise Server 12 SP2-BCLSUSE Linux Enterprise Server 12 SP3-BCL
Fixed in:
2.11.1-6.31.1
python3-requests
SUSE Linux Enterprise Module for Advanced Systems Management 12SUSE Manager Client Tools 12