165 matches found
SUSE-SU-2023:1902-1 Security update for SUSE Manager Client Tools
This update fixes the following issues: grafana version update from 8.5.20 to 8.5.22: - Security issues fixed: CVE-2023-1410: Fix XSS in Graphite functions tooltip bsc1209645 CVE-2023-0507: Apply attribute sanitation to GeomapPanel bsc1208821 CVE-2023-0594: Avoid storing XSS in TraceView panel...
SUSE: Security Advisory (SUSE-SU-2023:0812-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2023:0352-1 Security update for SUSE Manager Client Tools
This update fixes the following issues: grafana: - Update to version 8.5.15 jscPED-2617: CVE-2022-39306: Fix for privilege escalation bsc1205225 CVE-2022-39307: Omit error from http response when user does not exists bsc1205227 - Update to version 8.5.14: CVE-2022-39201: Fix do not forward login...
openSUSE 15: dracut-saltboot / golang-github-boynux-squid_exporter / etc (SUSE-SU-2022:4437-1)
The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4437-1 advisory. dracut-saltboot: - Update to version 0.1.1665997480.587fa10 Add dependencies on xz and gzip to support compressed images...
SUSE-SU-2022:4439-1 Security update for SUSE Manager Client Tools
This update fixes the following issues: golang-github-boynux-squidexporter: - Exclude s390 architecture - Enhanced to build on Enterprise Linux 8 grafana: - Version update from 8.3.10 to 8.5.13 jscPED-2145 - Security fixes: CVE-2022-36062: bsc1203596 CVE-2022-35957: bsc1203597 CVE-2022-31107:...
Path traversal
A Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in spacewalk/Uyuni of SUSE Linux Enterprise Module for SUSE Manager Server 4.2, SUSE Linux Enterprise Module for SUSE Manager Server 4.3, SUSE Manager Server 4.2 allows remote attackers to read files...
SUSE: Security Advisory (SUSE-SU-2022:3747-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2022:3751-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2022:3751-1 Security update for SUSE Manager Client Tools
This update fixes the following issues: dracut-saltboot: - Update to version 0.1.1661440542.6cbe0da Use standard susemanager.conf Move image services to dracut-saltboot package Use salt bundle golang-github-lusitaniae-apacheexporter: - Update to upstream release 0.11.0 jscSLE-24791 Add TLS suppor...
SUSE-SU-2022:3747-1 Security update for SUSE Manager Client Tools
This update fixes the following issues: golang-github-lusitaniae-apacheexporter: - Update to upstream release 0.11.0 jscSLE-24791 Add TLS support Switch to logger, please check --log.level and --log.format flags - Update to version 0.10.1 Bugfix: Reset ProxyBalancer metrics on each scrape to remo...
SUSE: Security Advisory (SUSE-SU-2022:3178-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES15: ansible / ansible-doc / ansible-test / dracut-saltboot / etc (SUSE-SU-2022:3178-1)
The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3178-1 advisory. ansible: - Update to version 2.9.27 jscSLE-23631, jscSLE-24133 CVE-2021-3620 ansible-connection module discloses...
SUSE: Security Advisory (SUSE-SU-2022:2134-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2022:2134-1 Security update for SUSE Manager Client Tools
This update fixes the following issues: golang-github-QubitProducts-exporterexporter: - Adapted to build on Enterprise Linux. - Fix build for RedHat 7 - Require Go = 1.14 also for CentOS - Add support for CentOS - Replace %?systemdrequires with %?systemdordering...
SUSE-SU-2022:1545-1 Security Beta update for SUSE Manager Client Tools
This update fixes the following issues: golang-github-prometheus-alertmanager: - CVE-2022-21698: Denial of service using InstrumentHandlerCounter Update vendor tarball with prometheus/clientgolang 1.11.1 bsc1196338, jscSLE-24077 - Update to version 0.23.0: amtool: Detect version drift and warn...
SUSE-SU-2022:1531-1 Security Beta update for SUSE Manager Client Tools
This update fixes the following issues: golang-github-prometheus-alertmanager: - CVE-2022-21698: Update vendor tarball with prometheus/clientgolang 1.11.1 bsc1196338, jscSLE-24077 - Update to version 0.23.0: amtool: Detect version drift and warn users 2672 Add ability to skip TLS verification for...
SUSE-SU-2022:1396-1 Security update for SUSE Manager Client Tools
This update fixes the following issues: grafana: - Update from version 7.5.12 to version 8.3.5 jscSLE-23439, jscSLE-23422 + Security: Fixes XSS vulnerability in handling data sources bsc1195726, CVE-2022-21702 Fixes cross-origin request forgery vulnerability bsc1195727, CVE-2022-21703 Fixes...
SUSE-SU-2022:0751-1 Security Beta update for SUSE Manager Client Tools
This security update fixes the following issues: golang-github-prometheus-prometheus: - Upgrade to upstream version 2.32.1 jscSLE-22863 + Bugfixes: Scrape: Fix reporting metrics when sample limit is reached during the report. 9996 Scrape: Ensure that scrape interval and scrape timeout are always...
SUSE-FU-2022:0750-1 Feature update for SUSE Manager Client Tools
This feature update fixes the following issues: cobbler: - Move configuration files ownership to apache bsc1195906 - Make configuration files only readable by root bsc1193671, CVE-2021-45083 golang-github-prometheus-prometheus: - Upgrade to upstream version 2.32.1 jscSLE-22863 + Bugfixes: Scrape:...
SUSE-SU-2022:0311-1 Security Beta update for SUSE Manager Client Tools
This update fixes the following issues: ansible: - Require python macros for building grafana: - Update to version 7.5.12: Fix markdown path traversal 42969, bsc1193688, CVE-2021-43813 - Recreate tarballs using the makefile to update the npm and go modules required - Update to version 7.5.11: Fix...