SUSE-SU-2023:3144-1 Security update for SUSE Manager Client Tools

This update fixes the following issues: python-tornado: - Security fixes: CVE-2023-28370: Fixed an open redirect issue in the static file handler bsc1211741 prometheus-blackboxexporter: - Use obscpio for go modules service - Set version number - Set build date from SOURCEDATEEPOCH - Update to...

SUSE-SU-2023:3122-1 Security update for SUSE Manager Client Tools

This update fixes the following issues: python-tornado: - Security fixes: CVE-2023-28370: Fixed an open redirect issue in the static file handler bsc1211741 kiwi-desc-saltboot: - Update to version 0.1.1687520761.cefb248 Add osimage cert package to bootstrap for SUSE Linux Enterprise 12 images...

Denial Of Service (DoS)

gitlab is vulnerable to Denial Of Service DoS. The vulnerability allows a crafted Prometheus Server query to cause high resource consumption which could lead to a system crash...

Denial Of Service (DoS)

gitlab is vulnerable to Denial Of Service DoS. The vulnerability exists in the Prometheus server bundled, allowing an attacker to cause an application crash...

Security Bulletin: Netcool Operations Insights 1.6.9 addresses multiple security vulnerabilities.

Summary Netcool Operations Insight v1.6.9 addresses multiple security vulnerabilities, listed in the CVEs below. Vulnerability Details CVEID:CVE-2022-42252 DESCRIPTION: Apache Tomcat is vulnerable to HTTP request smuggling, caused by the failure to reject a request containing an invalid...

SUSE SLES15 / openSUSE 15 Security Update : prometheus-sap_host_exporter (SUSE-SU-2023:2798-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:2798-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number...

SUSE SLES15 / openSUSE 15 Security Update : prometheus-ha_cluster_exporter (SUSE-SU-2023:2799-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:2799-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number...

SUSE-SU-2023:2799-1 Security update for prometheus-ha_cluster_exporter

This update for prometheus-haclusterexporter fixes the following issues: - rebuild the package with the go 1.20 security release bsc1208296...

SUSE-SU-2023:2798-1 Security update for prometheus-sap_host_exporter

This update for prometheus-saphostexporter fixes the following issues: - rebuild the package with the go 1.20 security release bsc1208270. - fixed exporter package description bsc1211311...

PT-2023-36219 · Unknown · Prometheus-Sap Host Exporter

Name of the Vulnerable Software and Affected Versions: prometheus-sap host exporter affected versions not specified Description: The issue is related to the prometheus-sap host exporter package, which has been rebuilt with the go 1.20 security release. Additionally, the exporter package descripti...

SUSE SLES12 Security Update : prometheus-sap_host_exporter (SUSE-SU-2023:2757-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:2757-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL...

SUSE SLES15 Security Update : prometheus-sap_host_exporter (SUSE-SU-2023:2756-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:2756-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL...

SUSE-SU-2023:2757-1 Security update for prometheus-sap_host_exporter

This update for prometheus-saphostexporter fixes the following issues: - rebuild the package with the go 1.20 security release bsc1208270. - fixed exporter package description bsc1211311...

SUSE-SU-2023:2756-1 Security update for prometheus-sap_host_exporter

This update for prometheus-saphostexporter fixes the following issues: - rebuild the package with the go 1.20 security release bsc1208270. - fixed exporter package description bsc1211311...

PT-2023-36214 · Unknown · Prometheus-Sap Host Exporter

Name of the Vulnerable Software and Affected Versions: prometheus-sap host exporter affected versions not specified Description: The issue concerns a security update for prometheus-sap host exporter, which includes a rebuild of the package with the go 1.20 security release. Additionally, the...

SUSE SLES12 Security Update : prometheus-ha_cluster_exporter (SUSE-SU-2023:2745-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:2745-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL...

SUSE SLES15 Security Update : prometheus-ha_cluster_exporter (SUSE-SU-2023:2746-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:2746-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL...

SUSE-SU-2023:2746-1 Security update for prometheus-ha_cluster_exporter

This update for prometheus-haclusterexporter fixes the following issues: - rebuild the package with the go 1.20 security release bsc1208296...

SUSE-SU-2023:2745-1 Security update for prometheus-ha_cluster_exporter

This update for prometheus-haclusterexporter fixes the following issues: - rebuild the package with the go 1.20 security release bsc1208296...

PT-2023-36208 · Unknown · Prometheus-Ha Cluster Exporter

Name of the Vulnerable Software and Affected Versions: prometheus-ha cluster exporter affected versions not specified Description: The issue is related to a security concern addressed by rebuilding the package with the go 1.20 security release. Recommendations: At the moment, there is no...