6 matches found
Security Beta update 5.2.0 Beta1 for Multi-Linux Manager Client Tools
This update fixes the following issues: golang-github-prometheus-prometheus: CVE-2026-27606: Fix arbitrary file write via path traversal in rollup bsc1258893 Bump rollup to version 4.59.0 Drop SLE 12 support jscPED-15474 CVE-2026-25547: Fix unbounded brace range expansion leading to excessive CPU...
Oracle Linux 9 : grafana (ELSA-2026-2920)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2920 advisory. - Resolves RHEL-144959: CVE-2026-21721 - Resolves RHEL-146863: CVE-2025-61726 - Resolves RHEL-147081: CVE-2025-61729 - Resolves RHEL-147370:...
SUSE-SU-2025:01989-1 Security update for Multi-Linux Manager Client Tools
This update fixes the following issues: golang-github-prometheus-prometheus was updated to version 2.53.4: - Security issues fixed: CVE-2023-45288: Require Go = 1.23 for building bsc1236516 CVE-2025-22870: Bumped golang.org/x/net to version 0.39.0 bsc1238686 - Other bugs fixes from version 2.53.4...
SUSE-SU-2024:0485-1 Security update for SUSE Manager Server 4.3
This update fixes the following issues: cobbler: - Build the appendline correctly for RHEL-family = 8 - Do not strip if SUSE Linux Enterprise 15 SP3 - Build at least with with Go = 1.18 on RHEL - Build with Go = 1.20 elsewhere saltboot-formula: - Update to version 0.1.1701196218.b6b8ca1 Remove...
SUSE-SU-2023:0345-1 Security update for SUSE Manager Server 4.3
This update fixes the following issues: cobbler: - Improve Cobbler performance with item cache and threadpool bsc1205489 - Skip collections that are inconsistent instead of crashing bsc1205749 - Add new 'cobbler-tests-containers' subpackage which contains setup and configuration files to run...
Vulnerabilities fixed in Grafana
Vulnerabilities have been fixed in Grafana. A malicious party could potentially exploit the vulnerabilities to perform a cross-site scripting attack, gain access to information about the system or perform a cross-site request-forgery attack. Through the latter, the malicious take over user accoun...