Security update for spacewalk-java (important)

2014-10-3118:06:48

lists.opensuse.org

0.003 Low

EPSS

Percentile

65.3%

JSON

This update fixes various cross-site scripting (XSS) issues in
spacewalk-java. CVE-2014-3654 has been assigned to this issue.

Security Issues:

   * CVE-2014-3654
     &lt;<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3654">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3654</a>&gt;

OSVersionArchitecturePackageVersionFilename
SUSE Manager Serveranynoarchspacewalk-taskomatic< 2.1.165.6-0.13.1spacewalk-taskomatic-2.1.165.6-0.13.1.noarch.rpm
SUSE Manager Serveranynoarchspacewalk-java-lib< 2.1.165.6-0.13.1spacewalk-java-lib-2.1.165.6-0.13.1.noarch.rpm
SUSE Manager Serveranynoarchspacewalk-java-config< 2.1.165.6-0.13.1spacewalk-java-config-2.1.165.6-0.13.1.noarch.rpm
SUSE Manager Serveranynoarchspacewalk-java< 2.1.165.6-0.13.1spacewalk-java-2.1.165.6-0.13.1.noarch.rpm
SUSE Manager Serveranynoarchspacewalk-java-postgresql< 2.1.165.6-0.13.1spacewalk-java-postgresql-2.1.165.6-0.13.1.noarch.rpm
SUSE Manager Serveranynoarchspacewalk-java-oracle< 2.1.165.6-0.13.1spacewalk-java-oracle-2.1.165.6-0.13.1.noarch.rpm

OS	Version	Architecture	Package	Version	Filename
SUSE Manager Server	any	noarch	spacewalk-taskomatic	< 2.1.165.6-0.13.1	spacewalk-taskomatic-2.1.165.6-0.13.1.noarch.rpm
SUSE Manager Server	any	noarch	spacewalk-java-lib	< 2.1.165.6-0.13.1	spacewalk-java-lib-2.1.165.6-0.13.1.noarch.rpm
SUSE Manager Server	any	noarch	spacewalk-java-config	< 2.1.165.6-0.13.1	spacewalk-java-config-2.1.165.6-0.13.1.noarch.rpm
SUSE Manager Server	any	noarch	spacewalk-java	< 2.1.165.6-0.13.1	spacewalk-java-2.1.165.6-0.13.1.noarch.rpm
SUSE Manager Server	any	noarch	spacewalk-java-postgresql	< 2.1.165.6-0.13.1	spacewalk-java-postgresql-2.1.165.6-0.13.1.noarch.rpm
SUSE Manager Server	any	noarch	spacewalk-java-oracle	< 2.1.165.6-0.13.1	spacewalk-java-oracle-2.1.165.6-0.13.1.noarch.rpm