[SUSE-SU-2022:3178-1] Important security update for SUSE Manager Client Tools
Severity
Important
Affected Packages
33
CVEs
7
Important security update for SUSE Manager Client Tools
This update fixes the following issues:
ansible:
- Update to version 2.9.27 (jsc#SLE-23631, jsc#SLE-24133)
- CVE-2021-3620 ansible-connection module discloses sensitive info in traceback error message (in 2.9.27) (bsc#1187725)
- CVE-2021-3583 Template Injection through yaml multi-line strings with ansible facts used in template. (in 2.9.23) (bsc#1188061)
- ansible module nmcli is broken in ansible 2.9.13 (in 2.9.15) (bsc#1176460)
- Update to 2.9.22:
- CVE-2021-3447 (bsc#1183684) multiple modules expose secured values
- CVE-2021-20228 (bsc#1181935) basic.py no_log with fallback option
- CVE-2021-20191 (bsc#1181119) multiple collections exposes secured values
- CVE-2021-20180 (bsc#1180942) bitbucket_pipeline_variable exposes sensitive values
- CVE-2021-20178 (bsc#1180816) user data leak in snmp_facts module
dracut-saltboot:
- Require e2fsprogs (bsc#1202614)
- Update to version 0.1.1657643023.0d694ce
- Update dracut-saltboot dependencies (bsc#1200970)
- Fix network loading when ipappend is used in pxe config
- Add new information messages
golang-github-QubitProducts-exporter_exporter:
- Remove license file from %doc
mgr-daemon:
- Version 4.3.5-1
- Update translation strings
mgr-virtualization:
- Version 4.3.6-1
- Report all VMs in poller, not only running ones (bsc#1199528)
prometheus-blackbox_exporter:
- Exclude s390 arch
python-hwdata:
- Declare the LICENSE file as license and not doc
spacecmd:
- Version 4.3.14-1
- Fix missing argument on system_listmigrationtargets (bsc#1201003)
- Show correct help on calling kickstart_importjson with no arguments
- Fix tracebacks on spacecmd kickstart_export (bsc#1200591)
- Change proxy container config default filename to end with tar.gz
- Update translation strings
spacewalk-client-tools:
- Version 4.3.11-1
- Update translation strings
uyuni-common-libs:
- Version 4.3.5-1
- Fix reposync issue about 'rpm.hdr' object has no attribute 'get'
uyuni-proxy-systemd-services:
- Version 4.3.6-1
- Expose port 80 (bsc#1200142)
- Use volumes rather than bind mounts
- TFTPD to listen on udp port (bsc#1200968)
- Add TAG variable in configuration
- Fix containers namespaces in configuration
zypp-plugin-spacewalk:
- 1.0.13
- Log in before listing channels. (bsc#1197963, bsc#1193585)
- ID
- SUSE-SU-2022:3178-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2022/suse-su-20223178-1/
- Published
-
2022-09-08T07:35:36
(2 years ago) - Modified
-
2022-09-08T07:35:36
(2 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
- ALAS2-2021-1613
- ALPINE:CVE-2021-20191
- ASA-202102-9
- DSA-4950-1
- FEDORA-2021-0397bb2ccc
- FEDORA-2021-0414eb891b
- FEDORA-2021-0e7910e389
- FEDORA-2021-4a17f0225d
- FEDORA-2021-4ad7c70d71
- FEDORA-2021-574ee4dd30
- FEDORA-2021-71ff867094
- FEDORA-2021-9a0903469c
- FEDORA-2021-c1116fb75e
- FEDORA-2021-e9478617ae
- FREEBSD:4C9159EA-D4C9-11EB-AEEE-8C164582FBAC
- FREEBSD:9A8514F3-2AB8-11EC-B3A1-8C164582FBAC
- MS:CVE-2021-20178
- MS:CVE-2021-20191
- MS:CVE-2021-20228
- MS:CVE-2021-3583
- MS:CVE-2021-3620
- openSUSE-SU-2022:0081-1
- PYSEC-2021-1
- PYSEC-2021-106
- PYSEC-2021-107
- PYSEC-2021-124
- PYSEC-2021-358
- PYSEC-2022-164
- SUSE-SU-2021:2121-1
- SUSE-SU-2021:4152-1
- SUSE-SU-2024:0196-1
- USN-5315-1
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/suse/wire?arch=x86_64&distro=opensuse-leap-15.4 | suse | wire | < 0.5.0-150000.1.6.1 | opensuse-leap-15.4 | x86_64 | |
Affected | pkg:rpm/suse/wire?arch=s390x&distro=opensuse-leap-15.4 | suse | wire | < 0.5.0-150000.1.6.1 | opensuse-leap-15.4 | s390x | |
Affected | pkg:rpm/suse/wire?arch=ppc64le&distro=opensuse-leap-15.4 | suse | wire | < 0.5.0-150000.1.6.1 | opensuse-leap-15.4 | ppc64le | |
Affected | pkg:rpm/suse/wire?arch=aarch64&distro=opensuse-leap-15.4 | suse | wire | < 0.5.0-150000.1.6.1 | opensuse-leap-15.4 | aarch64 | |
Affected | pkg:rpm/suse/spacecmd?arch=noarch&distro=opensuse-leap-15.4 | suse | spacecmd | < 4.3.14-150000.3.83.1 | opensuse-leap-15.4 | noarch | |
Affected | pkg:rpm/suse/spacecmd?arch=noarch&distro=opensuse-leap-15.3 | suse | spacecmd | < 4.3.14-150000.3.83.1 | opensuse-leap-15.3 | noarch | |
Affected | pkg:rpm/suse/python3-hwdata?arch=noarch&distro=opensuse-leap-15.4 | suse | python3-hwdata | < 2.3.5-150000.3.9.1 | opensuse-leap-15.4 | noarch | |
Affected | pkg:rpm/suse/python3-hwdata?arch=noarch&distro=opensuse-leap-15.3 | suse | python3-hwdata | < 2.3.5-150000.3.9.1 | opensuse-leap-15.3 | noarch | |
Affected | pkg:rpm/suse/python2-hwdata?arch=noarch&distro=opensuse-leap-15.3 | suse | python2-hwdata | < 2.3.5-150000.3.9.1 | opensuse-leap-15.3 | noarch | |
Affected | pkg:rpm/suse/prometheus-blackbox_exporter?arch=x86_64&distro=opensuse-leap-15.4 | suse | prometheus-blackbox_exporter | < 0.19.0-150000.1.11.1 | opensuse-leap-15.4 | x86_64 | |
Affected | pkg:rpm/suse/prometheus-blackbox_exporter?arch=s390x&distro=opensuse-leap-15.4 | suse | prometheus-blackbox_exporter | < 0.19.0-150000.1.11.1 | opensuse-leap-15.4 | s390x | |
Affected | pkg:rpm/suse/prometheus-blackbox_exporter?arch=ppc64le&distro=opensuse-leap-15.4 | suse | prometheus-blackbox_exporter | < 0.19.0-150000.1.11.1 | opensuse-leap-15.4 | ppc64le | |
Affected | pkg:rpm/suse/prometheus-blackbox_exporter?arch=aarch64&distro=opensuse-leap-15.4 | suse | prometheus-blackbox_exporter | < 0.19.0-150000.1.11.1 | opensuse-leap-15.4 | aarch64 | |
Affected | pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter?arch=x86_64&distro=opensuse-leap-15.4 | suse | golang-github-QubitProducts-exporter_exporter | < 0.4.0-150000.1.15.1 | opensuse-leap-15.4 | x86_64 | |
Affected | pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter?arch=x86_64&distro=opensuse-leap-15.3 | suse | golang-github-QubitProducts-exporter_exporter | < 0.4.0-150000.1.15.1 | opensuse-leap-15.3 | x86_64 | |
Affected | pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter?arch=s390x&distro=opensuse-leap-15.4 | suse | golang-github-QubitProducts-exporter_exporter | < 0.4.0-150000.1.15.1 | opensuse-leap-15.4 | s390x | |
Affected | pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter?arch=s390x&distro=opensuse-leap-15.3 | suse | golang-github-QubitProducts-exporter_exporter | < 0.4.0-150000.1.15.1 | opensuse-leap-15.3 | s390x | |
Affected | pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter?arch=ppc64le&distro=opensuse-leap-15.4 | suse | golang-github-QubitProducts-exporter_exporter | < 0.4.0-150000.1.15.1 | opensuse-leap-15.4 | ppc64le | |
Affected | pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter?arch=ppc64le&distro=opensuse-leap-15.3 | suse | golang-github-QubitProducts-exporter_exporter | < 0.4.0-150000.1.15.1 | opensuse-leap-15.3 | ppc64le | |
Affected | pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter?arch=aarch64&distro=opensuse-leap-15.4 | suse | golang-github-QubitProducts-exporter_exporter | < 0.4.0-150000.1.15.1 | opensuse-leap-15.4 | aarch64 | |
Affected | pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter?arch=aarch64&distro=opensuse-leap-15.3 | suse | golang-github-QubitProducts-exporter_exporter | < 0.4.0-150000.1.15.1 | opensuse-leap-15.3 | aarch64 | |
Affected | pkg:rpm/suse/golang-github-prometheus-node_exporter?arch=x86_64&distro=sles-15 | suse | golang-github-prometheus-node_exporter | < 1.3.0-150000.3.15.1 | sles-15 | x86_64 | |
Affected | pkg:rpm/suse/golang-github-prometheus-node_exporter?arch=s390x&distro=sles-15 | suse | golang-github-prometheus-node_exporter | < 1.3.0-150000.3.15.1 | sles-15 | s390x | |
Affected | pkg:rpm/suse/golang-github-prometheus-node_exporter?arch=ppc64le&distro=sles-15 | suse | golang-github-prometheus-node_exporter | < 1.3.0-150000.3.15.1 | sles-15 | ppc64le | |
Affected | pkg:rpm/suse/golang-github-prometheus-node_exporter?arch=aarch64&distro=sles-15 | suse | golang-github-prometheus-node_exporter | < 1.3.0-150000.3.15.1 | sles-15 | aarch64 | |
Affected | pkg:rpm/suse/dracut-saltboot?arch=noarch&distro=opensuse-leap-15.4 | suse | dracut-saltboot | < 0.1.1657643023.0d694ce-150000.1.35.1 | opensuse-leap-15.4 | noarch | |
Affected | pkg:rpm/suse/dracut-saltboot?arch=noarch&distro=opensuse-leap-15.3 | suse | dracut-saltboot | < 0.1.1657643023.0d694ce-150000.1.35.1 | opensuse-leap-15.3 | noarch | |
Affected | pkg:rpm/suse/ansible?arch=noarch&distro=opensuse-leap-15.4 | suse | ansible | < 2.9.27-150000.1.14.1 | opensuse-leap-15.4 | noarch | |
Affected | pkg:rpm/suse/ansible?arch=noarch&distro=opensuse-leap-15.3 | suse | ansible | < 2.9.27-150000.1.14.1 | opensuse-leap-15.3 | noarch | |
Affected | pkg:rpm/suse/ansible-test?arch=noarch&distro=opensuse-leap-15.4 | suse | ansible-test | < 2.9.27-150000.1.14.1 | opensuse-leap-15.4 | noarch | |
Affected | pkg:rpm/suse/ansible-test?arch=noarch&distro=opensuse-leap-15.3 | suse | ansible-test | < 2.9.27-150000.1.14.1 | opensuse-leap-15.3 | noarch | |
Affected | pkg:rpm/suse/ansible-doc?arch=noarch&distro=opensuse-leap-15.4 | suse | ansible-doc | < 2.9.27-150000.1.14.1 | opensuse-leap-15.4 | noarch | |
Affected | pkg:rpm/suse/ansible-doc?arch=noarch&distro=opensuse-leap-15.3 | suse | ansible-doc | < 2.9.27-150000.1.14.1 | opensuse-leap-15.3 | noarch |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |