[SUSE-SU-2022:3178-1] Important security update for SUSE Manager Client Tools
Severity
Important
Affected Packages
33
CVEs
7
Important security update for SUSE Manager Client Tools
This update fixes the following issues:
ansible:
- Update to version 2.9.27 (jsc#SLE-23631, jsc#SLE-24133)
- CVE-2021-3620 ansible-connection module discloses sensitive info in traceback error message (in 2.9.27) (bsc#1187725)
- CVE-2021-3583 Template Injection through yaml multi-line strings with ansible facts used in template. (in 2.9.23) (bsc#1188061)
- ansible module nmcli is broken in ansible 2.9.13 (in 2.9.15) (bsc#1176460)
- Update to 2.9.22:
- CVE-2021-3447 (bsc#1183684) multiple modules expose secured values
- CVE-2021-20228 (bsc#1181935) basic.py no_log with fallback option
- CVE-2021-20191 (bsc#1181119) multiple collections exposes secured values
- CVE-2021-20180 (bsc#1180942) bitbucket_pipeline_variable exposes sensitive values
- CVE-2021-20178 (bsc#1180816) user data leak in snmp_facts module
dracut-saltboot:
- Require e2fsprogs (bsc#1202614)
- Update to version 0.1.1657643023.0d694ce
- Update dracut-saltboot dependencies (bsc#1200970)
- Fix network loading when ipappend is used in pxe config
- Add new information messages
golang-github-QubitProducts-exporter_exporter:
- Remove license file from %doc
mgr-daemon:
- Version 4.3.5-1
- Update translation strings
mgr-virtualization:
- Version 4.3.6-1
- Report all VMs in poller, not only running ones (bsc#1199528)
prometheus-blackbox_exporter:
- Exclude s390 arch
python-hwdata:
- Declare the LICENSE file as license and not doc
spacecmd:
- Version 4.3.14-1
- Fix missing argument on system_listmigrationtargets (bsc#1201003)
- Show correct help on calling kickstart_importjson with no arguments
- Fix tracebacks on spacecmd kickstart_export (bsc#1200591)
- Change proxy container config default filename to end with tar.gz
- Update translation strings
spacewalk-client-tools:
- Version 4.3.11-1
- Update translation strings
uyuni-common-libs:
- Version 4.3.5-1
- Fix reposync issue about 'rpm.hdr' object has no attribute 'get'
uyuni-proxy-systemd-services:
- Version 4.3.6-1
- Expose port 80 (bsc#1200142)
- Use volumes rather than bind mounts
- TFTPD to listen on udp port (bsc#1200968)
- Add TAG variable in configuration
- Fix containers namespaces in configuration
zypp-plugin-spacewalk:
- 1.0.13
- Log in before listing channels. (bsc#1197963, bsc#1193585)
- ID
- SUSE-SU-2022:3178-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2022/suse-su-20223178-1/
- Published
-
2022-09-08T07:35:36
(2 years ago) - Modified
-
2022-09-08T07:35:36
(2 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
-
ALAS2-2021-1613
-
ALPINE:CVE-2021-20191
-
ASA-202102-9
-
DSA-4950-1
-
FEDORA-2021-0397bb2ccc
-
FEDORA-2021-0414eb891b
-
FEDORA-2021-0e7910e389
-
FEDORA-2021-4a17f0225d
-
FEDORA-2021-4ad7c70d71
-
FEDORA-2021-574ee4dd30
-
FEDORA-2021-71ff867094
-
FEDORA-2021-9a0903469c
-
FEDORA-2021-c1116fb75e
-
FEDORA-2021-e9478617ae
-
FREEBSD:4C9159EA-D4C9-11EB-AEEE-8C164582FBAC
-
FREEBSD:9A8514F3-2AB8-11EC-B3A1-8C164582FBAC
-
MS:CVE-2021-20178
-
MS:CVE-2021-20191
-
MS:CVE-2021-20228
-
MS:CVE-2021-3583
-
MS:CVE-2021-3620
-
openSUSE-SU-2022:0081-1
-
PYSEC-2021-1
-
PYSEC-2021-106
-
PYSEC-2021-107
-
PYSEC-2021-124
-
PYSEC-2021-358
-
PYSEC-2022-164
-
SUSE-SU-2021:2121-1
-
SUSE-SU-2021:4152-1
-
SUSE-SU-2024:0196-1
-
USN-5315-1
-
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/suse/wire?arch=x86_64&distro=opensuse-leap-15.4 | suse |
 wire
|
< 0.5.0-150000.1.6.1 | opensuse-leap-15.4 | x86_64 | |
| Affected | pkg:rpm/suse/wire?arch=s390x&distro=opensuse-leap-15.4 | suse |
wire
|
< 0.5.0-150000.1.6.1 | opensuse-leap-15.4 | s390x | |
| Affected | pkg:rpm/suse/wire?arch=ppc64le&distro=opensuse-leap-15.4 | suse |
wire
|
< 0.5.0-150000.1.6.1 | opensuse-leap-15.4 | ppc64le | |
| Affected | pkg:rpm/suse/wire?arch=aarch64&distro=opensuse-leap-15.4 | suse |
wire
|
< 0.5.0-150000.1.6.1 | opensuse-leap-15.4 | aarch64 | |
| Affected | pkg:rpm/suse/spacecmd?arch=noarch&distro=opensuse-leap-15.4 | suse |
spacecmd
|
< 4.3.14-150000.3.83.1 | opensuse-leap-15.4 | noarch | |
| Affected | pkg:rpm/suse/spacecmd?arch=noarch&distro=opensuse-leap-15.3 | suse |
spacecmd
|
< 4.3.14-150000.3.83.1 | opensuse-leap-15.3 | noarch | |
| Affected | pkg:rpm/suse/python3-hwdata?arch=noarch&distro=opensuse-leap-15.4 | suse |
python3-hwdata
|
< 2.3.5-150000.3.9.1 | opensuse-leap-15.4 | noarch | |
| Affected | pkg:rpm/suse/python3-hwdata?arch=noarch&distro=opensuse-leap-15.3 | suse |
python3-hwdata
|
< 2.3.5-150000.3.9.1 | opensuse-leap-15.3 | noarch | |
| Affected | pkg:rpm/suse/python2-hwdata?arch=noarch&distro=opensuse-leap-15.3 | suse |
python2-hwdata
|
< 2.3.5-150000.3.9.1 | opensuse-leap-15.3 | noarch | |
| Affected | pkg:rpm/suse/prometheus-blackbox_exporter?arch=x86_64&distro=opensuse-leap-15.4 | suse |
prometheus-blackbox_exporter
|
< 0.19.0-150000.1.11.1 | opensuse-leap-15.4 | x86_64 | |
| Affected | pkg:rpm/suse/prometheus-blackbox_exporter?arch=s390x&distro=opensuse-leap-15.4 | suse |
prometheus-blackbox_exporter
|
< 0.19.0-150000.1.11.1 | opensuse-leap-15.4 | s390x | |
| Affected | pkg:rpm/suse/prometheus-blackbox_exporter?arch=ppc64le&distro=opensuse-leap-15.4 | suse |
prometheus-blackbox_exporter
|
< 0.19.0-150000.1.11.1 | opensuse-leap-15.4 | ppc64le | |
| Affected | pkg:rpm/suse/prometheus-blackbox_exporter?arch=aarch64&distro=opensuse-leap-15.4 | suse |
prometheus-blackbox_exporter
|
< 0.19.0-150000.1.11.1 | opensuse-leap-15.4 | aarch64 | |
| Affected | pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter?arch=x86_64&distro=opensuse-leap-15.4 | suse |
golang-github-QubitProducts-exporter_exporter
|
< 0.4.0-150000.1.15.1 | opensuse-leap-15.4 | x86_64 | |
| Affected | pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter?arch=x86_64&distro=opensuse-leap-15.3 | suse |
golang-github-QubitProducts-exporter_exporter
|
< 0.4.0-150000.1.15.1 | opensuse-leap-15.3 | x86_64 | |
| Affected | pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter?arch=s390x&distro=opensuse-leap-15.4 | suse |
golang-github-QubitProducts-exporter_exporter
|
< 0.4.0-150000.1.15.1 | opensuse-leap-15.4 | s390x | |
| Affected | pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter?arch=s390x&distro=opensuse-leap-15.3 | suse |
golang-github-QubitProducts-exporter_exporter
|
< 0.4.0-150000.1.15.1 | opensuse-leap-15.3 | s390x | |
| Affected | pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter?arch=ppc64le&distro=opensuse-leap-15.4 | suse |
golang-github-QubitProducts-exporter_exporter
|
< 0.4.0-150000.1.15.1 | opensuse-leap-15.4 | ppc64le | |
| Affected | pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter?arch=ppc64le&distro=opensuse-leap-15.3 | suse |
golang-github-QubitProducts-exporter_exporter
|
< 0.4.0-150000.1.15.1 | opensuse-leap-15.3 | ppc64le | |
| Affected | pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter?arch=aarch64&distro=opensuse-leap-15.4 | suse |
golang-github-QubitProducts-exporter_exporter
|
< 0.4.0-150000.1.15.1 | opensuse-leap-15.4 | aarch64 | |
| Affected | pkg:rpm/suse/golang-github-QubitProducts-exporter_exporter?arch=aarch64&distro=opensuse-leap-15.3 | suse |
golang-github-QubitProducts-exporter_exporter
|
< 0.4.0-150000.1.15.1 | opensuse-leap-15.3 | aarch64 | |
| Affected | pkg:rpm/suse/golang-github-prometheus-node_exporter?arch=x86_64&distro=sles-15 | suse |
golang-github-prometheus-node_exporter
|
< 1.3.0-150000.3.15.1 | sles-15 | x86_64 | |
| Affected | pkg:rpm/suse/golang-github-prometheus-node_exporter?arch=s390x&distro=sles-15 | suse |
golang-github-prometheus-node_exporter
|
< 1.3.0-150000.3.15.1 | sles-15 | s390x | |
| Affected | pkg:rpm/suse/golang-github-prometheus-node_exporter?arch=ppc64le&distro=sles-15 | suse |
golang-github-prometheus-node_exporter
|
< 1.3.0-150000.3.15.1 | sles-15 | ppc64le | |
| Affected | pkg:rpm/suse/golang-github-prometheus-node_exporter?arch=aarch64&distro=sles-15 | suse |
golang-github-prometheus-node_exporter
|
< 1.3.0-150000.3.15.1 | sles-15 | aarch64 | |
| Affected | pkg:rpm/suse/dracut-saltboot?arch=noarch&distro=opensuse-leap-15.4 | suse |
dracut-saltboot
|
< 0.1.1657643023.0d694ce-150000.1.35.1 | opensuse-leap-15.4 | noarch | |
| Affected | pkg:rpm/suse/dracut-saltboot?arch=noarch&distro=opensuse-leap-15.3 | suse |
dracut-saltboot
|
< 0.1.1657643023.0d694ce-150000.1.35.1 | opensuse-leap-15.3 | noarch | |
| Affected | pkg:rpm/suse/ansible?arch=noarch&distro=opensuse-leap-15.4 | suse |
ansible
|
< 2.9.27-150000.1.14.1 | opensuse-leap-15.4 | noarch | |
| Affected | pkg:rpm/suse/ansible?arch=noarch&distro=opensuse-leap-15.3 | suse |
ansible
|
< 2.9.27-150000.1.14.1 | opensuse-leap-15.3 | noarch | |
| Affected | pkg:rpm/suse/ansible-test?arch=noarch&distro=opensuse-leap-15.4 | suse |
ansible-test
|
< 2.9.27-150000.1.14.1 | opensuse-leap-15.4 | noarch | |
| Affected | pkg:rpm/suse/ansible-test?arch=noarch&distro=opensuse-leap-15.3 | suse |
ansible-test
|
< 2.9.27-150000.1.14.1 | opensuse-leap-15.3 | noarch | |
| Affected | pkg:rpm/suse/ansible-doc?arch=noarch&distro=opensuse-leap-15.4 | suse |
ansible-doc
|
< 2.9.27-150000.1.14.1 | opensuse-leap-15.4 | noarch | |
| Affected | pkg:rpm/suse/ansible-doc?arch=noarch&distro=opensuse-leap-15.3 | suse |
ansible-doc
|
< 2.9.27-150000.1.14.1 | opensuse-leap-15.3 | noarch |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |