Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

SUSE: 2019:0863-1 Moderate: DoS and Packet Contamination Fix

suse
Calendar Grey April 3, 2019
Dist Suse Esm H88
New security patch released for SUSE Manager software resolving several vulnerabilities with 17 critical enhancements applied.
An update that solves three vulnerabilities and has 17 fixes is now available

Summary

This consolidated update includes multiple patchinfos for SUSE Manager Server and Proxy and follow security issues fixed: - CVE-2018-10851: Fixed denial of service via crafted zone record or crafted answer (bsc#1114157). - CVE-2018-14626: Fixed packet cache pollution via crafted query (bsc#1114169). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Manager Server 3.1: zypper in -t patch SUSE-SUSE-Manager-Server-3.1-2019-863=1 - SUSE Manager Proxy 3.1: zypper in -t patch SUSE-SUSE-Manager-Proxy-3.1-2019-863=1 Package List: - SUSE Manager Server 3.1 (ppc64le s390x x86_64): spacewalk-branding-2.7.2.17-2.31.3

Topics%20covered

Topics Covered

security advisory moderate update DoS software fix SUSE Manager packet contamination

References

#1109316 #1111191 #1111910 #1114029 #1114059

#1114157 #1114169 #1117759 #1119081 #1119964

#1121038 #1121195 #1121856 #1122836 #1123991

#1124639 #1126862 #1128781 #1129765 #1130658

Cross- CVE-2018-10851 CVE-2018-14626 CVE-2018-17197

Affected Products:

SUSE Manager Server 3.1

SUSE Manager Proxy 3.1

https://www.suse.com/security/cve/CVE-2018-10851.html

https://www.suse.com/security/cve/CVE-2018-14626.html

https://www.suse.com/security/cve/CVE-2018-17197.html

https://bugzilla.suse.com/1109316

https://bugzilla.suse.com/1111191

https://bugzilla.suse.com/1111910

https://bugzilla.suse.com/1114029

https://bugzilla.suse.com/1114059

https://bugzilla.suse.com/1114157

https://bugzilla.suse.com/1114169

https://bugzilla.suse.com/1117759

Announcement ID: SUSE-SU-2019:0863-1
Rating: moderate

Topics%20covered

Topics Covered

security advisory moderate update DoS software fix SUSE Manager packet contamination

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here