Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

SUSE: 2020:2648-1 Important: SUSE Manager 3.2 Authentication Fix

suse
Calendar Grey September 16, 2020
Dist Suse Esm H88
The latest patch for SUSE Manager 3.2 targets key vulnerabilities and improves both security protocols and data protection measures.
An update that fixes one vulnerability is now available

Summary

This update for SUSE Manager 3.2 fixes the following issues: salt-netapi-client: - Refresh authentication module list to newer Salt versions spacewalk-admin: - Use the Salt API in authenticated and encrypted form (bsc#1175884, CVE-2020-8028) spacewalk-java: - Use the Salt API in authenticated and encrypted form (bsc#1175884, CVE-2020-8028) spacewalk-setup: - Use the Salt API in authenticated and encrypted form (bsc#1175884, CVE-2020-8028) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Manager Server 3.2: zypper in -t patch SUSE-SUSE-Manager-Server-3.2-2020-2648=1 Package List: - SUSE Manager Server 3.2 (noarch):

References

#1175884

Cross- CVE-2020-8028

Affected Products:

SUSE Manager Server 3.2

https://www.suse.com/security/cve/CVE-2020-8028.html

https://bugzilla.suse.com/1175884

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2020:2648-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here