Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

SUSE: 2020:2650-1 Important: SUSE Manager Server Security Update

suse
Calendar Grey September 16, 2020
Dist Suse Esm H88
The latest security patch for SUSE Manager Server 4.0 addresses a trio of vulnerabilities and offers 26 enhancements aimed at boosting overall system efficiency.

An update that solves three vulnerabilities and has 26 fixes is now available.

Summary

This update fixes the following issues: hibernate5: - Address CVE-2019-14900 (bsc#1172079) image-sync-formula: - Allow image-sync state on regular minion. Image sync state requires branch-network pillars to get the directory where to sync images. Use default `/srv/saltboot` if that pillar is missing so image-sync can be applied on non branch minions as well. openvpn-formula: - Add hint that ssl certs must be on system (bsc#1172279) prometheus-exporters-formula: - Bugfix: Handle exporters proxy for unsupported distros (bsc#1175555) - Add support for exporters proxy (exporter_exporter) - Update the apache exporter config file for Debian salt-netapi-client: - Refresh authentication module list to newer Salt versions saltboot-formula:

Topics%20covered

Topics Covered

security advisory security issue software update important SUSE Manager Server Patch Instructions three fixes

References

#1136857 #1165829 #1167907 #1169664 #1170244

#1171281 #1172079 #1172279 #1172504 #1172831

#1173073 #1173535 #1173554 #1173566 #1173584

#1173982 #1173997 #1174201 #1174254 #1174470

#1175224 #1175529 #1175555 #1175556 #1175558

#1175724 #1175791 #1175884 #1175889

Cross- CVE-2019-14900 CVE-2020-11022 CVE-2020-8028

Affected Products:

SUSE Linux Enterprise Module for SUSE Manager Server 4.0

SUSE Linux Enterprise Module for SUSE Manager Proxy 4.0

https://www.suse.com/security/cve/CVE-2019-14900.html

https://www.suse.com/security/cve/CVE-2020-11022.html

https://www.suse.com/security/cve/CVE-2020-8028.html

https://bugzilla.suse.com/1136857

https://bugzilla.suse.com/1165829

https://bugzilla.suse.com/1167907

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2020:2650-1
Rating: important

Topics%20covered

Topics Covered

security advisory security issue software update important SUSE Manager Server Patch Instructions three fixes

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here