Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 510
Alerts This Week
Warning Icon 1 510

SUSE: 2020:3235-1 Important: SUSE Manager Server 4.1 Security Update

suse
Calendar Grey November 6, 2020
Dist Suse Esm H88
Update available for SUSE Manager Server 4.1 to address security issues and implement fixes.
An update that solves four vulnerabilities and has 22 fixes is now available

Summary

This update fixes the following issues: bind-formula: - Temporarily disable dnssec-validation as hotfix for bsc#1177790 grafana-formula: - Use variable for product name - Add HA/SAP dashboards - Add support for system groups in Client Systems dashboard image-sync-formula: - Do not use .gz suffix for default initrd symlink - Keep the old symlink "initrd.gz" for compatibility prometheus-exporters-formula: - Fix empty directory values initialization - Add systemd collector as default for node_exporters since otherwise some SAP/HA grafana dashboards will be empty - Disable reverse proxy on default prometheus-formula: - Disable Alertmanager clustering (bsc#1178145) - Use variable for product name pxe-formula: - Change default to "initrd" without .gz suffix py26-compat-salt:

References

#1144447 #1167907 #1169664 #1173199 #1175843

#1175876 #1176159 #1176307 #1176413 #1176603

#1176629 #1176765 #1177092 #1177235 #1177396

#1177478 #1177524 #1177730 #1177790 #1177892

#1178060 #1178145 #1178204 #1178319 #1178361

#1178362

Cross- CVE-2020-15168 CVE-2020-16846 CVE-2020-17490

CVE-2020-25592

Affected Products:

SUSE Linux Enterprise Module for SUSE Manager Server 4.1

https://www.suse.com/security/cve/CVE-2020-15168.html

https://www.suse.com/security/cve/CVE-2020-16846.html

https://www.suse.com/security/cve/CVE-2020-17490.html

https://www.suse.com/security/cve/CVE-2020-25592.html

https://bugzilla.suse.com/1144447

https://bugzilla.suse.com/1167907

https://bugzilla.suse.com/1169664

https://bugzilla.suse.com/1173199

Announcement ID: SUSE-SU-2020:3235-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.