Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

SUSE: 2021:3901-1 Moderate: Client Tools Update for DoS Threat

suse
Calendar Grey December 3, 2021
Dist Suse Esm H88
The latest Security Beta patch for SUSE Manager Client Tools introduces essential enhancements aimed at bolstering system reliability and protection.
An update that solves one vulnerability, contains four features and has 26 fixes is now available

Summary

This update fixes the following issues: salt: - Simplify "transactional_update" module to not use SSH wrapper and allow more flexible execution - Add "--no-return-event" option to salt-call to prevent sending return event back to master. - Make "state.highstate" to acts on concurrent flag. - Fix print regression for yumnotify plugin - Use dnfnotify instead yumnotify for relevant distros - Dnfnotify pkgset plugin implementation - Add rpm_vercmp python library support for version comparison - Prevent pkg plugins errors on missing cookie path (bsc#1186738) - Fix ip6_interface grain to not leak secondary IPv4 aliases (bsc#1191412) - Make "salt-api" package to require python3-cherrypy on RHEL systems - Make "tar" as required for "salt-transactional-update" package - Fix issues with salt-ssh's extra-filerefs

Topics%20covered

Topics Covered

security advisory moderate security update DoS SUSE Manager client tools CVE-2021-21996

References

#1164192 #1167586 #1168327 #1173103 #1173692

#1180650 #1181223 #1184659 #1185131 #1186287

#1186310 #1186581 #1186674 #1186738 #1187787

#1187813 #1188042 #1188170 #1188259 #1188647

#1188977 #1189040 #1190265 #1190446 #1190512

#1191412 #1191431 ECO-3212 ECO-3319 SLE-18028

SLE-18033

Cross- CVE-2021-21996

CVSS scores:

CVE-2021-21996 (SUSE): 4.2 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

Affected Products:

SUSE Manager Debian 10-CLIENT-TOOLS-BETA

https://www.suse.com/security/cve/CVE-2021-21996.html

https://bugzilla.suse.com/1164192

https://bugzilla.suse.com/1167586

https://bugzilla.suse.com/1168327

https://bugzilla.suse.com/1173103

https://bugzilla.suse.com/1173692

https://bugzilla.suse.com/1180650

https://bugzilla.suse.com/1181223

Announcement ID: SUSE-SU-2021:3901-1
Rating: moderate

Topics%20covered

Topics Covered

security advisory moderate security update DoS SUSE Manager client tools CVE-2021-21996

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here