Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

SUSE: 2022:0751-1 Moderate: SUSE Manager Client Tools Update

suse
Calendar Grey March 8, 2022
Dist Suse Esm H88
SUSE Security Patch: Addresses 10 vulnerabilities in SUSE Manager Server, improving overall protection and releasing updated functionalities.
An update that fixes 12 vulnerabilities, contains three features is now available

Summary

This security update fixes the following issues: golang-github-prometheus-prometheus: - Upgrade to upstream version 2.32.1 (jsc#SLE-22863) + Bugfixes: * Scrape: Fix reporting metrics when sample limit is reached during the report. #9996 * Scrape: Ensure that scrape interval and scrape timeout are always set. #10023 * TSDB: Expose and fix bug in iterators' Seek() method. #10030 - Upgrade to upstream version 2.32.0 + Change: * remote-write: Change default max retry time from 100ms to 5 seconds. #9634 + Features: * Agent: New mode of operation optimized for remote-write only scenarios, without local storage. * Promtool: Add promtool check service-discovery command. #8970 + Enhancements: * Promtool: Improve test output. #8064 * Promtool: Use kahan summation for better numerical stability.

Topics%20covered

Topics Covered

security advisory moderate update vulnerability SUSE package management tools

References

#1097531 #1181400 #1190462 #1193357 #1194363

#1194873 #1195625 #1195726 #1195727 #1195728

SLE-22863 SLE-23422 SLE-23439

Cross- CVE-2021-36222 CVE-2021-3711 CVE-2021-39226

CVE-2021-41174 CVE-2021-41244 CVE-2021-43798

CVE-2021-43813 CVE-2021-43815 CVE-2022-21673

CVE-2022-21702 CVE-2022-21703 CVE-2022-21713

CVSS scores:

CVE-2021-36222 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVE-2021-36222 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVE-2021-3711 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVE-2021-3711 (SUSE): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVE-2021-39226 (NVD) : 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CVE-2021-39226 (SUSE): 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Announcement ID: SUSE-SU-2022:0751-1
Rating: moderate

Topics%20covered

Topics Covered

security advisory moderate update vulnerability SUSE package management tools

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here