Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

SUSE: 2022:3170-1 Moderate: Fix for Client Tools PAM Authentication Issue

suse
Calendar Grey September 8, 2022
Dist Suse Esm H88
SUSE Security Update for Database Services tackles a significant vulnerability and provides upgrades along with performance improvements.
An update that solves one vulnerability, contains one feature and has 10 fixes is now available

Summary

This update fixes the following issues: salt: - Put missing dpkgnotify pkgset beacon plugin to the salt-minion package (bsc#1202259) - Add support for gpgautoimport in zypperpkg module - Update Salt to work with Jinja >= and <= 3.1.0 (bsc#1198744) - Fix salt.states.file.managed() for follow_symlinks=True and test=True (bsc#1199372) - Make Salt 3004 compatible with pyzmq >= 23.0.0 (bsc#1201082) - Add support for name, pkgs and diff_attr parameters to upgrade function for zypper and yum (bsc#1198489) - Fix ownership of salt thin directory when using the Salt Bundle - Set default target for pip from VENV_PIP_TARGET environment variable - Normalize package names once with pkg.installed/removed using yum (bsc#1195895) - Save log to logfile with docker.build - Use Salt Bundle in dockermod

Topics%20covered

Topics Covered

security advisory moderate update vulnerability suse manager client tools pam auth

References

#1195895 #1197288 #1198489 #1198744 #1199372

#1200163 #1200566 #1200591 #1201003 #1201082

#1202259 ECO-3319

Cross- CVE-2022-22967

CVSS scores:

CVE-2022-22967 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVE-2022-22967 (SUSE): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Products:

SUSE Manager Debian 10-CLIENT-TOOLS

https://www.suse.com/security/cve/CVE-2022-22967.html

https://bugzilla.suse.com/1195895

https://bugzilla.suse.com/1197288

https://bugzilla.suse.com/1198489

https://bugzilla.suse.com/1198744

https://bugzilla.suse.com/1199372

https://bugzilla.suse.com/1200163

https://bugzilla.suse.com/1200566

https://bugzilla.suse.com/1200591

https://bugzilla.suse.com/1201003

https://bugzilla.suse.com/1201082

Announcement ID: SUSE-SU-2022:3170-1
Rating: moderate

Topics%20covered

Topics Covered

security advisory moderate update vulnerability suse manager client tools pam auth

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here