SUSE: 2023:1830-1 moderate: SUSE Manager 4.3: Server security fixes
Summary
### This update fixes the following issues: spacewalk-java: * Version 4.3.52-1 * Add more restricted arguments to prevent HTTP API logging sensitive data (bsc#1209386, bsc#1209395) spacewalk-web: * Version 4.3.29-1 * Fix datepicker appearing behind modal edge (bsc#1209703) * Fix datepicker layout shift on Highstate pages How to apply this update: 1. Log in as root user to the SUSE Manager Server. 2. Stop the Spacewalk service: `spacewalk-service stop` 3. Apply the patch using either zypper patch or YaST Online Update. 4. Start the Spacewalk service: `spacewalk-service start` ## Recommended update for SUSE Manager Proxy and Retail Branch Server 4.3 ### This update fixes the following issues: spacewalk-web: * Version 4.3.29-1 * Fix datepicker appearing behind modal edge (bsc#1209703) * Fix datepicker layout shift on Highstate pages How to apply this update: 1. Log in as root user to the SUSE Manager Proxy or Retail Branch Server. 2. Stop the proxy service: `spacewalk-proxy stop` 3. Apply the patch using either zypper patch or YaST Online Update. 4. Start the Spacewalk service: `spacewalk-proxy start` ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Proxy 4.3 Module 4.3 zypper in -t patch SUSE-SLE-Module-SUSE-Manager-Proxy-4.3-2023-1830=1 * SUSE Manager Server 4.3 Module 4.3 zypper in -t patch SUSE-SLE-Module-SUSE-Manager-Server-4.3-2023-1830=1 ## Package List: * SUSE Manager Proxy 4.3 Module 4.3 (noarch) * spacewalk-base-minimal-config-4.3.29-150400.3.18.1 * spacewalk-base-minimal-4.3.29-150400.3.18.1 * SUSE Manager Server 4.3 Module 4.3 (noarch) * spacewalk-java-postgresql-4.3.52-150400.3.41.3 * spacewalk-base-4.3.29-150400.3.18.1 * spacewalk-java-config-4.3.52-150400.3.41.3 * spacewalk-java-lib-4.3.52-150400.3.41.3 * spacewalk-base-minimal-4.3.29-150400.3.18.1 * spacewalk-taskomatic-4.3.52-150400.3.41.3 * spacewalk-base-minimal-config-4.3.29-150400.3.18.1 * spacewalk-html-4.3.29-150400.3.18.1 * spacewalk-java-4.3.52-150400.3.41.3
References
* bsc#1209386
* bsc#1209395
* bsc#1209689
* bsc#1209703
Affected Products:
* SUSE Manager Proxy 4.3
* SUSE Manager Proxy 4.3 Module 4.3
* SUSE Manager Retail Branch Server 4.3
* SUSE Manager Server 4.3
* SUSE Manager Server 4.3 Module 4.3
An update that has four security fixes can now be installed.
## Security update for SUSE Manager Server 4.3
##
* https://bugzilla.suse.com/show_bug.cgi?id=1209386
* https://bugzilla.suse.com/show_bug.cgi?id=1209395
* https://bugzilla.suse.com/show_bug.cgi?id=1209689
* https://bugzilla.suse.com/show_bug.cgi?id=1209703
![Dist Suse](/images/distros/dist-suse.gif)