SUSE: 2023:1847-2 Critical: Prometheus Node Exporter Security Update
suse
June 13, 2023
The container ses/7.1/ceph/prometheus-node-exporter was updated
Summary
Advisory ID: SUSE-RU-2023:2133-1 Released: Tue May 9 13:37:10 2023 Summary: Recommended update for zlib Type: recommended Severity: moderate Advisory ID: SUSE-SU-2023:2187-1 Released: Thu May 11 18:59:16 2023 Summary: Security update for Prometheus Golang clients Type: security Severity: moderate Advisory ID: SUSE-SU-2023:2227-1 Released: Wed May 17 09:57:41 2023
References
References : 1127591 1195633 1197284 1203185 1206513 1208051 1208064 1208329
1209406 1210164 1210593 1210870 1211231 1211232 1211233 1211339
1211430 1211795 CVE-2022-27191 CVE-2022-27664 CVE-2022-46146
CVE-2023-2650 CVE-2023-28320 CVE-2023-28321 CVE-2023-28322 CVE-2023-2953
1206513
This update for zlib fixes the following issues:
- Add DFLTCC support for using inflate() with a small window (bsc#1206513)
1197284,1203185,1208051,1208064,CVE-2022-27191,CVE-2022-27664,CVE-2022-46146
This update for golang-github-prometheus-alertmanager and golang-github-prometheus-node_exporter fixes the following issues:
golang-github-prometheus-alertmanager:
- Security issues fixed:
* CVE-2022-46146: Fix authentication bypass via cache poisoning (bsc#1208051)
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Container Advisory ID : SUSE-CU-2023:1846-1
Container Tags : ses/7.1/ceph/prometheus-node-exporter:1.5.0 , ses/7.1/ceph/prometheus-node-exporter:1.5.0.3.2.442 , ses/7.1/ceph/prometheus-node-exporter:latest , ses/7.1/ceph/prometheus-node-exporter:sle15.3.pacific
Container Release : 3.2.442
Severity : important
Type : security
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!