Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

SUSE: 2024:0486-2 Minor: Server Utilities Patch Enhancement

suse
Calendar Grey February 15, 2024
Dist Suse Esm H88
The latest security update for SUSE Manager Client Tools enhances system security by addressing moderate severity vulnerabilities and improving overall reliability
* bsc#1192154 * bsc#1192696 * bsc#1193492 * bsc#1193686 * bsc#1200480

Summary

## This update fixes the following issues: golang-github-lusitaniae-apache_exporter: * Do not strip if SUSE Linux Enterprise 15 SP3 * Exclude debug for Red Hat Enterprise Linux >= 8 * Build with Go >= 1.20 when the OS is not Red Hat Enterprise Linux golang-github-prometheus-alertmanager: * Create position independent executables (PIE) * Add System/Monitoring group tag * Update to version 0.26.0 (jsc#PED-7353): https://github.com/prometheus/alertmanager/releases/tag/v0.26.0 * CVE-2023-40577: Fix stored XSS via the /api/v1/alerts endpoint in the Alertmanager UI (bsc#1218838) * Configuration: Fix empty list of receivers and inhibit_rules would cause the alertmanager to crash * Templating: Fixed a race condition when using the title function. It is now race-safe

Topics%20covered

Topics Covered

security advisory moderate software update security fix threat mitigation SUSE client tools

References

* bsc#1192154

* bsc#1192696

* bsc#1193492

* bsc#1193686

* bsc#1200480

* bsc#1204023

* bsc#1218838

* bsc#1218843

* bsc#1218844

* jsc#MSQA-719

* jsc#PED-7353

Cross-

* CVE-2020-7753

* CVE-2021-3807

* CVE-2021-3918

* CVE-2021-43138

* CVE-2021-43798

* CVE-2021-43815

* CVE-2022-0155

* CVE-2022-41715

* CVE-2023-40577

CVSS scores:

* CVE-2020-7753 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2021-3807 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2021-3807 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2021-3807 ( NVD ): 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2021-3918 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

* CVE-2021-3918 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Announcement ID: SUSE-SU-2024:0486-1
Rating: moderate

Topics%20covered

Topics Covered

security advisory moderate software update security fix threat mitigation SUSE client tools

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here