SUSE: 2024:1427-1 Moderate: Security Fix for SUSE Manager Client Tools
suse
April 24, 2024
* bsc#1008037 * bsc#1008038 * bsc#1010940 * bsc#1019021 * bsc#1038785
Summary
## This update fixes the following issues: POS_Image-Graphical7: * Update to version 0.1.1710765237.46af599 * Move image services to dracut-saltboot package * Use salt bundle * Update to version 0.1.1645440615.7f1328c * Remove deprecated kiwi functions POS_Image-JeOS7: * Update to version 0.1.1710765237.46af599 * Move image services to dracut-saltboot package * Use salt bundle * Update to version 0.1.1645440615.7f1328c * Remove deprecated kiwi functions ansible: * CVE-2023-5764: Address issues where internal templating can cause unsafe variables to lose their unsafe designation (bsc#1216854) * breaking_changes: assert - Nested templating may result in an inability for the conditional to be evaluated. See the porting guide for more information.
References
* bsc#1008037
* bsc#1008038
* bsc#1010940
* bsc#1019021
* bsc#1038785
* bsc#1059235
* bsc#1099805
* bsc#1166389
* bsc#1171823
* bsc#1174145
* bsc#1174302
* bsc#1175993
* bsc#1177948
* bsc#1216854
* bsc#1219002
* bsc#1219887
* bsc#1219912
* bsc#1220371
* bsc#1221092
* jsc#MSQA-759
Cross-
* CVE-2016-8647
* CVE-2016-9587
* CVE-2017-7550
* CVE-2018-10874
* CVE-2020-14365
* CVE-2023-5764
* CVE-2023-6152
* CVE-2024-0690
CVSS scores:
* CVE-2016-8647 ( NVD ): 4.9 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
* CVE-2016-8647 ( NVD ): 2.2 CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N
* CVE-2016-9587 ( NVD ): 8.1 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2017-7550 ( SUSE ): 8.5 CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
PREVIOUS
NEXT
Announcement ID: SUSE-SU-2024:1427-1
Rating: moderate
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!