Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

SUSE: 2024:1509-1 Important Fix For Client Tools Security Issues

suse
Calendar Grey May 6, 2024
Dist Suse Esm H88
SUSE Manager Client Tools enhancement resolves several critical vulnerabilities. Apply the newest updates for increased security.
* bsc#1008037 * bsc#1008038 * bsc#1010940 * bsc#1019021 * bsc#1038785

Summary

## This update fixes the following issues: POS_Image-Graphical7 was updated to version 0.1.1710765237.46af599: * Version 0.1.1710765237.46af599 * Moved image services to dracut-saltboot package * Use salt bundle * Version 0.1.1645440615.7f1328c * Removed deprecated kiwi functions POS_Image-JeOS7 was updated to version 0.1.1710765237.46af599: * Version 0.1.1710765237.46af599 * Moved image services to dracut-saltboot package * Use salt bundle * Version 0.1.1645440615.7f1328c * Removed deprecated kiwi functions ansible received the following fixes: * Security issues fixed: * CVE-2023-5764: Address issues where internal templating can cause unsafe variables to lose their unsafe designation (bsc#1216854)

Topics%20covered

Topics Covered

security advisory critical issue patch update SUSE software vulnerabilities client tools Security fix

References

* bsc#1008037

* bsc#1008038

* bsc#1010940

* bsc#1019021

* bsc#1038785

* bsc#1059235

* bsc#1099805

* bsc#1166389

* bsc#1171823

* bsc#1174145

* bsc#1174302

* bsc#1175993

* bsc#1177948

* bsc#1216854

* bsc#1219002

* bsc#1219912

* bsc#1221092

* bsc#1221465

* bsc#1222155

* jsc#MSQA-760

Cross-

* CVE-2016-8614

* CVE-2016-8628

* CVE-2016-8647

* CVE-2016-9587

* CVE-2017-7550

* CVE-2018-10874

* CVE-2020-10744

* CVE-2020-14330

* CVE-2020-14332

* CVE-2020-14365

* CVE-2020-1753

* CVE-2023-5764

* CVE-2023-6152

* CVE-2024-0690

* CVE-2024-1313

CVSS scores:

* CVE-2016-8614 ( NVD ): 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

* CVE-2016-8628 ( NVD ): 9.1 CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

* CVE-2016-8647 ( NVD ): 4.9 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2024:1509-1
Rating: important

Topics%20covered

Topics Covered

security advisory critical issue patch update SUSE software vulnerabilities client tools Security fix

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here