Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

SUSE: 2024:1814-1 Moderate: Client Tools Security Update

suse
Calendar Grey May 29, 2024
Dist Suse Esm H88
Standard security patch released for SUSE Manager Client Tools fixing CVE-2024-1314 alongside various bug resolutions.
* bsc#1221465 * bsc#1222155 * bsc#1222277 * bsc#1222731 * jsc#MSQA-775

Summary

## This update fixes the following issues: golang-github-prometheus-node_exporter: * Add `device_error` label for filesystem metrics. * Update rtnetlink library to fix errors during ARP metrics collection. * update to 1.7.0 (jsc#PED-7893, jsc#PED-7928): * [FEATURE] Add ZFS freebsd per dataset stats #2753 * [FEATURE] Add cpu vulnerabilities reporting from sysfs #2721 * [ENHANCEMENT] Parallelize stat calls in Linux filesystem collector #1772 * [ENHANCEMENT] Add missing linkspeeds to ethtool collector #2711 * [ENHANCEMENT] Add CPU MHz as the value for node_cpu_info metric #2778 * [ENHANCEMENT] Improve qdisc collector performance #2779 * [ENHANCEMENT] Add include and exclude filter for hwmon collector #2699 * [ENHANCEMENT] Optionally fetch ARP stats via rtnetlink instead of procfs #2777

Topics%20covered

Topics Covered

security advisory arbitrary code execution moderate severity openSUSE SUSE Manager client tools CVE-2024-1313

References

* bsc#1221465

* bsc#1222155

* bsc#1222277

* bsc#1222731

* jsc#MSQA-775

Cross-

* CVE-2024-1313

CVSS scores:

* CVE-2024-1313 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Affected Products:

* openSUSE Leap 15.3

* openSUSE Leap 15.4

* openSUSE Leap 15.5

* openSUSE Leap 15.6

* SUSE Linux Enterprise Desktop 15

* SUSE Linux Enterprise Desktop 15 SP1

* SUSE Linux Enterprise Desktop 15 SP2

* SUSE Linux Enterprise Desktop 15 SP3

* SUSE Linux Enterprise Desktop 15 SP4

* SUSE Linux Enterprise Desktop 15 SP5

* SUSE Linux Enterprise Desktop 15 SP6

* SUSE Linux Enterprise High Performance Computing 15

* SUSE Linux Enterprise High Performance Computing 15 SP1

* SUSE Linux Enterprise High Performance Computing 15 SP2

* SUSE Linux Enterprise High Performance Computing 15 SP3

Announcement ID: SUSE-SU-2024:1814-1
Rating: moderate

Topics%20covered

Topics Covered

security advisory arbitrary code execution moderate severity openSUSE SUSE Manager client tools CVE-2024-1313

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here