Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

SUSE: 2025:0525-1 moderate: Multiple Security Fixes for Client Tools

suse
Calendar Grey February 14, 2025
Dist Suse Esm H88
SUSE Manager Client Tools security notice addresses multiple vulnerabilities, providing patches and enhancements for numerous OS versions.
* bsc#1212641 * bsc#1219912 * bsc#1229079 * bsc#1229104 * bsc#1231024

Summary

## This update fixes the following issues: dracut-saltboot was updated to version 0.1.1728559936.c16d4fb: * Added MAC based terminal naming option (jsc#SUMA-314) golang-github-prometheus-prometheus was updated from version 2.45.6 to 2.53.3 (jsc#PED-11649): * Security issues fixed: * CVE-2024-51744: Updated golang-jwt to version 5.0 to fix bad error handling (bsc#1232970) * Highlights of other changes: * Performance: * Significant enhancements to PromQL execution speed, TSDB operations (especially querying and compaction) and remote write operations. * Default GOGC value lowered to 75 for better memory management. * Option to limit memory usage from dropped targets added. * New Features: * Experimental OpenTelemetry ingestion. * Automatic memory limit handling.

Topics%20covered

Topics Covered

security advisory security update moderate severity vulnerability threat mitigation security fixes SUSE Linux Enterprise SUSE Manager client tools Client Tools SUSE updates

References

* bsc#1212641

* bsc#1219912

* bsc#1229079

* bsc#1229104

* bsc#1231024

* bsc#1231497

* bsc#1231568

* bsc#1231759

* bsc#1232575

* bsc#1232769

* bsc#1232817

* bsc#1232970

* bsc#1233202

* bsc#1233279

* bsc#1233630

* bsc#1233660

* bsc#1234123

* bsc#1234554

* bsc#1235145

* bsc#1236301

* jsc#MSQA-914

* jsc#PED-11591

* jsc#PED-11649

* jsc#SUMA-314

Cross-

* CVE-2023-3128

* CVE-2023-6152

* CVE-2024-22037

* CVE-2024-45337

* CVE-2024-51744

* CVE-2024-6837

* CVE-2024-8118

CVSS scores:

* CVE-2023-3128 ( SUSE ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

* CVE-2023-3128 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

* CVE-2023-3128 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

* CVE-2023-6152 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

Announcement ID: SUSE-SU-2025:0525-1
Release Date: 2025-02-14T07:19:20Z
Rating: moderate

Topics%20covered

Topics Covered

security advisory security update moderate severity vulnerability threat mitigation security fixes SUSE Linux Enterprise SUSE Manager client tools Client Tools SUSE updates

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here