SUSE Container Update Advisory: suse/manager/5.0/x86_64/server ----------------------------------------------------------------- Container Advisory ID : SUSE-CU-2024:4396-1 Container Tags : suse/manager/5.0/x86_64/server:5.0.1 , suse/manager/5.0/x86_64/server:5.0.1.7.5.2 , suse/manager/5.0/x86_64/server:latest Container Release : 7.5.2 Severity : moderate Type : security References : 1146701 1211899 1217248 1219450 1219645 1222684 1223312 1223988 1224004 1224209 1225619 1225960 1226313 1226439 1226461 1226491 1226497 1226728 1226917 1227133 1227406 1227526 1227599 1228036 1228101 1228198 1228286 1228545 1229339 1229476 1229855 1229930 1229931 1229932 CVE-2024-45490 CVE-2024-45491 CVE-2024-45492 ----------------------------------------------------------------- The container suse/manager/5.0/x86_64/server was updated. The following patches have been included in this update: ----------------------------------------------------------------- Advisory ID: SUSE-SU-2024:3216-1 Released: Thu Sep 12 13:05:20 2024 Summary: Security update for expat Type: security Severity: moderate References: 1229930,1229931,1229932,CVE-2024-45490,CVE-2024-45491,CVE-2024-45492 This update for expat fixes the following issues: - CVE-2024-45492: integer overflow in function nextScaffoldPart. (bsc#1229932) - CVE-2024-45491: integer overflow in dtdCopy. (bsc#1229931) - CVE-2024-45490: negative length for XML_ParseBuffer not rejected. (bsc#1229930) ----------------------------------------------------------------- Advisory ID: SUSE-RU-2024:3235-1 Released: Fri Sep 13 08:50:24 2024 Summary: Recommended update for grub2 Type: recommended Severity: moderate References: 1226497 This update for grub2 fixes the following issues: - Fix failure in bli module (bsc#1226497) ----------------------------------------------------------------- Advisory ID: SUSE-RU-2024:3239-1 Released: Fri Sep 13 12:00:58 2024 Summary: Recommended update for util-linux Type: recommended Severity: moderate References: 1229476 This update for util-linux fixes the following issue: - Skip aarch64 decode path for rest of the architectures (bsc#1229476). ----------------------------------------------------------------- Advisory ID: SUSE-RU-2024:3263-1 Released: Tue Sep 17 07:38:48 2024 Summary: Recommended update for python3-dmidecode Type: recommended Severity: moderate References: 1229855 This update for python3-dmidecode fixes the following issues: - python3-dmidecode was updated to version 3.12.3 (bsc#1229855): * Added support for SMBIOS3.3.0 ----------------------------------------------------------------- Advisory ID: SUSE-Manager-5.0-2024-3265 Released: Tue Sep 17 09:41:47 2024 Summary: Maintenance update for SUSE Manager 5.0: Server, Proxy and Retail Branch Server Type: recommended Severity: moderate References: 1146701,1211899,1217248,1219450,1219645,1223312,1223988,1224004,1224209,1225619,1225960,1226313,1226439,1226461,1226491,1226728,1226917,1227133,1227406,1227526,1227599,1228036,1228101,1228198,1228286,1228545,1229339 Maintenance update for SUSE Manager 5.0: Server, Proxy and Retail Branch Server This is a codestream only update ----------------------------------------------------------------- Advisory ID: SUSE-RU-2024:3287-1 Released: Tue Sep 17 09:47:47 2024 Summary: Recommended update for salt Type: recommended Severity: moderate References: 1222684 This update for salt fixes the following issues: - Fix rich rule comparison in firewalld module (bsc#1222684) - test_vultrpy: adjust test expectation to prevent failure after Debian 10 EOL - Make auth.pam more robust with Salt Bundle and fix tests - Fix performance of user.list_groups with many remote groups - Fix 'status.diskusage' function and exclude some tests for Salt Bundle - Skip certain tests if necessary for some OSes and set flaky ones - Add a timer to delete old env post update for venv-minion - Several fixes for tests to avoid errors and failures in some OSes ----------------------------------------------------------------- Advisory ID: SUSE-RU-2024:3290-1 Released: Tue Sep 17 15:24:09 2024 Summary: Recommended update for python-netaddr Type: recommended Severity: moderate References: This update for python-netaddr fixes the following issue: New python packages: - python311-netaddr The following package changes have been done: - libuuid1-2.39.3-150600.4.12.2 updated - libexpat1-2.4.4-150400.3.22.1 updated - libmount1-2.39.3-150600.4.12.2 updated - libsmartcols1-2.39.3-150600.4.12.2 updated - libblkid1-2.39.3-150600.4.12.2 updated - grafana-formula-0.11.0-150600.3.3.25 updated - libfdisk1-2.39.3-150600.4.12.2 updated - util-linux-2.39.3-150600.4.12.2 updated - release-notes-susemanager-5.0.1-150600.11.11.1 updated - susemanager-schema-utility-5.0.11-150600.3.3.29 updated - util-linux-systemd-2.39.3-150600.4.12.2 updated - uyuni-config-modules-5.0.10-150600.3.3.21 updated - libmodulemd2-2.13.0-150400.3.3.3 updated - susemanager-docs_en-5.0-150600.11.3.23 updated - spacewalk-java-lib-5.0.12-150600.3.3.30 updated - susemanager-docs_en-pdf-5.0-150600.11.3.23 updated - susemanager-schema-5.0.11-150600.3.3.29 updated - susemanager-sync-data-5.0.6-150600.3.3.25 updated - grub2-2.12-150600.8.6.1 updated - grub2-i386-pc-2.12-150600.8.6.1 updated - typelib-1_0-Modulemd-2_0-2.13.0-150400.3.3.3 updated - susemanager-build-keys-15.5.1-150600.5.3.2 updated - grub2-x86_64-efi-2.12-150600.8.6.1 updated - inter-server-sync-0.3.5-150600.3.3.29 updated - spacecmd-5.0.9-150600.4.3.25 updated - python3-dmidecode-3.12.3-150400.21.2 updated - spacewalk-backend-sql-postgresql-5.0.9-150600.4.3.33 updated - python3-libmodulemd-2.13.0-150400.3.3.3 updated - spacewalk-base-minimal-5.0.12-150600.3.3.34 updated - susemanager-build-keys-web-15.5.1-150600.5.3.2 updated - spacewalk-config-5.0.4-150600.3.3.25 updated - spacewalk-base-minimal-config-5.0.12-150600.3.3.34 updated - byte-buddy-1.14.16-150600.3.3.16 updated - python3-rhnlib-5.0.4-150600.4.3.5 updated - spacewalk-backend-5.0.9-150600.4.3.33 updated - python3-spacewalk-client-tools-5.0.7-150600.4.3.31 updated - spacewalk-client-tools-5.0.7-150600.4.3.31 updated - spacewalk-base-5.0.12-150600.3.3.34 updated - python3-salt-3006.0-150500.4.41.2 updated - salt-3006.0-150500.4.41.2 updated - spacewalk-backend-sql-5.0.9-150600.4.3.33 updated - python3-spacewalk-certs-tools-5.0.7-150600.3.3.25 updated - spacewalk-certs-tools-5.0.7-150600.3.3.25 updated - spacewalk-admin-5.0.8-150600.3.3.24 updated - salt-master-3006.0-150500.4.41.2 updated - cobbler-3.3.3-150600.5.3.29 updated - spacewalk-backend-server-5.0.9-150600.4.3.33 updated - susemanager-sls-5.0.10-150600.3.3.21 updated - spacewalk-java-postgresql-5.0.12-150600.3.3.30 updated - spacewalk-java-config-5.0.12-150600.3.3.30 updated - salt-api-3006.0-150500.4.41.2 updated - spacewalk-backend-xmlrpc-5.0.9-150600.4.3.33 updated - spacewalk-backend-xml-export-libs-5.0.9-150600.4.3.33 updated - spacewalk-backend-package-push-server-5.0.9-150600.4.3.33 updated - spacewalk-backend-iss-5.0.9-150600.4.3.33 updated - spacewalk-backend-app-5.0.9-150600.4.3.33 updated - spacewalk-html-5.0.12-150600.3.3.34 updated - spacewalk-taskomatic-5.0.12-150600.3.3.30 updated - spacewalk-java-5.0.12-150600.3.3.30 updated - spacewalk-backend-iss-export-5.0.9-150600.4.3.33 updated - susemanager-tools-5.0.9-150600.3.3.23 updated - spacewalk-backend-tools-5.0.9-150600.4.3.33 updated - susemanager-5.0.9-150600.3.3.23 updated - byte-buddy-dep-1.11.12-150600.1.11 removed