openSUSE Updates
Threads by month
- ----- 2024 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2017 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2016 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2015 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2014 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2013 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2012 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2011 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2010 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
September 2024
- 3 participants
- 338 discussions
SUSE-SU-2024:3289-1: important: Security update for gstreamer-plugins-bad, libvpl
by OPENSUSE-UPDATES 17 Sep '24
by OPENSUSE-UPDATES 17 Sep '24
17 Sep '24
# Security update for gstreamer-plugins-bad, libvpl
Announcement ID: SUSE-SU-2024:3289-1
Rating: important
References:
* bsc#1218534
* bsc#1219494
* bsc#1223263
* bsc#1226892
* bsc#1226897
* bsc#1226898
* bsc#1226899
* bsc#1226900
* bsc#1226901
* jsc#PED-10024
Cross-References:
* CVE-2023-22656
* CVE-2023-45221
* CVE-2023-47169
* CVE-2023-47282
* CVE-2023-48368
* CVE-2023-50186
CVSS scores:
* CVE-2023-22656 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
* CVE-2023-45221 ( SUSE ): 4.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
* CVE-2023-47169 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
* CVE-2023-47282 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L
* CVE-2023-48368 ( SUSE ): 5.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H
* CVE-2023-50186 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products:
* Basesystem Module 15-SP5
* Desktop Applications Module 15-SP5
* Desktop Applications Module 15-SP6
* openSUSE Leap 15.5
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise Desktop 15 SP6
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Package Hub 15 15-SP5
An update that solves six vulnerabilities, contains one feature and has three
security fixes can now be installed.
## Description:
This update for gstreamer-plugins-bad, libvpl fixes the following issues:
* Dropped support for libmfx to fix the following CVEs:
* libmfx: improper input validation (CVE-2023-48368, bsc#1226897)
* libmfx: improper buffer restrictions (CVE-2023-45221, bsc#1226898)
* libmfx: out-of-bounds read (CVE-2023-22656, bsc#1226899)
* libmfx: out-of-bounds write (CVE-2023-47282, bsc#1226900)
* libmfx: improper buffer restrictions (CVE-2023-47169, bsc#1226901)
The libmfx dependency is replaced by libvpl.
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Package Hub 15 15-SP5
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-3289=1
* openSUSE Leap 15.5
zypper in -t patch SUSE-2024-3289=1 openSUSE-SLE-15.5-2024-3289=1
* Basesystem Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-3289=1
* Desktop Applications Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP5-2024-3289=1
* Desktop Applications Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP6-2024-3289=1
## Package List:
* SUSE Package Hub 15 15-SP5 (aarch64 ppc64le s390x x86_64)
* libgsttranscoder-1_0-0-debuginfo-1.22.0-150500.3.25.2
* gstreamer-plugins-bad-debugsource-1.22.0-150500.3.25.2
* gstreamer-plugins-bad-debuginfo-1.22.0-150500.3.25.2
* libgsttranscoder-1_0-0-1.22.0-150500.3.25.2
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586)
* gstreamer-plugins-bad-chromaprint-debuginfo-1.22.0-150500.3.25.2
* libgstcodecparsers-1_0-0-1.22.0-150500.3.25.2
* libgstvulkan-1_0-0-debuginfo-1.22.0-150500.3.25.2
* libgstadaptivedemux-1_0-0-1.22.0-150500.3.25.2
* libgsturidownloader-1_0-0-debuginfo-1.22.0-150500.3.25.2
* typelib-1_0-GstVa-1_0-1.22.0-150500.3.25.2
* libgsturidownloader-1_0-0-1.22.0-150500.3.25.2
* libgstwebrtc-1_0-0-debuginfo-1.22.0-150500.3.25.2
* libgstbadaudio-1_0-0-debuginfo-1.22.0-150500.3.25.2
* gstreamer-plugins-bad-chromaprint-1.22.0-150500.3.25.2
* libgstcodecs-1_0-0-1.22.0-150500.3.25.2
* libgstbadaudio-1_0-0-1.22.0-150500.3.25.2
* libgstsctp-1_0-0-debuginfo-1.22.0-150500.3.25.2
* libgstplay-1_0-0-1.22.0-150500.3.25.2
* libgstplay-1_0-0-debuginfo-1.22.0-150500.3.25.2
* typelib-1_0-GstCuda-1_0-1.22.0-150500.3.25.2
* typelib-1_0-GstVulkanWayland-1_0-1.22.0-150500.3.25.2
* libgsttranscoder-1_0-0-debuginfo-1.22.0-150500.3.25.2
* typelib-1_0-GstBadAudio-1_0-1.22.0-150500.3.25.2
* libgstcuda-1_0-0-1.22.0-150500.3.25.2
* libgstmpegts-1_0-0-debuginfo-1.22.0-150500.3.25.2
* libgstinsertbin-1_0-0-1.22.0-150500.3.25.2
* libgstphotography-1_0-0-1.22.0-150500.3.25.2
* libgstbasecamerabinsrc-1_0-0-debuginfo-1.22.0-150500.3.25.2
* typelib-1_0-CudaGst-1_0-1.22.0-150500.3.25.2
* libgstmpegts-1_0-0-1.22.0-150500.3.25.2
* typelib-1_0-GstInsertBin-1_0-1.22.0-150500.3.25.2
* libgstinsertbin-1_0-0-debuginfo-1.22.0-150500.3.25.2
* gstreamer-transcoder-debuginfo-1.22.0-150500.3.25.2
* typelib-1_0-GstPlay-1_0-1.22.0-150500.3.25.2
* typelib-1_0-GstVulkanXCB-1_0-1.22.0-150500.3.25.2
* libgstisoff-1_0-0-debuginfo-1.22.0-150500.3.25.2
* gstreamer-plugins-bad-1.22.0-150500.3.25.2
* gstreamer-transcoder-1.22.0-150500.3.25.2
* libgstplayer-1_0-0-debuginfo-1.22.0-150500.3.25.2
* libgstva-1_0-0-debuginfo-1.22.0-150500.3.25.2
* typelib-1_0-GstCodecs-1_0-1.22.0-150500.3.25.2
* typelib-1_0-GstTranscoder-1_0-1.22.0-150500.3.25.2
* libgstsctp-1_0-0-1.22.0-150500.3.25.2
* typelib-1_0-GstWebRTC-1_0-1.22.0-150500.3.25.2
* libgstcodecs-1_0-0-debuginfo-1.22.0-150500.3.25.2
* libgstphotography-1_0-0-debuginfo-1.22.0-150500.3.25.2
* libgstwebrtcnice-1_0-0-1.22.0-150500.3.25.2
* libgsttranscoder-1_0-0-1.22.0-150500.3.25.2
* typelib-1_0-GstVulkan-1_0-1.22.0-150500.3.25.2
* gstreamer-plugins-bad-debuginfo-1.22.0-150500.3.25.2
* libgstwayland-1_0-0-1.22.0-150500.3.25.2
* libgstadaptivedemux-1_0-0-debuginfo-1.22.0-150500.3.25.2
* libgstisoff-1_0-0-1.22.0-150500.3.25.2
* libgstcodecparsers-1_0-0-debuginfo-1.22.0-150500.3.25.2
* libgstvulkan-1_0-0-1.22.0-150500.3.25.2
* libgstwebrtcnice-1_0-0-debuginfo-1.22.0-150500.3.25.2
* typelib-1_0-GstMpegts-1_0-1.22.0-150500.3.25.2
* libgstwayland-1_0-0-debuginfo-1.22.0-150500.3.25.2
* gstreamer-plugins-bad-debugsource-1.22.0-150500.3.25.2
* libgstwebrtc-1_0-0-1.22.0-150500.3.25.2
* libgstbasecamerabinsrc-1_0-0-1.22.0-150500.3.25.2
* gstreamer-transcoder-devel-1.22.0-150500.3.25.2
* typelib-1_0-GstPlayer-1_0-1.22.0-150500.3.25.2
* gstreamer-plugins-bad-devel-1.22.0-150500.3.25.2
* libgstva-1_0-0-1.22.0-150500.3.25.2
* libgstplayer-1_0-0-1.22.0-150500.3.25.2
* libgstcuda-1_0-0-debuginfo-1.22.0-150500.3.25.2
* openSUSE Leap 15.5 (x86_64)
* libgstisoff-1_0-0-32bit-1.22.0-150500.3.25.2
* libgstcodecparsers-1_0-0-32bit-1.22.0-150500.3.25.2
* libgstwebrtc-1_0-0-32bit-debuginfo-1.22.0-150500.3.25.2
* libgstbasecamerabinsrc-1_0-0-32bit-debuginfo-1.22.0-150500.3.25.2
* libgstcodecs-1_0-0-32bit-debuginfo-1.22.0-150500.3.25.2
* gstreamer-plugins-bad-32bit-1.22.0-150500.3.25.2
* libgstwayland-1_0-0-32bit-debuginfo-1.22.0-150500.3.25.2
* libgstwayland-1_0-0-32bit-1.22.0-150500.3.25.2
* libgstinsertbin-1_0-0-32bit-1.22.0-150500.3.25.2
* libvpl-debugsource-2023.0.0-150500.3.2.1
* libgstplayer-1_0-0-32bit-debuginfo-1.22.0-150500.3.25.2
* libgstvulkan-1_0-0-32bit-debuginfo-1.22.0-150500.3.25.2
* libvpl-devel-2023.0.0-150500.3.2.1
* gstreamer-plugins-bad-chromaprint-32bit-1.22.0-150500.3.25.2
* libgstbasecamerabinsrc-1_0-0-32bit-1.22.0-150500.3.25.2
* libgstisoff-1_0-0-32bit-debuginfo-1.22.0-150500.3.25.2
* libgstsctp-1_0-0-32bit-debuginfo-1.22.0-150500.3.25.2
* libgstvulkan-1_0-0-32bit-1.22.0-150500.3.25.2
* libvpl2-debuginfo-2023.0.0-150500.3.2.1
* libgstwebrtcnice-1_0-0-32bit-debuginfo-1.22.0-150500.3.25.2
* libgstwebrtcnice-1_0-0-32bit-1.22.0-150500.3.25.2
* libgstphotography-1_0-0-32bit-1.22.0-150500.3.25.2
* libgstplay-1_0-0-32bit-1.22.0-150500.3.25.2
* libgstadaptivedemux-1_0-0-32bit-1.22.0-150500.3.25.2
* libgstva-1_0-0-32bit-debuginfo-1.22.0-150500.3.25.2
* libgstcuda-1_0-0-32bit-debuginfo-1.22.0-150500.3.25.2
* libgstadaptivedemux-1_0-0-32bit-debuginfo-1.22.0-150500.3.25.2
* libgstcuda-1_0-0-32bit-1.22.0-150500.3.25.2
* libgstsctp-1_0-0-32bit-1.22.0-150500.3.25.2
* libgstbadaudio-1_0-0-32bit-1.22.0-150500.3.25.2
* libgstwebrtc-1_0-0-32bit-1.22.0-150500.3.25.2
* libvpl-2023.0.0-150500.3.2.1
* libvpl2-2023.0.0-150500.3.2.1
* libgstcodecs-1_0-0-32bit-1.22.0-150500.3.25.2
* libgstmpegts-1_0-0-32bit-1.22.0-150500.3.25.2
* gstreamer-plugins-bad-chromaprint-32bit-debuginfo-1.22.0-150500.3.25.2
* libgstplayer-1_0-0-32bit-1.22.0-150500.3.25.2
* libgstcodecparsers-1_0-0-32bit-debuginfo-1.22.0-150500.3.25.2
* libgstva-1_0-0-32bit-1.22.0-150500.3.25.2
* libgstmpegts-1_0-0-32bit-debuginfo-1.22.0-150500.3.25.2
* libgsturidownloader-1_0-0-32bit-1.22.0-150500.3.25.2
* libgstbadaudio-1_0-0-32bit-debuginfo-1.22.0-150500.3.25.2
* libgstphotography-1_0-0-32bit-debuginfo-1.22.0-150500.3.25.2
* libgstplay-1_0-0-32bit-debuginfo-1.22.0-150500.3.25.2
* gstreamer-plugins-bad-32bit-debuginfo-1.22.0-150500.3.25.2
* libgsturidownloader-1_0-0-32bit-debuginfo-1.22.0-150500.3.25.2
* libgstinsertbin-1_0-0-32bit-debuginfo-1.22.0-150500.3.25.2
* openSUSE Leap 15.5 (noarch)
* gstreamer-plugins-bad-lang-1.22.0-150500.3.25.2
* openSUSE Leap 15.5 (aarch64_ilp32)
* libgstinsertbin-1_0-0-64bit-debuginfo-1.22.0-150500.3.25.2
* libgstplay-1_0-0-64bit-debuginfo-1.22.0-150500.3.25.2
* libgstwayland-1_0-0-64bit-debuginfo-1.22.0-150500.3.25.2
* libgstbadaudio-1_0-0-64bit-1.22.0-150500.3.25.2
* libgstmpegts-1_0-0-64bit-1.22.0-150500.3.25.2
* libgstbasecamerabinsrc-1_0-0-64bit-1.22.0-150500.3.25.2
* libgstphotography-1_0-0-64bit-debuginfo-1.22.0-150500.3.25.2
* libgstplayer-1_0-0-64bit-1.22.0-150500.3.25.2
* libgstcuda-1_0-0-64bit-1.22.0-150500.3.25.2
* libgstbasecamerabinsrc-1_0-0-64bit-debuginfo-1.22.0-150500.3.25.2
* libgstphotography-1_0-0-64bit-1.22.0-150500.3.25.2
* libgstmpegts-1_0-0-64bit-debuginfo-1.22.0-150500.3.25.2
* libgstva-1_0-0-64bit-1.22.0-150500.3.25.2
* libgstadaptivedemux-1_0-0-64bit-debuginfo-1.22.0-150500.3.25.2
* libgstva-1_0-0-64bit-debuginfo-1.22.0-150500.3.25.2
* libgstcodecs-1_0-0-64bit-debuginfo-1.22.0-150500.3.25.2
* libgstsctp-1_0-0-64bit-1.22.0-150500.3.25.2
* libgstisoff-1_0-0-64bit-debuginfo-1.22.0-150500.3.25.2
* libgstplayer-1_0-0-64bit-debuginfo-1.22.0-150500.3.25.2
* libgsturidownloader-1_0-0-64bit-1.22.0-150500.3.25.2
* libgstcodecs-1_0-0-64bit-1.22.0-150500.3.25.2
* libgstwebrtcnice-1_0-0-64bit-1.22.0-150500.3.25.2
* libgstcodecparsers-1_0-0-64bit-debuginfo-1.22.0-150500.3.25.2
* gstreamer-plugins-bad-chromaprint-64bit-1.22.0-150500.3.25.2
* libgstbadaudio-1_0-0-64bit-debuginfo-1.22.0-150500.3.25.2
* libgstvulkan-1_0-0-64bit-debuginfo-1.22.0-150500.3.25.2
* libgsturidownloader-1_0-0-64bit-debuginfo-1.22.0-150500.3.25.2
* libgstisoff-1_0-0-64bit-1.22.0-150500.3.25.2
* libgstsctp-1_0-0-64bit-debuginfo-1.22.0-150500.3.25.2
* libgstwebrtc-1_0-0-64bit-debuginfo-1.22.0-150500.3.25.2
* libgstcodecparsers-1_0-0-64bit-1.22.0-150500.3.25.2
* libgstwayland-1_0-0-64bit-1.22.0-150500.3.25.2
* gstreamer-plugins-bad-64bit-debuginfo-1.22.0-150500.3.25.2
* libgstwebrtc-1_0-0-64bit-1.22.0-150500.3.25.2
* libgstinsertbin-1_0-0-64bit-1.22.0-150500.3.25.2
* gstreamer-plugins-bad-64bit-1.22.0-150500.3.25.2
* libgstplay-1_0-0-64bit-1.22.0-150500.3.25.2
* libgstadaptivedemux-1_0-0-64bit-1.22.0-150500.3.25.2
* libgstcuda-1_0-0-64bit-debuginfo-1.22.0-150500.3.25.2
* libgstvulkan-1_0-0-64bit-1.22.0-150500.3.25.2
* gstreamer-plugins-bad-chromaprint-64bit-debuginfo-1.22.0-150500.3.25.2
* libgstwebrtcnice-1_0-0-64bit-debuginfo-1.22.0-150500.3.25.2
* Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* libgstplayer-1_0-0-debuginfo-1.22.0-150500.3.25.2
* libgstphotography-1_0-0-1.22.0-150500.3.25.2
* gstreamer-plugins-bad-debugsource-1.22.0-150500.3.25.2
* libgstphotography-1_0-0-debuginfo-1.22.0-150500.3.25.2
* gstreamer-plugins-bad-debuginfo-1.22.0-150500.3.25.2
* libgstplayer-1_0-0-1.22.0-150500.3.25.2
* libgstplay-1_0-0-1.22.0-150500.3.25.2
* libgstplay-1_0-0-debuginfo-1.22.0-150500.3.25.2
* Desktop Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* gstreamer-plugins-bad-chromaprint-debuginfo-1.22.0-150500.3.25.2
* libgstcodecparsers-1_0-0-1.22.0-150500.3.25.2
* libgstvulkan-1_0-0-debuginfo-1.22.0-150500.3.25.2
* libgstadaptivedemux-1_0-0-1.22.0-150500.3.25.2
* libgsturidownloader-1_0-0-debuginfo-1.22.0-150500.3.25.2
* typelib-1_0-GstVa-1_0-1.22.0-150500.3.25.2
* libgsturidownloader-1_0-0-1.22.0-150500.3.25.2
* libgstwebrtc-1_0-0-debuginfo-1.22.0-150500.3.25.2
* libgstbadaudio-1_0-0-debuginfo-1.22.0-150500.3.25.2
* gstreamer-plugins-bad-chromaprint-1.22.0-150500.3.25.2
* libgstcodecs-1_0-0-1.22.0-150500.3.25.2
* libgstbadaudio-1_0-0-1.22.0-150500.3.25.2
* libgstsctp-1_0-0-debuginfo-1.22.0-150500.3.25.2
* typelib-1_0-GstCuda-1_0-1.22.0-150500.3.25.2
* libgsttranscoder-1_0-0-debuginfo-1.22.0-150500.3.25.2
* typelib-1_0-GstBadAudio-1_0-1.22.0-150500.3.25.2
* libgstcuda-1_0-0-1.22.0-150500.3.25.2
* libgstmpegts-1_0-0-debuginfo-1.22.0-150500.3.25.2
* libgstinsertbin-1_0-0-1.22.0-150500.3.25.2
* libgstbasecamerabinsrc-1_0-0-debuginfo-1.22.0-150500.3.25.2
* typelib-1_0-CudaGst-1_0-1.22.0-150500.3.25.2
* libgstmpegts-1_0-0-1.22.0-150500.3.25.2
* typelib-1_0-GstInsertBin-1_0-1.22.0-150500.3.25.2
* libgstinsertbin-1_0-0-debuginfo-1.22.0-150500.3.25.2
* typelib-1_0-GstPlay-1_0-1.22.0-150500.3.25.2
* libgstisoff-1_0-0-debuginfo-1.22.0-150500.3.25.2
* gstreamer-plugins-bad-1.22.0-150500.3.25.2
* libgstva-1_0-0-debuginfo-1.22.0-150500.3.25.2
* typelib-1_0-GstCodecs-1_0-1.22.0-150500.3.25.2
* typelib-1_0-GstWebRTC-1_0-1.22.0-150500.3.25.2
* libgstsctp-1_0-0-1.22.0-150500.3.25.2
* libgstcodecs-1_0-0-debuginfo-1.22.0-150500.3.25.2
* libgstwebrtcnice-1_0-0-1.22.0-150500.3.25.2
* libgsttranscoder-1_0-0-1.22.0-150500.3.25.2
* gstreamer-plugins-bad-debuginfo-1.22.0-150500.3.25.2
* libgstwayland-1_0-0-1.22.0-150500.3.25.2
* libgstisoff-1_0-0-1.22.0-150500.3.25.2
* libgstadaptivedemux-1_0-0-debuginfo-1.22.0-150500.3.25.2
* libgstcodecparsers-1_0-0-debuginfo-1.22.0-150500.3.25.2
* libgstvulkan-1_0-0-1.22.0-150500.3.25.2
* libgstwebrtcnice-1_0-0-debuginfo-1.22.0-150500.3.25.2
* typelib-1_0-GstMpegts-1_0-1.22.0-150500.3.25.2
* libgstwayland-1_0-0-debuginfo-1.22.0-150500.3.25.2
* gstreamer-plugins-bad-debugsource-1.22.0-150500.3.25.2
* libgstwebrtc-1_0-0-1.22.0-150500.3.25.2
* libgstbasecamerabinsrc-1_0-0-1.22.0-150500.3.25.2
* typelib-1_0-GstPlayer-1_0-1.22.0-150500.3.25.2
* gstreamer-plugins-bad-devel-1.22.0-150500.3.25.2
* libgstva-1_0-0-1.22.0-150500.3.25.2
* libgstcuda-1_0-0-debuginfo-1.22.0-150500.3.25.2
* Desktop Applications Module 15-SP5 (noarch)
* gstreamer-plugins-bad-lang-1.22.0-150500.3.25.2
* Desktop Applications Module 15-SP5 (x86_64)
* libvpl-debugsource-2023.0.0-150500.3.2.1
* libvpl-devel-2023.0.0-150500.3.2.1
* libvpl-2023.0.0-150500.3.2.1
* libvpl2-2023.0.0-150500.3.2.1
* libvpl2-debuginfo-2023.0.0-150500.3.2.1
* Desktop Applications Module 15-SP6 (x86_64)
* libvpl-debugsource-2023.0.0-150500.3.2.1
* libvpl-devel-2023.0.0-150500.3.2.1
* libvpl-2023.0.0-150500.3.2.1
* libvpl2-2023.0.0-150500.3.2.1
* libvpl2-debuginfo-2023.0.0-150500.3.2.1
## References:
* https://www.suse.com/security/cve/CVE-2023-22656.html
* https://www.suse.com/security/cve/CVE-2023-45221.html
* https://www.suse.com/security/cve/CVE-2023-47169.html
* https://www.suse.com/security/cve/CVE-2023-47282.html
* https://www.suse.com/security/cve/CVE-2023-48368.html
* https://www.suse.com/security/cve/CVE-2023-50186.html
* https://bugzilla.suse.com/show_bug.cgi?id=1218534
* https://bugzilla.suse.com/show_bug.cgi?id=1219494
* https://bugzilla.suse.com/show_bug.cgi?id=1223263
* https://bugzilla.suse.com/show_bug.cgi?id=1226892
* https://bugzilla.suse.com/show_bug.cgi?id=1226897
* https://bugzilla.suse.com/show_bug.cgi?id=1226898
* https://bugzilla.suse.com/show_bug.cgi?id=1226899
* https://bugzilla.suse.com/show_bug.cgi?id=1226900
* https://bugzilla.suse.com/show_bug.cgi?id=1226901
* https://jira.suse.com/browse/PED-10024
1
0
17 Sep '24
# Recommended update for python-netaddr
Announcement ID: SUSE-RU-2024:3290-1
Rating: moderate
References:
* jsc#PED-6218
Affected Products:
* Basesystem Module 15-SP5
* Basesystem Module 15-SP6
* openSUSE Leap 15.4
* openSUSE Leap 15.5
* openSUSE Leap 15.6
* Public Cloud Module 15-SP4
* Python 3 Module 15-SP5
* Python 3 Module 15-SP6
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise Desktop 15 SP6
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Manager Proxy 4.3
* SUSE Manager Retail Branch Server 4.3
* SUSE Manager Server 4.3
* SUSE Manager Server 4.3 Module 4.3
* SUSE Package Hub 15 15-SP5
* SUSE Package Hub 15 15-SP6
An update that contains one feature can now be installed.
## Description:
This update for python-netaddr fixes the following issue:
New python packages: \- python311-netaddr
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.4
zypper in -t patch SUSE-2024-3290=1
* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-3290=1
* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2024-3290=1
* Basesystem Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-3290=1
* Basesystem Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-3290=1
* SUSE Package Hub 15 15-SP5
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-3290=1
* SUSE Package Hub 15 15-SP6
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-3290=1
* Public Cloud Module 15-SP4
zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP4-2024-3290=1
* Python 3 Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Python3-15-SP5-2024-3290=1
* Python 3 Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Python3-15-SP6-2024-3290=1
* SUSE Manager Server 4.3 Module 4.3
zypper in -t patch SUSE-SLE-Module-SUSE-Manager-Server-4.3-2024-3290=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-3290=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-3290=1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-3290=1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-3290=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-3290=1
* SUSE Manager Proxy 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-3290=1
* SUSE Manager Retail Branch Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-
Server-4.3-2024-3290=1
* SUSE Manager Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-3290=1
## Package List:
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* python311-pycairo-devel-1.23.0-150400.3.5.1
* modulemd-validator-2.13.0-150400.3.3.3
* python311-gobject-cairo-debuginfo-3.44.1-150400.3.9.2
* python311-gobject-devel-3.44.1-150400.3.9.2
* python311-pycairo-1.23.0-150400.3.5.1
* python3-libmodulemd-2.13.0-150400.3.3.3
* python311-gobject-debuginfo-3.44.1-150400.3.9.2
* python-gobject-debugsource-3.44.1-150400.3.9.2
* libmodulemd-debuginfo-2.13.0-150400.3.3.3
* modulemd-validator-debuginfo-2.13.0-150400.3.3.3
* typelib-1_0-Modulemd-2_0-2.13.0-150400.3.3.3
* libmodulemd2-2.13.0-150400.3.3.3
* python311-gobject-cairo-3.44.1-150400.3.9.2
* python-pycairo-debugsource-1.23.0-150400.3.5.1
* libmodulemd-debugsource-2.13.0-150400.3.3.3
* python311-libmodulemd-2.13.0-150400.3.3.3
* python311-gobject-3.44.1-150400.3.9.2
* python311-gobject-Gdk-3.44.1-150400.3.9.2
* python311-pycairo-debuginfo-1.23.0-150400.3.5.1
* libmodulemd2-debuginfo-2.13.0-150400.3.3.3
* python-gobject-debuginfo-3.44.1-150400.3.9.2
* libmodulemd-devel-2.13.0-150400.3.3.3
* openSUSE Leap 15.4 (noarch)
* python311-netaddr-1.2.1-150400.11.3.2
* python311-six-1.16.0-150400.18.9.1
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* python311-pycairo-devel-1.23.0-150400.3.5.1
* modulemd-validator-2.13.0-150400.3.3.3
* python311-gobject-cairo-debuginfo-3.44.1-150400.3.9.2
* python311-gobject-devel-3.44.1-150400.3.9.2
* python311-pycairo-1.23.0-150400.3.5.1
* python3-libmodulemd-2.13.0-150400.3.3.3
* python311-gobject-debuginfo-3.44.1-150400.3.9.2
* python-gobject-debugsource-3.44.1-150400.3.9.2
* libmodulemd-debuginfo-2.13.0-150400.3.3.3
* modulemd-validator-debuginfo-2.13.0-150400.3.3.3
* typelib-1_0-Modulemd-2_0-2.13.0-150400.3.3.3
* libmodulemd2-2.13.0-150400.3.3.3
* python311-gobject-cairo-3.44.1-150400.3.9.2
* python-pycairo-debugsource-1.23.0-150400.3.5.1
* libmodulemd-debugsource-2.13.0-150400.3.3.3
* python311-libmodulemd-2.13.0-150400.3.3.3
* python311-gobject-3.44.1-150400.3.9.2
* python311-gobject-Gdk-3.44.1-150400.3.9.2
* python311-pycairo-debuginfo-1.23.0-150400.3.5.1
* libmodulemd2-debuginfo-2.13.0-150400.3.3.3
* python-gobject-debuginfo-3.44.1-150400.3.9.2
* libmodulemd-devel-2.13.0-150400.3.3.3
* openSUSE Leap 15.5 (noarch)
* python311-netaddr-1.2.1-150400.11.3.2
* python311-six-1.16.0-150400.18.9.1
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64)
* python311-pycairo-devel-1.23.0-150400.3.5.1
* modulemd-validator-2.13.0-150400.3.3.3
* python311-gobject-cairo-debuginfo-3.44.1-150400.3.9.2
* python311-gobject-devel-3.44.1-150400.3.9.2
* python311-pycairo-1.23.0-150400.3.5.1
* python3-libmodulemd-2.13.0-150400.3.3.3
* python311-gobject-debuginfo-3.44.1-150400.3.9.2
* python-gobject-debugsource-3.44.1-150400.3.9.2
* libmodulemd-debuginfo-2.13.0-150400.3.3.3
* modulemd-validator-debuginfo-2.13.0-150400.3.3.3
* typelib-1_0-Modulemd-2_0-2.13.0-150400.3.3.3
* libmodulemd2-2.13.0-150400.3.3.3
* python311-gobject-cairo-3.44.1-150400.3.9.2
* python-pycairo-debugsource-1.23.0-150400.3.5.1
* libmodulemd-debugsource-2.13.0-150400.3.3.3
* python311-gobject-3.44.1-150400.3.9.2
* python311-gobject-Gdk-3.44.1-150400.3.9.2
* python311-pycairo-debuginfo-1.23.0-150400.3.5.1
* libmodulemd2-debuginfo-2.13.0-150400.3.3.3
* python-gobject-debuginfo-3.44.1-150400.3.9.2
* libmodulemd-devel-2.13.0-150400.3.3.3
* openSUSE Leap 15.6 (noarch)
* python311-six-1.16.0-150400.18.9.1
* Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* libmodulemd2-debuginfo-2.13.0-150400.3.3.3
* libmodulemd-debugsource-2.13.0-150400.3.3.3
* libmodulemd-debuginfo-2.13.0-150400.3.3.3
* libmodulemd2-2.13.0-150400.3.3.3
* Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* libmodulemd2-debuginfo-2.13.0-150400.3.3.3
* libmodulemd-debugsource-2.13.0-150400.3.3.3
* libmodulemd-debuginfo-2.13.0-150400.3.3.3
* libmodulemd2-2.13.0-150400.3.3.3
* SUSE Package Hub 15 15-SP5 (aarch64 ppc64le s390x x86_64)
* modulemd-validator-debuginfo-2.13.0-150400.3.3.3
* typelib-1_0-Modulemd-2_0-2.13.0-150400.3.3.3
* python3-libmodulemd-2.13.0-150400.3.3.3
* modulemd-validator-2.13.0-150400.3.3.3
* libmodulemd-debugsource-2.13.0-150400.3.3.3
* libmodulemd-debuginfo-2.13.0-150400.3.3.3
* libmodulemd-devel-2.13.0-150400.3.3.3
* SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64)
* modulemd-validator-debuginfo-2.13.0-150400.3.3.3
* typelib-1_0-Modulemd-2_0-2.13.0-150400.3.3.3
* python3-libmodulemd-2.13.0-150400.3.3.3
* modulemd-validator-2.13.0-150400.3.3.3
* libmodulemd-debugsource-2.13.0-150400.3.3.3
* python-gobject-debuginfo-3.44.1-150400.3.9.2
* python-gobject-debugsource-3.44.1-150400.3.9.2
* libmodulemd-debuginfo-2.13.0-150400.3.3.3
* libmodulemd-devel-2.13.0-150400.3.3.3
* Public Cloud Module 15-SP4 (noarch)
* python311-six-1.16.0-150400.18.9.1
* Python 3 Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* typelib-1_0-Modulemd-2_0-2.13.0-150400.3.3.3
* python311-gobject-3.44.1-150400.3.9.2
* python311-gobject-cairo-3.44.1-150400.3.9.2
* python311-gobject-Gdk-3.44.1-150400.3.9.2
* python-pycairo-debugsource-1.23.0-150400.3.5.1
* python311-pycairo-devel-1.23.0-150400.3.5.1
* python311-gobject-debuginfo-3.44.1-150400.3.9.2
* python311-pycairo-debuginfo-1.23.0-150400.3.5.1
* python311-libmodulemd-2.13.0-150400.3.3.3
* python-gobject-debuginfo-3.44.1-150400.3.9.2
* python311-gobject-devel-3.44.1-150400.3.9.2
* python-gobject-debugsource-3.44.1-150400.3.9.2
* python311-gobject-cairo-debuginfo-3.44.1-150400.3.9.2
* python311-pycairo-1.23.0-150400.3.5.1
* Python 3 Module 15-SP5 (noarch)
* python311-netaddr-1.2.1-150400.11.3.2
* python311-six-1.16.0-150400.18.9.1
* Python 3 Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* python311-gobject-3.44.1-150400.3.9.2
* python311-gobject-cairo-3.44.1-150400.3.9.2
* python311-gobject-Gdk-3.44.1-150400.3.9.2
* python-pycairo-debugsource-1.23.0-150400.3.5.1
* python311-pycairo-devel-1.23.0-150400.3.5.1
* python311-gobject-debuginfo-3.44.1-150400.3.9.2
* python311-pycairo-debuginfo-1.23.0-150400.3.5.1
* python-gobject-debuginfo-3.44.1-150400.3.9.2
* python311-gobject-devel-3.44.1-150400.3.9.2
* python-gobject-debugsource-3.44.1-150400.3.9.2
* python311-gobject-cairo-debuginfo-3.44.1-150400.3.9.2
* python311-pycairo-1.23.0-150400.3.5.1
* Python 3 Module 15-SP6 (noarch)
* python311-six-1.16.0-150400.18.9.1
* SUSE Manager Server 4.3 Module 4.3 (aarch64 ppc64le s390x x86_64)
* typelib-1_0-Modulemd-2_0-2.13.0-150400.3.3.3
* libmodulemd2-2.13.0-150400.3.3.3
* python3-libmodulemd-2.13.0-150400.3.3.3
* libmodulemd2-debuginfo-2.13.0-150400.3.3.3
* libmodulemd-debugsource-2.13.0-150400.3.3.3
* libmodulemd-debuginfo-2.13.0-150400.3.3.3
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* typelib-1_0-Modulemd-2_0-2.13.0-150400.3.3.3
* libmodulemd2-2.13.0-150400.3.3.3
* python311-gobject-3.44.1-150400.3.9.2
* python311-gobject-cairo-3.44.1-150400.3.9.2
* python-pycairo-debugsource-1.23.0-150400.3.5.1
* python311-gobject-Gdk-3.44.1-150400.3.9.2
* python311-pycairo-1.23.0-150400.3.5.1
* python311-gobject-debuginfo-3.44.1-150400.3.9.2
* libmodulemd2-debuginfo-2.13.0-150400.3.3.3
* python311-pycairo-debuginfo-1.23.0-150400.3.5.1
* python311-pycairo-devel-1.23.0-150400.3.5.1
* libmodulemd-debugsource-2.13.0-150400.3.3.3
* python311-libmodulemd-2.13.0-150400.3.3.3
* python-gobject-debuginfo-3.44.1-150400.3.9.2
* python311-gobject-devel-3.44.1-150400.3.9.2
* python-gobject-debugsource-3.44.1-150400.3.9.2
* libmodulemd-debuginfo-2.13.0-150400.3.3.3
* python311-gobject-cairo-debuginfo-3.44.1-150400.3.9.2
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch)
* python311-netaddr-1.2.1-150400.11.3.2
* python311-six-1.16.0-150400.18.9.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* typelib-1_0-Modulemd-2_0-2.13.0-150400.3.3.3
* libmodulemd2-2.13.0-150400.3.3.3
* python311-gobject-3.44.1-150400.3.9.2
* python311-gobject-cairo-3.44.1-150400.3.9.2
* python-pycairo-debugsource-1.23.0-150400.3.5.1
* python311-gobject-Gdk-3.44.1-150400.3.9.2
* python311-pycairo-1.23.0-150400.3.5.1
* python311-gobject-debuginfo-3.44.1-150400.3.9.2
* libmodulemd2-debuginfo-2.13.0-150400.3.3.3
* python311-pycairo-debuginfo-1.23.0-150400.3.5.1
* python311-pycairo-devel-1.23.0-150400.3.5.1
* libmodulemd-debugsource-2.13.0-150400.3.3.3
* python311-libmodulemd-2.13.0-150400.3.3.3
* python-gobject-debuginfo-3.44.1-150400.3.9.2
* python311-gobject-devel-3.44.1-150400.3.9.2
* python-gobject-debugsource-3.44.1-150400.3.9.2
* libmodulemd-debuginfo-2.13.0-150400.3.3.3
* python311-gobject-cairo-debuginfo-3.44.1-150400.3.9.2
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch)
* python311-netaddr-1.2.1-150400.11.3.2
* python311-six-1.16.0-150400.18.9.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64)
* typelib-1_0-Modulemd-2_0-2.13.0-150400.3.3.3
* libmodulemd2-2.13.0-150400.3.3.3
* python311-gobject-3.44.1-150400.3.9.2
* python311-gobject-cairo-3.44.1-150400.3.9.2
* python-pycairo-debugsource-1.23.0-150400.3.5.1
* python311-gobject-Gdk-3.44.1-150400.3.9.2
* python311-pycairo-1.23.0-150400.3.5.1
* python311-gobject-debuginfo-3.44.1-150400.3.9.2
* libmodulemd2-debuginfo-2.13.0-150400.3.3.3
* python311-pycairo-debuginfo-1.23.0-150400.3.5.1
* python311-pycairo-devel-1.23.0-150400.3.5.1
* libmodulemd-debugsource-2.13.0-150400.3.3.3
* python311-libmodulemd-2.13.0-150400.3.3.3
* python-gobject-debuginfo-3.44.1-150400.3.9.2
* python311-gobject-devel-3.44.1-150400.3.9.2
* python-gobject-debugsource-3.44.1-150400.3.9.2
* libmodulemd-debuginfo-2.13.0-150400.3.3.3
* python311-gobject-cairo-debuginfo-3.44.1-150400.3.9.2
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch)
* python311-netaddr-1.2.1-150400.11.3.2
* python311-six-1.16.0-150400.18.9.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x
x86_64)
* typelib-1_0-Modulemd-2_0-2.13.0-150400.3.3.3
* libmodulemd2-2.13.0-150400.3.3.3
* python311-gobject-3.44.1-150400.3.9.2
* python311-gobject-cairo-3.44.1-150400.3.9.2
* python-pycairo-debugsource-1.23.0-150400.3.5.1
* python311-gobject-Gdk-3.44.1-150400.3.9.2
* python311-pycairo-1.23.0-150400.3.5.1
* python311-gobject-debuginfo-3.44.1-150400.3.9.2
* libmodulemd2-debuginfo-2.13.0-150400.3.3.3
* python311-pycairo-debuginfo-1.23.0-150400.3.5.1
* python311-pycairo-devel-1.23.0-150400.3.5.1
* libmodulemd-debugsource-2.13.0-150400.3.3.3
* python311-libmodulemd-2.13.0-150400.3.3.3
* python-gobject-debuginfo-3.44.1-150400.3.9.2
* python311-gobject-devel-3.44.1-150400.3.9.2
* python-gobject-debugsource-3.44.1-150400.3.9.2
* libmodulemd-debuginfo-2.13.0-150400.3.3.3
* python311-gobject-cairo-debuginfo-3.44.1-150400.3.9.2
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch)
* python311-netaddr-1.2.1-150400.11.3.2
* python311-six-1.16.0-150400.18.9.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* typelib-1_0-Modulemd-2_0-2.13.0-150400.3.3.3
* libmodulemd2-2.13.0-150400.3.3.3
* python311-gobject-3.44.1-150400.3.9.2
* python311-gobject-cairo-3.44.1-150400.3.9.2
* python-pycairo-debugsource-1.23.0-150400.3.5.1
* python311-gobject-Gdk-3.44.1-150400.3.9.2
* python311-pycairo-1.23.0-150400.3.5.1
* python311-gobject-debuginfo-3.44.1-150400.3.9.2
* libmodulemd2-debuginfo-2.13.0-150400.3.3.3
* python311-pycairo-debuginfo-1.23.0-150400.3.5.1
* python311-pycairo-devel-1.23.0-150400.3.5.1
* libmodulemd-debugsource-2.13.0-150400.3.3.3
* python311-libmodulemd-2.13.0-150400.3.3.3
* python-gobject-debuginfo-3.44.1-150400.3.9.2
* python311-gobject-devel-3.44.1-150400.3.9.2
* python-gobject-debugsource-3.44.1-150400.3.9.2
* libmodulemd-debuginfo-2.13.0-150400.3.3.3
* python311-gobject-cairo-debuginfo-3.44.1-150400.3.9.2
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch)
* python311-netaddr-1.2.1-150400.11.3.2
* python311-six-1.16.0-150400.18.9.1
* SUSE Manager Proxy 4.3 (x86_64)
* libmodulemd2-debuginfo-2.13.0-150400.3.3.3
* libmodulemd-debugsource-2.13.0-150400.3.3.3
* libmodulemd-debuginfo-2.13.0-150400.3.3.3
* libmodulemd2-2.13.0-150400.3.3.3
* SUSE Manager Retail Branch Server 4.3 (x86_64)
* libmodulemd2-debuginfo-2.13.0-150400.3.3.3
* libmodulemd-debugsource-2.13.0-150400.3.3.3
* libmodulemd-debuginfo-2.13.0-150400.3.3.3
* libmodulemd2-2.13.0-150400.3.3.3
* SUSE Manager Server 4.3 (ppc64le s390x x86_64)
* libmodulemd2-debuginfo-2.13.0-150400.3.3.3
* libmodulemd-debugsource-2.13.0-150400.3.3.3
* libmodulemd-debuginfo-2.13.0-150400.3.3.3
* libmodulemd2-2.13.0-150400.3.3.3
## References:
* https://jira.suse.com/browse/PED-6218
1
0
SUSE-RU-2024:3291-1: moderate: Recommended update for skelcd-control-leanos
by OPENSUSE-UPDATES 17 Sep '24
by OPENSUSE-UPDATES 17 Sep '24
17 Sep '24
# Recommended update for skelcd-control-leanos
Announcement ID: SUSE-RU-2024:3291-1
Rating: moderate
References:
* bsc#1216615
Affected Products:
* openSUSE Leap 15.6
An update that has one fix can now be installed.
## Description:
This update for skelcd-control-leanos fixes the following issues:
* Version update
* Add the security proposal to the autoyast overview and change the security
policy proposal order to run it first (bsc#1216615).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.6
zypper in -t patch SUSE-2024-3291=1
## Package List:
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586)
* skelcd-control-leanos-15.6.5-150600.3.3.2
## References:
* https://bugzilla.suse.com/show_bug.cgi?id=1216615
1
0
openSUSE-SU-2024:0305-1: important: Security update for gstreamer-plugins-bad
by opensuse-securityďĽ opensuse.org 17 Sep '24
by opensuse-securityďĽ opensuse.org 17 Sep '24
17 Sep '24
openSUSE Security Update: Security update for gstreamer-plugins-bad
______________________________________________________________________________
Announcement ID: openSUSE-SU-2024:0305-1
Rating: important
References: #1215792 #1217211 #1217213 #1218534 #1223263
Cross-References: CVE-2023-40475 CVE-2023-44429 CVE-2023-44446
CVE-2023-50186
CVSS scores:
CVE-2023-40475 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVE-2023-44429 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVE-2023-44446 (SUSE): 8 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
CVE-2023-50186 (SUSE): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products:
openSUSE Leap 15.5
______________________________________________________________________________
An update that solves four vulnerabilities and has one
errata is now available.
Description:
This update for gstreamer-plugins-bad fixes the following issues:
Adding references for already fixed vulnerability:
- CVE-2023-50186: Fixed heap-based buffer overflow in the AV1 codec parser
(ZDI-CAN-22300, bsc#1218534, bsc#1223263)
- CVE-2023-40475: Fixed GStreamer MXF File Parsing Integer Overflow
(bsc#1215792).
- CVE-2023-44446: Fixed GStreamer MXF File Parsing Use-After-Free
(bsc#1217213).
- CVE-2023-44429: Fixed GStreamer AV1 Codec Parsing Heap-based Buffer
Overflow (bsc#1217211).
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 15.5:
zypper in -t patch openSUSE-2024-305=1
Package List:
- openSUSE Leap 15.5 (aarch64 i586 ppc64le s390x x86_64):
gstreamer-plugins-bad-1.22.0-lp155.3.10.1
gstreamer-plugins-bad-chromaprint-1.22.0-lp155.3.10.1
gstreamer-plugins-bad-chromaprint-debuginfo-1.22.0-lp155.3.10.1
gstreamer-plugins-bad-debuginfo-1.22.0-lp155.3.10.1
gstreamer-plugins-bad-debugsource-1.22.0-lp155.3.10.1
gstreamer-plugins-bad-devel-1.22.0-lp155.3.10.1
gstreamer-plugins-bad-fluidsynth-1.22.0-lp155.3.10.1
gstreamer-plugins-bad-fluidsynth-debuginfo-1.22.0-lp155.3.10.1
gstreamer-transcoder-1.22.0-lp155.3.10.1
gstreamer-transcoder-debuginfo-1.22.0-lp155.3.10.1
gstreamer-transcoder-devel-1.22.0-lp155.3.10.1
libgstadaptivedemux-1_0-0-1.22.0-lp155.3.10.1
libgstadaptivedemux-1_0-0-debuginfo-1.22.0-lp155.3.10.1
libgstbadaudio-1_0-0-1.22.0-lp155.3.10.1
libgstbadaudio-1_0-0-debuginfo-1.22.0-lp155.3.10.1
libgstbasecamerabinsrc-1_0-0-1.22.0-lp155.3.10.1
libgstbasecamerabinsrc-1_0-0-debuginfo-1.22.0-lp155.3.10.1
libgstcodecparsers-1_0-0-1.22.0-lp155.3.10.1
libgstcodecparsers-1_0-0-debuginfo-1.22.0-lp155.3.10.1
libgstcodecs-1_0-0-1.22.0-lp155.3.10.1
libgstcodecs-1_0-0-debuginfo-1.22.0-lp155.3.10.1
libgstcuda-1_0-0-1.22.0-lp155.3.10.1
libgstcuda-1_0-0-debuginfo-1.22.0-lp155.3.10.1
libgstinsertbin-1_0-0-1.22.0-lp155.3.10.1
libgstinsertbin-1_0-0-debuginfo-1.22.0-lp155.3.10.1
libgstisoff-1_0-0-1.22.0-lp155.3.10.1
libgstisoff-1_0-0-debuginfo-1.22.0-lp155.3.10.1
libgstmpegts-1_0-0-1.22.0-lp155.3.10.1
libgstmpegts-1_0-0-debuginfo-1.22.0-lp155.3.10.1
libgstphotography-1_0-0-1.22.0-lp155.3.10.1
libgstphotography-1_0-0-debuginfo-1.22.0-lp155.3.10.1
libgstplay-1_0-0-1.22.0-lp155.3.10.1
libgstplay-1_0-0-debuginfo-1.22.0-lp155.3.10.1
libgstplayer-1_0-0-1.22.0-lp155.3.10.1
libgstplayer-1_0-0-debuginfo-1.22.0-lp155.3.10.1
libgstsctp-1_0-0-1.22.0-lp155.3.10.1
libgstsctp-1_0-0-debuginfo-1.22.0-lp155.3.10.1
libgsttranscoder-1_0-0-1.22.0-lp155.3.10.1
libgsttranscoder-1_0-0-debuginfo-1.22.0-lp155.3.10.1
libgsturidownloader-1_0-0-1.22.0-lp155.3.10.1
libgsturidownloader-1_0-0-debuginfo-1.22.0-lp155.3.10.1
libgstva-1_0-0-1.22.0-lp155.3.10.1
libgstva-1_0-0-debuginfo-1.22.0-lp155.3.10.1
libgstvulkan-1_0-0-1.22.0-lp155.3.10.1
libgstvulkan-1_0-0-debuginfo-1.22.0-lp155.3.10.1
libgstwayland-1_0-0-1.22.0-lp155.3.10.1
libgstwayland-1_0-0-debuginfo-1.22.0-lp155.3.10.1
libgstwebrtc-1_0-0-1.22.0-lp155.3.10.1
libgstwebrtc-1_0-0-debuginfo-1.22.0-lp155.3.10.1
libgstwebrtcnice-1_0-0-1.22.0-lp155.3.10.1
libgstwebrtcnice-1_0-0-debuginfo-1.22.0-lp155.3.10.1
typelib-1_0-CudaGst-1_0-1.22.0-lp155.3.10.1
typelib-1_0-GstBadAudio-1_0-1.22.0-lp155.3.10.1
typelib-1_0-GstCodecs-1_0-1.22.0-lp155.3.10.1
typelib-1_0-GstCuda-1_0-1.22.0-lp155.3.10.1
typelib-1_0-GstInsertBin-1_0-1.22.0-lp155.3.10.1
typelib-1_0-GstMpegts-1_0-1.22.0-lp155.3.10.1
typelib-1_0-GstPlay-1_0-1.22.0-lp155.3.10.1
typelib-1_0-GstPlayer-1_0-1.22.0-lp155.3.10.1
typelib-1_0-GstTranscoder-1_0-1.22.0-lp155.3.10.1
typelib-1_0-GstVa-1_0-1.22.0-lp155.3.10.1
typelib-1_0-GstVulkan-1_0-1.22.0-lp155.3.10.1
typelib-1_0-GstVulkanWayland-1_0-1.22.0-lp155.3.10.1
typelib-1_0-GstVulkanXCB-1_0-1.22.0-lp155.3.10.1
typelib-1_0-GstWebRTC-1_0-1.22.0-lp155.3.10.1
- openSUSE Leap 15.5 (aarch64_ilp32):
gstreamer-plugins-bad-64bit-1.22.0-lp155.3.10.1
gstreamer-plugins-bad-64bit-debuginfo-1.22.0-lp155.3.10.1
gstreamer-plugins-bad-chromaprint-64bit-1.22.0-lp155.3.10.1
gstreamer-plugins-bad-chromaprint-64bit-debuginfo-1.22.0-lp155.3.10.1
gstreamer-plugins-bad-fluidsynth-64bit-1.22.0-lp155.3.10.1
gstreamer-plugins-bad-fluidsynth-64bit-debuginfo-1.22.0-lp155.3.10.1
libgstadaptivedemux-1_0-0-64bit-1.22.0-lp155.3.10.1
libgstadaptivedemux-1_0-0-64bit-debuginfo-1.22.0-lp155.3.10.1
libgstbadaudio-1_0-0-64bit-1.22.0-lp155.3.10.1
libgstbadaudio-1_0-0-64bit-debuginfo-1.22.0-lp155.3.10.1
libgstbasecamerabinsrc-1_0-0-64bit-1.22.0-lp155.3.10.1
libgstbasecamerabinsrc-1_0-0-64bit-debuginfo-1.22.0-lp155.3.10.1
libgstcodecparsers-1_0-0-64bit-1.22.0-lp155.3.10.1
libgstcodecparsers-1_0-0-64bit-debuginfo-1.22.0-lp155.3.10.1
libgstcodecs-1_0-0-64bit-1.22.0-lp155.3.10.1
libgstcodecs-1_0-0-64bit-debuginfo-1.22.0-lp155.3.10.1
libgstcuda-1_0-0-64bit-1.22.0-lp155.3.10.1
libgstcuda-1_0-0-64bit-debuginfo-1.22.0-lp155.3.10.1
libgstinsertbin-1_0-0-64bit-1.22.0-lp155.3.10.1
libgstinsertbin-1_0-0-64bit-debuginfo-1.22.0-lp155.3.10.1
libgstisoff-1_0-0-64bit-1.22.0-lp155.3.10.1
libgstisoff-1_0-0-64bit-debuginfo-1.22.0-lp155.3.10.1
libgstmpegts-1_0-0-64bit-1.22.0-lp155.3.10.1
libgstmpegts-1_0-0-64bit-debuginfo-1.22.0-lp155.3.10.1
libgstphotography-1_0-0-64bit-1.22.0-lp155.3.10.1
libgstphotography-1_0-0-64bit-debuginfo-1.22.0-lp155.3.10.1
libgstplay-1_0-0-64bit-1.22.0-lp155.3.10.1
libgstplay-1_0-0-64bit-debuginfo-1.22.0-lp155.3.10.1
libgstplayer-1_0-0-64bit-1.22.0-lp155.3.10.1
libgstplayer-1_0-0-64bit-debuginfo-1.22.0-lp155.3.10.1
libgstsctp-1_0-0-64bit-1.22.0-lp155.3.10.1
libgstsctp-1_0-0-64bit-debuginfo-1.22.0-lp155.3.10.1
libgsturidownloader-1_0-0-64bit-1.22.0-lp155.3.10.1
libgsturidownloader-1_0-0-64bit-debuginfo-1.22.0-lp155.3.10.1
libgstva-1_0-0-64bit-1.22.0-lp155.3.10.1
libgstva-1_0-0-64bit-debuginfo-1.22.0-lp155.3.10.1
libgstvulkan-1_0-0-64bit-1.22.0-lp155.3.10.1
libgstvulkan-1_0-0-64bit-debuginfo-1.22.0-lp155.3.10.1
libgstwayland-1_0-0-64bit-1.22.0-lp155.3.10.1
libgstwayland-1_0-0-64bit-debuginfo-1.22.0-lp155.3.10.1
libgstwebrtc-1_0-0-64bit-1.22.0-lp155.3.10.1
libgstwebrtc-1_0-0-64bit-debuginfo-1.22.0-lp155.3.10.1
libgstwebrtcnice-1_0-0-64bit-1.22.0-lp155.3.10.1
libgstwebrtcnice-1_0-0-64bit-debuginfo-1.22.0-lp155.3.10.1
- openSUSE Leap 15.5 (noarch):
gstreamer-plugins-bad-lang-1.22.0-lp155.3.10.1
- openSUSE Leap 15.5 (x86_64):
gstreamer-plugins-bad-32bit-1.22.0-lp155.3.10.1
gstreamer-plugins-bad-32bit-debuginfo-1.22.0-lp155.3.10.1
gstreamer-plugins-bad-chromaprint-32bit-1.22.0-lp155.3.10.1
gstreamer-plugins-bad-chromaprint-32bit-debuginfo-1.22.0-lp155.3.10.1
gstreamer-plugins-bad-fluidsynth-32bit-1.22.0-lp155.3.10.1
gstreamer-plugins-bad-fluidsynth-32bit-debuginfo-1.22.0-lp155.3.10.1
libgstadaptivedemux-1_0-0-32bit-1.22.0-lp155.3.10.1
libgstadaptivedemux-1_0-0-32bit-debuginfo-1.22.0-lp155.3.10.1
libgstbadaudio-1_0-0-32bit-1.22.0-lp155.3.10.1
libgstbadaudio-1_0-0-32bit-debuginfo-1.22.0-lp155.3.10.1
libgstbasecamerabinsrc-1_0-0-32bit-1.22.0-lp155.3.10.1
libgstbasecamerabinsrc-1_0-0-32bit-debuginfo-1.22.0-lp155.3.10.1
libgstcodecparsers-1_0-0-32bit-1.22.0-lp155.3.10.1
libgstcodecparsers-1_0-0-32bit-debuginfo-1.22.0-lp155.3.10.1
libgstcodecs-1_0-0-32bit-1.22.0-lp155.3.10.1
libgstcodecs-1_0-0-32bit-debuginfo-1.22.0-lp155.3.10.1
libgstcuda-1_0-0-32bit-1.22.0-lp155.3.10.1
libgstcuda-1_0-0-32bit-debuginfo-1.22.0-lp155.3.10.1
libgstinsertbin-1_0-0-32bit-1.22.0-lp155.3.10.1
libgstinsertbin-1_0-0-32bit-debuginfo-1.22.0-lp155.3.10.1
libgstisoff-1_0-0-32bit-1.22.0-lp155.3.10.1
libgstisoff-1_0-0-32bit-debuginfo-1.22.0-lp155.3.10.1
libgstmpegts-1_0-0-32bit-1.22.0-lp155.3.10.1
libgstmpegts-1_0-0-32bit-debuginfo-1.22.0-lp155.3.10.1
libgstphotography-1_0-0-32bit-1.22.0-lp155.3.10.1
libgstphotography-1_0-0-32bit-debuginfo-1.22.0-lp155.3.10.1
libgstplay-1_0-0-32bit-1.22.0-lp155.3.10.1
libgstplay-1_0-0-32bit-debuginfo-1.22.0-lp155.3.10.1
libgstplayer-1_0-0-32bit-1.22.0-lp155.3.10.1
libgstplayer-1_0-0-32bit-debuginfo-1.22.0-lp155.3.10.1
libgstsctp-1_0-0-32bit-1.22.0-lp155.3.10.1
libgstsctp-1_0-0-32bit-debuginfo-1.22.0-lp155.3.10.1
libgsturidownloader-1_0-0-32bit-1.22.0-lp155.3.10.1
libgsturidownloader-1_0-0-32bit-debuginfo-1.22.0-lp155.3.10.1
libgstva-1_0-0-32bit-1.22.0-lp155.3.10.1
libgstva-1_0-0-32bit-debuginfo-1.22.0-lp155.3.10.1
libgstvulkan-1_0-0-32bit-1.22.0-lp155.3.10.1
libgstvulkan-1_0-0-32bit-debuginfo-1.22.0-lp155.3.10.1
libgstwayland-1_0-0-32bit-1.22.0-lp155.3.10.1
libgstwayland-1_0-0-32bit-debuginfo-1.22.0-lp155.3.10.1
libgstwebrtc-1_0-0-32bit-1.22.0-lp155.3.10.1
libgstwebrtc-1_0-0-32bit-debuginfo-1.22.0-lp155.3.10.1
libgstwebrtcnice-1_0-0-32bit-1.22.0-lp155.3.10.1
libgstwebrtcnice-1_0-0-32bit-debuginfo-1.22.0-lp155.3.10.1
References:
https://www.suse.com/security/cve/CVE-2023-40475.html
https://www.suse.com/security/cve/CVE-2023-44429.html
https://www.suse.com/security/cve/CVE-2023-44446.html
https://www.suse.com/security/cve/CVE-2023-50186.html
https://bugzilla.suse.com/1215792
https://bugzilla.suse.com/1217211
https://bugzilla.suse.com/1217213
https://bugzilla.suse.com/1218534
https://bugzilla.suse.com/1223263
1
0
SUSE-RU-2024:3263-1: moderate: Recommended update for python3-dmidecode
by OPENSUSE-UPDATES 17 Sep '24
by OPENSUSE-UPDATES 17 Sep '24
17 Sep '24
# Recommended update for python3-dmidecode
Announcement ID: SUSE-RU-2024:3263-1
Rating: moderate
References:
* bsc#1229855
Affected Products:
* Basesystem Module 15-SP5
* Basesystem Module 15-SP6
* openSUSE Leap 15.4
* openSUSE Leap 15.5
* openSUSE Leap 15.6
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise Desktop 15 SP6
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Manager Proxy 4.3
* SUSE Manager Retail Branch Server 4.3
* SUSE Manager Server 4.3
An update that has one fix can now be installed.
## Description:
This update for python3-dmidecode fixes the following issues:
* python3-dmidecode was updated to version 3.12.3 (bsc#1229855):
* Added support for SMBIOS3.3.0
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.4
zypper in -t patch SUSE-2024-3263=1
* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-3263=1
* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2024-3263=1
* Basesystem Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-3263=1
* Basesystem Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-3263=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-3263=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-3263=1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-3263=1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-3263=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-3263=1
* SUSE Manager Proxy 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-3263=1
* SUSE Manager Retail Branch Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-
Server-4.3-2024-3263=1
* SUSE Manager Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-3263=1
## Package List:
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* python3-dmidecode-debuginfo-3.12.3-150400.21.2
* python3-dmidecode-debugsource-3.12.3-150400.21.2
* python3-dmidecode-3.12.3-150400.21.2
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* python3-dmidecode-debuginfo-3.12.3-150400.21.2
* python3-dmidecode-debugsource-3.12.3-150400.21.2
* python3-dmidecode-3.12.3-150400.21.2
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64)
* python3-dmidecode-debuginfo-3.12.3-150400.21.2
* python3-dmidecode-debugsource-3.12.3-150400.21.2
* python3-dmidecode-3.12.3-150400.21.2
* Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* python3-dmidecode-debuginfo-3.12.3-150400.21.2
* python3-dmidecode-debugsource-3.12.3-150400.21.2
* python3-dmidecode-3.12.3-150400.21.2
* Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* python3-dmidecode-debuginfo-3.12.3-150400.21.2
* python3-dmidecode-debugsource-3.12.3-150400.21.2
* python3-dmidecode-3.12.3-150400.21.2
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* python3-dmidecode-debuginfo-3.12.3-150400.21.2
* python3-dmidecode-debugsource-3.12.3-150400.21.2
* python3-dmidecode-3.12.3-150400.21.2
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* python3-dmidecode-debuginfo-3.12.3-150400.21.2
* python3-dmidecode-debugsource-3.12.3-150400.21.2
* python3-dmidecode-3.12.3-150400.21.2
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64)
* python3-dmidecode-debuginfo-3.12.3-150400.21.2
* python3-dmidecode-debugsource-3.12.3-150400.21.2
* python3-dmidecode-3.12.3-150400.21.2
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x
x86_64)
* python3-dmidecode-debuginfo-3.12.3-150400.21.2
* python3-dmidecode-debugsource-3.12.3-150400.21.2
* python3-dmidecode-3.12.3-150400.21.2
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* python3-dmidecode-debuginfo-3.12.3-150400.21.2
* python3-dmidecode-debugsource-3.12.3-150400.21.2
* python3-dmidecode-3.12.3-150400.21.2
* SUSE Manager Proxy 4.3 (x86_64)
* python3-dmidecode-debuginfo-3.12.3-150400.21.2
* python3-dmidecode-debugsource-3.12.3-150400.21.2
* python3-dmidecode-3.12.3-150400.21.2
* SUSE Manager Retail Branch Server 4.3 (x86_64)
* python3-dmidecode-debuginfo-3.12.3-150400.21.2
* python3-dmidecode-debugsource-3.12.3-150400.21.2
* python3-dmidecode-3.12.3-150400.21.2
* SUSE Manager Server 4.3 (ppc64le s390x x86_64)
* python3-dmidecode-debuginfo-3.12.3-150400.21.2
* python3-dmidecode-debugsource-3.12.3-150400.21.2
* python3-dmidecode-3.12.3-150400.21.2
## References:
* https://bugzilla.suse.com/show_bug.cgi?id=1229855
1
0
SUSE-SU-2024:3267-1: important: Security update for SUSE Manager Client Tools
by OPENSUSE-UPDATES 17 Sep '24
by OPENSUSE-UPDATES 17 Sep '24
17 Sep '24
# Security update for SUSE Manager Client Tools
Announcement ID: SUSE-SU-2024:3267-1
Rating: important
References:
* bsc#1220136
* bsc#1224349
* bsc#1225349
* bsc#1226191
* bsc#1226284
* bsc#1226437
* bsc#1226759
* bsc#1226793
* bsc#1226847
* bsc#1226914
* bsc#1227038
* bsc#1227195
* bsc#1227244
* bsc#1227245
* bsc#1227505
* bsc#1227584
* bsc#1227586
* bsc#1227588
* bsc#1227718
* bsc#1227951
* bsc#1228026
* bsc#1228183
* bsc#1228198
* bsc#1228556
* jsc#MSQA-848
* jsc#PED-3577
Cross-References:
* CVE-2023-45142
* CVE-2024-6104
CVSS scores:
* CVE-2023-45142 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2023-45142 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-6104 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
* CVE-2024-6104 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Affected Products:
* openSUSE Leap 15.3
* openSUSE Leap 15.4
* openSUSE Leap 15.5
* openSUSE Leap 15.6
* SUSE Linux Enterprise Desktop 15
* SUSE Linux Enterprise Desktop 15 SP1
* SUSE Linux Enterprise Desktop 15 SP2
* SUSE Linux Enterprise Desktop 15 SP3
* SUSE Linux Enterprise Desktop 15 SP4
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise Desktop 15 SP6
* SUSE Linux Enterprise High Performance Computing 15
* SUSE Linux Enterprise High Performance Computing 15 SP1
* SUSE Linux Enterprise High Performance Computing 15 SP2
* SUSE Linux Enterprise High Performance Computing 15 SP3
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise Micro 5.0
* SUSE Linux Enterprise Micro 5.1
* SUSE Linux Enterprise Micro 5.2
* SUSE Linux Enterprise Micro 5.3
* SUSE Linux Enterprise Micro 5.4
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Real Time 15 SP1
* SUSE Linux Enterprise Real Time 15 SP2
* SUSE Linux Enterprise Real Time 15 SP3
* SUSE Linux Enterprise Real Time 15 SP4
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Server 15
* SUSE Linux Enterprise Server 15 SP1
* SUSE Linux Enterprise Server 15 SP2
* SUSE Linux Enterprise Server 15 SP3
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15
* SUSE Linux Enterprise Server for SAP Applications 15 SP1
* SUSE Linux Enterprise Server for SAP Applications 15 SP2
* SUSE Linux Enterprise Server for SAP Applications 15 SP3
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Manager Client Tools for SLE 15
* SUSE Manager Client Tools for SLE Micro 5
An update that solves two vulnerabilities, contains two features and has 22
security fixes can now be installed.
## Description:
This update fixes the following issues:
golang-github-prometheus-prometheus:
* Security issues fixed:
* CVE-2024-6104: Update go-retryablehttp to version 0.7.7 (bsc#1227038)
* CVE-2023-45142: Updated otelhttp to version 0.46.1 (bsc#1228556)
* Require Go > 1.20 for building
* Migrate from `disabled` to `manual` service mode
* Update to 2.45.6 (jsc#PED-3577):
* Security fixes in dependencies
* Update to 2.45.5:
* [BUGFIX] tsdb/agent: ensure that new series get written to WAL on rollback.
* [BUGFIX] Remote write: Avoid a race condition when applying configuration.
* Update to 2.45.4:
* [BUGFIX] Remote read: Release querier resources before encoding the results.
* Update to 2.45.3:
* [BUGFIX] TSDB: Remove double memory snapshot on shutdown.
* Update to 2.45.2:
* [BUGFIX] TSDB: Fix PostingsForMatchers race with creating new series.
* Update to 2.45.1:
* [ENHANCEMENT] Hetzner SD: Support larger ID's that will be used by Hetzner
in September.
* [BUGFIX] Linode SD: Cast InstanceSpec values to int64 to avoid overflows on
386 architecture.
* [BUGFIX] TSDB: Handle TOC parsing failures.
rhnlib:
* Version 5.0.4-0
* Add the old TLS code for very old traditional clients still on python 2.7
(bsc#1228198)
spacecmd:
* Version 5.0.9-0
* Update translation strings
uyuni-tools:
* Version 0.1.21-0
* mgrpxy: Fix typo on Systemd template
* Version 0.1.20-0
* Update the push tag to 5.0.1
* mgrpxy: expose port on IPv6 network (bsc#1227951)
* Version 0.1.19-0
* Skip updating Tomcat remote debug if conf file is not present
* Version 0.1.18-0
* Setup Confidential Computing container during migration (bsc#1227588)
* Add the /etc/uyuni/uyuni-tools.yaml path to the config help
* Split systemd config files to not loose configuration at upgrade
(bsc#1227718)
* Use the same logic for image computation in mgradm and mgrpxy (bsc#1228026)
* Allow building with different Helm and container default registry paths
(bsc#1226191)
* Fix recursion in mgradm upgrade podman list --help
* Setup hub xmlrpc API service in migration to Podman (bsc#1227588)
* Setup disabled hub xmlrpc API service in all cases (bsc#1227584)
* Clean the inspection code to make it faster
* Properly detect IPv6 enabled on Podman network (bsc#1224349)
* Fix the log file path generation
* Write scripts output to uyuni-tools.log file
* Add uyuni-hubxml-rpc to the list of values in mgradm scale --help
* Use path in mgradm support sql file input (bsc#1227505)
* On Ubuntu build with go1.21 instead of go1.20
* Enforce Cobbler setup (bsc#1226847)
* Expose port on IPv6 network (bsc#1227951)
* show output of podman image search --list-tags command
* Implement mgrpxy support config command
* During migration, ignore /etc/sysconfig/tomcat and /etc/tomcat/tomcat.conf
(bsc#1228183)
* During migration, remove java.annotation,com.sun.xml.bind and
UseConcMarkSweepGC settings
* Disable node exporter port for Kubernetes
* Fix start, stop and restart in Kubernetes
* Increase start timeout in Kubernetes
* Fix traefik query
* Fix password entry usability (bsc#1226437)
* Add --prepare option to migrate command
* Fix random error during installation of CA certificate (bsc#1227245)
* Clarify and fix distro name guessing when not provided (bsc#1226284)
* Replace not working Fatal error by plain error return (bsc#1220136)
* Allow server installation with preexisting storage volumes
* Do not report error when purging mounted volume (bsc#1225349)
* Preserve PAGER settings from the host for interactive sql usage
(bsc#1226914)
* Add mgrpxy command to clear the Squid cache
* Use local images for Confidential Computing and Hub containers (bsc#1227586)
* Version 0.1.17-0
* Allow GPG files to be loaded from the local file (bsc#1227195)
* Version 0.1.16-0
* Prefer local images in all migration steps (bsc#1227244)
* Version 0.1.15-0
* Define --registry flag behaviour (bsc#1226793)
* Version 0.1.14-0
* Do not rely on hardcoded registry, remove any FQDN
* Version 0.1.13-0
* Fix mgradm support config tarball creation (bsc#1226759)
* Version 0.1.12-0
* Detection of k8s on Proxy was wrongly influenced by Server setting
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-3267=1
* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2024-3267=1
* SUSE Manager Client Tools for SLE 15
zypper in -t patch SUSE-SLE-Manager-Tools-15-2024-3267=1
* SUSE Manager Client Tools for SLE Micro 5
zypper in -t patch SUSE-SLE-Manager-Tools-For-Micro-5-2024-3267=1
## Package List:
* openSUSE Leap 15.5 (noarch)
* spacecmd-5.0.9-150000.3.124.1
* openSUSE Leap 15.6 (noarch)
* spacecmd-5.0.9-150000.3.124.1
* SUSE Manager Client Tools for SLE 15 (aarch64 ppc64le s390x x86_64)
* mgrctl-debuginfo-0.1.21-150000.1.8.2
* mgrctl-0.1.21-150000.1.8.2
* firewalld-prometheus-config-0.1-150000.3.56.1
* golang-github-prometheus-prometheus-2.45.6-150000.3.56.1
* SUSE Manager Client Tools for SLE 15 (noarch)
* mgrctl-bash-completion-0.1.21-150000.1.8.2
* python3-rhnlib-5.0.4-150000.3.46.1
* mgrctl-zsh-completion-0.1.21-150000.1.8.2
* mgrctl-lang-0.1.21-150000.1.8.2
* spacecmd-5.0.9-150000.3.124.1
* SUSE Manager Client Tools for SLE Micro 5 (aarch64 s390x x86_64)
* mgrctl-debuginfo-0.1.21-150000.1.8.2
* mgrctl-0.1.21-150000.1.8.2
* SUSE Manager Client Tools for SLE Micro 5 (noarch)
* mgrctl-bash-completion-0.1.21-150000.1.8.2
* mgrctl-lang-0.1.21-150000.1.8.2
* mgrctl-zsh-completion-0.1.21-150000.1.8.2
## References:
* https://www.suse.com/security/cve/CVE-2023-45142.html
* https://www.suse.com/security/cve/CVE-2024-6104.html
* https://bugzilla.suse.com/show_bug.cgi?id=1220136
* https://bugzilla.suse.com/show_bug.cgi?id=1224349
* https://bugzilla.suse.com/show_bug.cgi?id=1225349
* https://bugzilla.suse.com/show_bug.cgi?id=1226191
* https://bugzilla.suse.com/show_bug.cgi?id=1226284
* https://bugzilla.suse.com/show_bug.cgi?id=1226437
* https://bugzilla.suse.com/show_bug.cgi?id=1226759
* https://bugzilla.suse.com/show_bug.cgi?id=1226793
* https://bugzilla.suse.com/show_bug.cgi?id=1226847
* https://bugzilla.suse.com/show_bug.cgi?id=1226914
* https://bugzilla.suse.com/show_bug.cgi?id=1227038
* https://bugzilla.suse.com/show_bug.cgi?id=1227195
* https://bugzilla.suse.com/show_bug.cgi?id=1227244
* https://bugzilla.suse.com/show_bug.cgi?id=1227245
* https://bugzilla.suse.com/show_bug.cgi?id=1227505
* https://bugzilla.suse.com/show_bug.cgi?id=1227584
* https://bugzilla.suse.com/show_bug.cgi?id=1227586
* https://bugzilla.suse.com/show_bug.cgi?id=1227588
* https://bugzilla.suse.com/show_bug.cgi?id=1227718
* https://bugzilla.suse.com/show_bug.cgi?id=1227951
* https://bugzilla.suse.com/show_bug.cgi?id=1228026
* https://bugzilla.suse.com/show_bug.cgi?id=1228183
* https://bugzilla.suse.com/show_bug.cgi?id=1228198
* https://bugzilla.suse.com/show_bug.cgi?id=1228556
* https://jira.suse.com/browse/MSQA-848
* https://jira.suse.com/browse/PED-3577
1
0
17 Sep '24
# Recommended update for salt
Announcement ID: SUSE-RU-2024:3285-1
Rating: moderate
References:
* bsc#1222684
* jsc#MSQA-848
Affected Products:
* openSUSE Leap 15.3
* SUSE Enterprise Storage 7.1
* SUSE Linux Enterprise High Performance Computing 15 SP3
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
* SUSE Linux Enterprise Micro 5.1
* SUSE Linux Enterprise Micro 5.2
* SUSE Linux Enterprise Micro for Rancher 5.2
* SUSE Linux Enterprise Server 15 SP3
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
* SUSE Linux Enterprise Server for SAP Applications 15 SP3
An update that contains one feature and has one fix can now be installed.
## Description:
This update for salt fixes the following issues:
* Fix rich rule comparison in firewalld module (bsc#1222684)
* test_vultrpy: adjust test expectation to prevent failure after Debian 10 EOL
* Make auth.pam more robust with Salt Bundle and fix tests
* Fix performance of user.list_groups with many remote groups
* Fix "status.diskusage" function and exclude some tests for Salt Bundle
* Skip certain tests if necessary for some OSes and set flaky ones
* Add a timer to delete old env post update for venv-minion
* Several fixes for tests to avoid errors and failures in some OSes
## Special Instructions and Notes:
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.3
zypper in -t patch SUSE-2024-3285=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-3285=1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-3285=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP3
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-3285=1
* SUSE Enterprise Storage 7.1
zypper in -t patch SUSE-Storage-7.1-2024-3285=1
* SUSE Linux Enterprise Micro 5.1
zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-3285=1
* SUSE Linux Enterprise Micro 5.2
zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-3285=1
* SUSE Linux Enterprise Micro for Rancher 5.2
zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-3285=1
## Package List:
* openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586)
* salt-doc-3006.0-150300.53.82.2
* salt-cloud-3006.0-150300.53.82.2
* salt-standalone-formulas-configuration-3006.0-150300.53.82.2
* salt-proxy-3006.0-150300.53.82.2
* python3-salt-3006.0-150300.53.82.2
* salt-minion-3006.0-150300.53.82.2
* salt-syndic-3006.0-150300.53.82.2
* python3-salt-testsuite-3006.0-150300.53.82.1
* salt-api-3006.0-150300.53.82.2
* salt-master-3006.0-150300.53.82.2
* salt-transactional-update-3006.0-150300.53.82.2
* salt-ssh-3006.0-150300.53.82.2
* salt-3006.0-150300.53.82.2
* openSUSE Leap 15.3 (noarch)
* salt-zsh-completion-3006.0-150300.53.82.2
* salt-bash-completion-3006.0-150300.53.82.2
* salt-fish-completion-3006.0-150300.53.82.2
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64
x86_64)
* salt-doc-3006.0-150300.53.82.2
* salt-cloud-3006.0-150300.53.82.2
* salt-standalone-formulas-configuration-3006.0-150300.53.82.2
* salt-proxy-3006.0-150300.53.82.2
* python3-salt-3006.0-150300.53.82.2
* salt-minion-3006.0-150300.53.82.2
* salt-syndic-3006.0-150300.53.82.2
* salt-api-3006.0-150300.53.82.2
* salt-master-3006.0-150300.53.82.2
* salt-ssh-3006.0-150300.53.82.2
* salt-3006.0-150300.53.82.2
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch)
* salt-zsh-completion-3006.0-150300.53.82.2
* salt-bash-completion-3006.0-150300.53.82.2
* salt-fish-completion-3006.0-150300.53.82.2
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x
x86_64)
* salt-doc-3006.0-150300.53.82.2
* salt-cloud-3006.0-150300.53.82.2
* salt-standalone-formulas-configuration-3006.0-150300.53.82.2
* salt-proxy-3006.0-150300.53.82.2
* python3-salt-3006.0-150300.53.82.2
* salt-minion-3006.0-150300.53.82.2
* salt-syndic-3006.0-150300.53.82.2
* salt-api-3006.0-150300.53.82.2
* salt-master-3006.0-150300.53.82.2
* salt-transactional-update-3006.0-150300.53.82.2
* salt-ssh-3006.0-150300.53.82.2
* salt-3006.0-150300.53.82.2
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch)
* salt-zsh-completion-3006.0-150300.53.82.2
* salt-bash-completion-3006.0-150300.53.82.2
* salt-fish-completion-3006.0-150300.53.82.2
* SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64)
* salt-doc-3006.0-150300.53.82.2
* salt-cloud-3006.0-150300.53.82.2
* salt-standalone-formulas-configuration-3006.0-150300.53.82.2
* salt-proxy-3006.0-150300.53.82.2
* python3-salt-3006.0-150300.53.82.2
* salt-minion-3006.0-150300.53.82.2
* salt-syndic-3006.0-150300.53.82.2
* salt-api-3006.0-150300.53.82.2
* salt-master-3006.0-150300.53.82.2
* salt-ssh-3006.0-150300.53.82.2
* salt-3006.0-150300.53.82.2
* SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch)
* salt-zsh-completion-3006.0-150300.53.82.2
* salt-bash-completion-3006.0-150300.53.82.2
* salt-fish-completion-3006.0-150300.53.82.2
* SUSE Enterprise Storage 7.1 (aarch64 x86_64)
* salt-doc-3006.0-150300.53.82.2
* salt-cloud-3006.0-150300.53.82.2
* salt-standalone-formulas-configuration-3006.0-150300.53.82.2
* salt-proxy-3006.0-150300.53.82.2
* python3-salt-3006.0-150300.53.82.2
* salt-minion-3006.0-150300.53.82.2
* salt-syndic-3006.0-150300.53.82.2
* salt-api-3006.0-150300.53.82.2
* salt-master-3006.0-150300.53.82.2
* salt-transactional-update-3006.0-150300.53.82.2
* salt-ssh-3006.0-150300.53.82.2
* salt-3006.0-150300.53.82.2
* SUSE Enterprise Storage 7.1 (noarch)
* salt-zsh-completion-3006.0-150300.53.82.2
* salt-bash-completion-3006.0-150300.53.82.2
* salt-fish-completion-3006.0-150300.53.82.2
* SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64)
* python3-salt-3006.0-150300.53.82.2
* salt-minion-3006.0-150300.53.82.2
* salt-transactional-update-3006.0-150300.53.82.2
* salt-3006.0-150300.53.82.2
* SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64)
* python3-salt-3006.0-150300.53.82.2
* salt-minion-3006.0-150300.53.82.2
* salt-transactional-update-3006.0-150300.53.82.2
* salt-3006.0-150300.53.82.2
* SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64)
* python3-salt-3006.0-150300.53.82.2
* salt-minion-3006.0-150300.53.82.2
* salt-transactional-update-3006.0-150300.53.82.2
* salt-3006.0-150300.53.82.2
## References:
* https://bugzilla.suse.com/show_bug.cgi?id=1222684
* https://jira.suse.com/browse/MSQA-848
1
0
17 Sep '24
# Recommended update for salt
Announcement ID: SUSE-RU-2024:3286-1
Rating: moderate
References:
* bsc#1222684
* jsc#MSQA-848
Affected Products:
* openSUSE Leap 15.4
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Micro 5.3
* SUSE Linux Enterprise Micro 5.4
* SUSE Linux Enterprise Micro for Rancher 5.3
* SUSE Linux Enterprise Micro for Rancher 5.4
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Manager Proxy 4.3
* SUSE Manager Retail Branch Server 4.3
* SUSE Manager Server 4.3
An update that contains one feature and has one fix can now be installed.
## Description:
This update for salt fixes the following issues:
* Fix rich rule comparison in firewalld module (bsc#1222684)
* test_vultrpy: adjust test expectation to prevent failure after Debian 10 EOL
* Make auth.pam more robust with Salt Bundle and fix tests
* Fix performance of user.list_groups with many remote groups
* Fix "status.diskusage" function and exclude some tests for Salt Bundle
* Skip certain tests if necessary for some OSes and set flaky ones
* Add a timer to delete old env post update for venv-minion
* Several fixes for tests to avoid errors and failures in some OSes
## Special Instructions and Notes:
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.4
zypper in -t patch SUSE-2024-3286=1
* SUSE Linux Enterprise Micro for Rancher 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2024-3286=1
* SUSE Linux Enterprise Micro 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2024-3286=1
* SUSE Linux Enterprise Micro for Rancher 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2024-3286=1
* SUSE Linux Enterprise Micro 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2024-3286=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-3286=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-3286=1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-3286=1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-3286=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-3286=1
* SUSE Manager Proxy 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-3286=1
* SUSE Manager Retail Branch Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-
Server-4.3-2024-3286=1
* SUSE Manager Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-3286=1
## Package List:
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* salt-proxy-3006.0-150400.8.66.2
* salt-ssh-3006.0-150400.8.66.2
* salt-transactional-update-3006.0-150400.8.66.2
* salt-api-3006.0-150400.8.66.2
* salt-minion-3006.0-150400.8.66.2
* salt-standalone-formulas-configuration-3006.0-150400.8.66.2
* python3-salt-3006.0-150400.8.66.2
* salt-doc-3006.0-150400.8.66.2
* salt-cloud-3006.0-150400.8.66.2
* salt-master-3006.0-150400.8.66.2
* python3-salt-testsuite-3006.0-150400.8.66.1
* salt-syndic-3006.0-150400.8.66.2
* salt-3006.0-150400.8.66.2
* openSUSE Leap 15.4 (noarch)
* salt-zsh-completion-3006.0-150400.8.66.2
* salt-bash-completion-3006.0-150400.8.66.2
* salt-fish-completion-3006.0-150400.8.66.2
* SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64)
* python3-salt-3006.0-150400.8.66.2
* salt-transactional-update-3006.0-150400.8.66.2
* salt-minion-3006.0-150400.8.66.2
* salt-3006.0-150400.8.66.2
* SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64)
* python3-salt-3006.0-150400.8.66.2
* salt-transactional-update-3006.0-150400.8.66.2
* salt-minion-3006.0-150400.8.66.2
* salt-3006.0-150400.8.66.2
* SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64)
* python3-salt-3006.0-150400.8.66.2
* salt-transactional-update-3006.0-150400.8.66.2
* salt-minion-3006.0-150400.8.66.2
* salt-3006.0-150400.8.66.2
* SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64)
* python3-salt-3006.0-150400.8.66.2
* salt-transactional-update-3006.0-150400.8.66.2
* salt-minion-3006.0-150400.8.66.2
* salt-3006.0-150400.8.66.2
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* salt-proxy-3006.0-150400.8.66.2
* salt-ssh-3006.0-150400.8.66.2
* salt-api-3006.0-150400.8.66.2
* salt-minion-3006.0-150400.8.66.2
* salt-standalone-formulas-configuration-3006.0-150400.8.66.2
* python3-salt-3006.0-150400.8.66.2
* salt-doc-3006.0-150400.8.66.2
* salt-cloud-3006.0-150400.8.66.2
* salt-master-3006.0-150400.8.66.2
* salt-syndic-3006.0-150400.8.66.2
* salt-3006.0-150400.8.66.2
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch)
* salt-zsh-completion-3006.0-150400.8.66.2
* salt-bash-completion-3006.0-150400.8.66.2
* salt-fish-completion-3006.0-150400.8.66.2
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* salt-proxy-3006.0-150400.8.66.2
* salt-ssh-3006.0-150400.8.66.2
* salt-api-3006.0-150400.8.66.2
* salt-minion-3006.0-150400.8.66.2
* salt-standalone-formulas-configuration-3006.0-150400.8.66.2
* python3-salt-3006.0-150400.8.66.2
* salt-doc-3006.0-150400.8.66.2
* salt-cloud-3006.0-150400.8.66.2
* salt-master-3006.0-150400.8.66.2
* salt-syndic-3006.0-150400.8.66.2
* salt-3006.0-150400.8.66.2
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch)
* salt-zsh-completion-3006.0-150400.8.66.2
* salt-bash-completion-3006.0-150400.8.66.2
* salt-fish-completion-3006.0-150400.8.66.2
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64)
* python3-salt-3006.0-150400.8.66.2
* salt-doc-3006.0-150400.8.66.2
* salt-minion-3006.0-150400.8.66.2
* salt-3006.0-150400.8.66.2
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch)
* salt-zsh-completion-3006.0-150400.8.66.2
* salt-bash-completion-3006.0-150400.8.66.2
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x
x86_64)
* salt-proxy-3006.0-150400.8.66.2
* salt-ssh-3006.0-150400.8.66.2
* salt-transactional-update-3006.0-150400.8.66.2
* salt-api-3006.0-150400.8.66.2
* salt-minion-3006.0-150400.8.66.2
* salt-standalone-formulas-configuration-3006.0-150400.8.66.2
* python3-salt-3006.0-150400.8.66.2
* salt-doc-3006.0-150400.8.66.2
* salt-cloud-3006.0-150400.8.66.2
* salt-master-3006.0-150400.8.66.2
* salt-syndic-3006.0-150400.8.66.2
* salt-3006.0-150400.8.66.2
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch)
* salt-zsh-completion-3006.0-150400.8.66.2
* salt-bash-completion-3006.0-150400.8.66.2
* salt-fish-completion-3006.0-150400.8.66.2
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* salt-proxy-3006.0-150400.8.66.2
* salt-ssh-3006.0-150400.8.66.2
* salt-api-3006.0-150400.8.66.2
* salt-minion-3006.0-150400.8.66.2
* salt-standalone-formulas-configuration-3006.0-150400.8.66.2
* python3-salt-3006.0-150400.8.66.2
* salt-doc-3006.0-150400.8.66.2
* salt-cloud-3006.0-150400.8.66.2
* salt-master-3006.0-150400.8.66.2
* salt-syndic-3006.0-150400.8.66.2
* salt-3006.0-150400.8.66.2
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch)
* salt-zsh-completion-3006.0-150400.8.66.2
* salt-bash-completion-3006.0-150400.8.66.2
* salt-fish-completion-3006.0-150400.8.66.2
* SUSE Manager Proxy 4.3 (x86_64)
* salt-proxy-3006.0-150400.8.66.2
* salt-ssh-3006.0-150400.8.66.2
* salt-api-3006.0-150400.8.66.2
* salt-minion-3006.0-150400.8.66.2
* salt-standalone-formulas-configuration-3006.0-150400.8.66.2
* python3-salt-3006.0-150400.8.66.2
* salt-doc-3006.0-150400.8.66.2
* salt-cloud-3006.0-150400.8.66.2
* salt-master-3006.0-150400.8.66.2
* salt-syndic-3006.0-150400.8.66.2
* salt-3006.0-150400.8.66.2
* SUSE Manager Proxy 4.3 (noarch)
* salt-zsh-completion-3006.0-150400.8.66.2
* salt-bash-completion-3006.0-150400.8.66.2
* salt-fish-completion-3006.0-150400.8.66.2
* SUSE Manager Retail Branch Server 4.3 (x86_64)
* salt-proxy-3006.0-150400.8.66.2
* salt-ssh-3006.0-150400.8.66.2
* salt-api-3006.0-150400.8.66.2
* salt-minion-3006.0-150400.8.66.2
* salt-standalone-formulas-configuration-3006.0-150400.8.66.2
* python3-salt-3006.0-150400.8.66.2
* salt-doc-3006.0-150400.8.66.2
* salt-cloud-3006.0-150400.8.66.2
* salt-master-3006.0-150400.8.66.2
* salt-syndic-3006.0-150400.8.66.2
* salt-3006.0-150400.8.66.2
* SUSE Manager Retail Branch Server 4.3 (noarch)
* salt-zsh-completion-3006.0-150400.8.66.2
* salt-bash-completion-3006.0-150400.8.66.2
* salt-fish-completion-3006.0-150400.8.66.2
* SUSE Manager Server 4.3 (ppc64le s390x x86_64)
* salt-proxy-3006.0-150400.8.66.2
* salt-ssh-3006.0-150400.8.66.2
* salt-api-3006.0-150400.8.66.2
* salt-minion-3006.0-150400.8.66.2
* salt-standalone-formulas-configuration-3006.0-150400.8.66.2
* python3-salt-3006.0-150400.8.66.2
* salt-doc-3006.0-150400.8.66.2
* salt-cloud-3006.0-150400.8.66.2
* salt-master-3006.0-150400.8.66.2
* salt-syndic-3006.0-150400.8.66.2
* salt-3006.0-150400.8.66.2
* SUSE Manager Server 4.3 (noarch)
* salt-zsh-completion-3006.0-150400.8.66.2
* salt-bash-completion-3006.0-150400.8.66.2
* salt-fish-completion-3006.0-150400.8.66.2
## References:
* https://bugzilla.suse.com/show_bug.cgi?id=1222684
* https://jira.suse.com/browse/MSQA-848
1
0
17 Sep '24
# Recommended update for salt
Announcement ID: SUSE-RU-2024:3287-1
Rating: moderate
References:
* bsc#1222684
* jsc#MSQA-848
Affected Products:
* Basesystem Module 15-SP5
* Basesystem Module 15-SP6
* openSUSE Leap 15.5
* openSUSE Leap 15.6
* openSUSE Leap Micro 5.5
* Server Applications Module 15-SP5
* Server Applications Module 15-SP6
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise Desktop 15 SP6
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* Transactional Server Module 15-SP5
* Transactional Server Module 15-SP6
An update that contains one feature and has one fix can now be installed.
## Description:
This update for salt fixes the following issues:
* Fix rich rule comparison in firewalld module (bsc#1222684)
* test_vultrpy: adjust test expectation to prevent failure after Debian 10 EOL
* Make auth.pam more robust with Salt Bundle and fix tests
* Fix performance of user.list_groups with many remote groups
* Fix "status.diskusage" function and exclude some tests for Salt Bundle
* Skip certain tests if necessary for some OSes and set flaky ones
* Add a timer to delete old env post update for venv-minion
* Several fixes for tests to avoid errors and failures in some OSes
## Special Instructions and Notes:
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.5
zypper in -t patch SUSE-2024-3287=1 openSUSE-SLE-15.5-2024-3287=1
* openSUSE Leap Micro 5.5
zypper in -t patch openSUSE-Leap-Micro-5.5-2024-3287=1
* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2024-3287=1
* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2024-3287=1
* Basesystem Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-3287=1
* Basesystem Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-3287=1
* Server Applications Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP5-2024-3287=1
* Server Applications Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2024-3287=1
* Transactional Server Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Transactional-Server-15-SP5-2024-3287=1
* Transactional Server Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Transactional-Server-15-SP6-2024-3287=1
## Package List:
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586)
* salt-minion-3006.0-150500.4.41.2
* salt-doc-3006.0-150500.4.41.2
* salt-standalone-formulas-configuration-3006.0-150500.4.41.2
* python3-salt-3006.0-150500.4.41.2
* salt-transactional-update-3006.0-150500.4.41.2
* salt-3006.0-150500.4.41.2
* salt-ssh-3006.0-150500.4.41.2
* salt-master-3006.0-150500.4.41.2
* salt-syndic-3006.0-150500.4.41.2
* python3-salt-testsuite-3006.0-150500.4.41.1
* salt-api-3006.0-150500.4.41.2
* salt-proxy-3006.0-150500.4.41.2
* salt-cloud-3006.0-150500.4.41.2
* openSUSE Leap 15.5 (noarch)
* salt-fish-completion-3006.0-150500.4.41.2
* salt-bash-completion-3006.0-150500.4.41.2
* salt-zsh-completion-3006.0-150500.4.41.2
* openSUSE Leap Micro 5.5 (aarch64 s390x x86_64)
* salt-transactional-update-3006.0-150500.4.41.2
* salt-minion-3006.0-150500.4.41.2
* salt-3006.0-150500.4.41.2
* python3-salt-3006.0-150500.4.41.2
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64)
* salt-minion-3006.0-150500.4.41.2
* salt-doc-3006.0-150500.4.41.2
* salt-standalone-formulas-configuration-3006.0-150500.4.41.2
* python3-salt-3006.0-150500.4.41.2
* salt-transactional-update-3006.0-150500.4.41.2
* salt-3006.0-150500.4.41.2
* salt-ssh-3006.0-150500.4.41.2
* python3-salt-testsuite-3006.0-150500.4.41.1
* salt-master-3006.0-150500.4.41.2
* salt-syndic-3006.0-150500.4.41.2
* salt-api-3006.0-150500.4.41.2
* salt-proxy-3006.0-150500.4.41.2
* salt-cloud-3006.0-150500.4.41.2
* openSUSE Leap 15.6 (noarch)
* salt-fish-completion-3006.0-150500.4.41.2
* salt-bash-completion-3006.0-150500.4.41.2
* salt-zsh-completion-3006.0-150500.4.41.2
* SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64)
* salt-transactional-update-3006.0-150500.4.41.2
* salt-minion-3006.0-150500.4.41.2
* salt-3006.0-150500.4.41.2
* python3-salt-3006.0-150500.4.41.2
* Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* salt-minion-3006.0-150500.4.41.2
* salt-3006.0-150500.4.41.2
* python3-salt-3006.0-150500.4.41.2
* salt-doc-3006.0-150500.4.41.2
* Basesystem Module 15-SP5 (noarch)
* salt-bash-completion-3006.0-150500.4.41.2
* salt-zsh-completion-3006.0-150500.4.41.2
* Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* salt-minion-3006.0-150500.4.41.2
* salt-3006.0-150500.4.41.2
* python3-salt-3006.0-150500.4.41.2
* salt-doc-3006.0-150500.4.41.2
* Basesystem Module 15-SP6 (noarch)
* salt-bash-completion-3006.0-150500.4.41.2
* salt-zsh-completion-3006.0-150500.4.41.2
* Server Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* salt-standalone-formulas-configuration-3006.0-150500.4.41.2
* salt-ssh-3006.0-150500.4.41.2
* salt-master-3006.0-150500.4.41.2
* salt-syndic-3006.0-150500.4.41.2
* salt-api-3006.0-150500.4.41.2
* salt-proxy-3006.0-150500.4.41.2
* salt-cloud-3006.0-150500.4.41.2
* Server Applications Module 15-SP5 (noarch)
* salt-fish-completion-3006.0-150500.4.41.2
* Server Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* salt-standalone-formulas-configuration-3006.0-150500.4.41.2
* salt-ssh-3006.0-150500.4.41.2
* salt-master-3006.0-150500.4.41.2
* salt-syndic-3006.0-150500.4.41.2
* salt-api-3006.0-150500.4.41.2
* salt-proxy-3006.0-150500.4.41.2
* salt-cloud-3006.0-150500.4.41.2
* Server Applications Module 15-SP6 (noarch)
* salt-fish-completion-3006.0-150500.4.41.2
* Transactional Server Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* salt-transactional-update-3006.0-150500.4.41.2
* Transactional Server Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* salt-transactional-update-3006.0-150500.4.41.2
## References:
* https://bugzilla.suse.com/show_bug.cgi?id=1222684
* https://jira.suse.com/browse/MSQA-848
1
0
SUSE-SU-2024:3288-1: important: Security update for golang-github-prometheus-prometheus
by OPENSUSE-UPDATES 17 Sep '24
by OPENSUSE-UPDATES 17 Sep '24
17 Sep '24
# Security update for golang-github-prometheus-prometheus
Announcement ID: SUSE-SU-2024:3288-1
Rating: important
References:
* bsc#1204023
* bsc#1208298
* bsc#1227038
* bsc#1228556
* jsc#MSQA-848
* jsc#PED-3577
* jsc#PED-5406
Cross-References:
* CVE-2022-41715
* CVE-2022-41723
* CVE-2023-45142
* CVE-2024-6104
CVSS scores:
* CVE-2022-41715 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2022-41715 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2022-41723 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2022-41723 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2023-45142 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2023-45142 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-6104 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
* CVE-2024-6104 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Affected Products:
* openSUSE Leap 15.5
* openSUSE Leap 15.6
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise Desktop 15 SP6
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Manager Proxy 4.3
* SUSE Manager Proxy 4.3 Module 4.3
* SUSE Manager Retail Branch Server 4.3
* SUSE Package Hub 15 15-SP5
* SUSE Package Hub 15 15-SP6
An update that solves four vulnerabilities and contains three features can now
be installed.
## Description:
This update for golang-github-prometheus-prometheus fixes the following issues:
* Require Go > 1.20 for building
* Bump go-retryablehttp to version 0.7.7 (CVE-2024-6104, bsc#1227038)
* Migrate from `disabled` to `manual` service mode
* Add0003-Bump-go-retryablehttp.patch
* Update to 2.45.6 (jsc#PED-3577):
* Security fixes in dependencies
* Update to 2.45.5:
* [BUGFIX] tsdb/agent: ensure that new series get written to WAL on rollback.
* [BUGFIX] Remote write: Avoid a race condition when applying configuration.
* Update to 2.45.4:
* [BUGFIX] Remote read: Release querier resources before encoding the results.
* Update to 2.45.3:
* Security fixes in dependencies
* [BUGFIX] TSDB: Remove double memory snapshot on shutdown.
* Update to 2.45.2:
* Security fixes in dependencies
* [SECURITY] Updated otelhttp to version 0.46.1 (CVE-2023-45142, bsc#1228556)
* [BUGFIX] TSDB: Fix PostingsForMatchers race with creating new series.
* Update to 2.45.1:
* [ENHANCEMENT] Hetzner SD: Support larger ID's that will be used by Hetzner
in September.
* [BUGFIX] Linode SD: Cast InstanceSpec values to int64 to avoid overflows on
386 architecture.
* [BUGFIX] TSDB: Handle TOC parsing failures.
* update to 2.45.0 (jsc#PED-5406):
* [FEATURE] API: New limit parameter to limit the number of items returned by
`/api/v1/status/tsdb` endpoint.
* [FEATURE] Config: Add limits to global config.
* [FEATURE] Consul SD: Added support for `path_prefix`.
* [FEATURE] Native histograms: Add option to scrape both classic and native
histograms.
* [FEATURE] Native histograms: Added support for two more arithmetic operators
`avg_over_time` and `sum_over_time`.
* [FEATURE] Promtool: When providing the block id, only one block will be
loaded and analyzed.
* [FEATURE] Remote-write: New Azure ad configuration to support remote writing
directly to Azure Monitor workspace.
* [FEATURE] TSDB: Samples per chunk are now configurable with flag
`storage.tsdb.samples-per-chunk`. By default set to its former value 120.
* [ENHANCEMENT] Native histograms: bucket size can now be limited to avoid
scrape fails.
* [ENHANCEMENT] TSDB: Dropped series are now deleted from the WAL sooner.
* [BUGFIX] Native histograms: ChunkSeries iterator now checks if a new sample
can be appended to the open chunk.
* [BUGFIX] Native histograms: Fix Histogram Appender `Appendable()` segfault.
* [BUGFIX] Native histograms: Fix setting reset header to gauge histograms in
seriesToChunkEncoder.
* [BUGFIX] TSDB: Tombstone intervals are not modified after Get() call.
* [BUGFIX] TSDB: Use path/filepath to set the WAL directory.
* update to 2.44.0:
* [FEATURE] Remote-read: Handle native histograms.
* [FEATURE] Promtool: Health and readiness check of prometheus server in CLI.
* [FEATURE] PromQL: Add `query_samples_total` metric, the total number of
samples loaded by all queries.
* [ENHANCEMENT] Storage: Optimise buffer used to iterate through samples.
* [ENHANCEMENT] Scrape: Reduce memory allocations on target labels.
* [ENHANCEMENT] PromQL: Use faster heap method for `topk()` / `bottomk()`.
* [ENHANCEMENT] Rules API: Allow filtering by rule name.
* [ENHANCEMENT] Native Histograms: Various fixes and improvements.
* [ENHANCEMENT] UI: Search of scraping pools is now case-insensitive.
* [ENHANCEMENT] TSDB: Add an affirmative log message for successful WAL
repair.
* [BUGFIX] TSDB: Block compaction failed when shutting down.
* [BUGFIX] TSDB: Out-of-order chunks could be ignored if the write-behind log
was deleted.
* rebase patch 0001-Do-not-force-the-pure-Go-name-resolver.patch onto v2.44.0
* update to 2.43.1
* [BUGFIX] Labels: Set() after Del() would be ignored, which broke some
relabeling rules.
* update to 2.43.0:
* [FEATURE] Promtool: Add HTTP client configuration to query commands.
* [FEATURE] Scrape: Add `include_scrape_configs` to include scrape configs
from different files.
* [FEATURE] HTTP client: Add `no_proxy` to exclude URLs from proxied requests.
* [FEATURE] HTTP client: Add `proxy_from_enviroment` to read proxies from env
variables.
* [ENHANCEMENT] API: Add support for setting lookback delta per query via the
API.
* [ENHANCEMENT] API: Change HTTP status code from 503/422 to 499 if a request
is canceled.
* [ENHANCEMENT] Scrape: Allow exemplars for all metric types.
* [ENHANCEMENT] TSDB: Add metrics for head chunks and WAL folders size.
* [ENHANCEMENT] TSDB: Automatically remove incorrect snapshot with index that
is ahead of WAL.
* [ENHANCEMENT] TSDB: Improve Prometheus parser error outputs to be more
comprehensible.
* [ENHANCEMENT] UI: Scope `group by` labels to metric in autocompletion.
* [BUGFIX] Scrape: Fix `prometheus_target_scrape_pool_target_limit` metric not
set before reloading.
* [BUGFIX] TSDB: Correctly update `prometheus_tsdb_head_chunks_removed_total`
and `prometheus_tsdb_head_chunks` metrics when reading WAL.
* [BUGFIX] TSDB: Use the correct unit (seconds) when recording out-of-order
append deltas in the `prometheus_tsdb_sample_ooo_delta` metric.
* update to 2.42.0: This release comes with a bunch of feature coverage for
native histograms and breaking changes. If you are trying native histograms
already, we recommend you remove the `wal` directory when upgrading. Because
the old WAL record for native histograms is not backward compatible in
v2.42.0, this will lead to some data loss for the latest data. Additionally,
if you scrape "float histograms" or use recording rules on native histograms
in v2.42.0 (which writes float histograms), it is a one-way street since
older versions do not support float histograms.
* [CHANGE] **breaking** TSDB: Changed WAL record format for the experimental
native histograms.
* [FEATURE] Add 'keep_firing_for' field to alerting rules.
* [FEATURE] Promtool: Add support of selecting timeseries for TSDB dump.
* [ENHANCEMENT] Agent: Native histogram support.
* [ENHANCEMENT] Rules: Support native histograms in recording rules.
* [ENHANCEMENT] SD: Add container ID as a meta label for pod targets for
Kubernetes.
* [ENHANCEMENT] SD: Add VM size label to azure service discovery.
* [ENHANCEMENT] Support native histograms in federation.
* [ENHANCEMENT] TSDB: Add gauge histogram support.
* [ENHANCEMENT] TSDB/Scrape: Support FloatHistogram that represents buckets as
float64 values.
* [ENHANCEMENT] UI: Show individual scrape pools on /targets page.
* update to 2.41.0:
* [FEATURE] Relabeling: Add keepequal and dropequal relabel actions.
* [FEATURE] Add support for HTTP proxy headers.
* [ENHANCEMENT] Reload private certificates when changed on disk.
* [ENHANCEMENT] Add max_version to specify maximum TLS version in tls_config.
* [ENHANCEMENT] Add goos and goarch labels to prometheus_build_info.
* [ENHANCEMENT] SD: Add proxy support for EC2 and LightSail SDs.
* [ENHANCEMENT] SD: Add new metric prometheus_sd_file_watcher_errors_total.
* [ENHANCEMENT] Remote Read: Use a pool to speed up marshalling.
* [ENHANCEMENT] TSDB: Improve handling of tombstoned chunks in iterators.
* [ENHANCEMENT] TSDB: Optimize postings offset table reading.
* [BUGFIX] Scrape: Validate the metric name, label names, and label values
after relabeling.
* [BUGFIX] Remote Write receiver and rule manager: Fix error handling.
* update to 2.40.7:
* [BUGFIX] TSDB: Fix queries involving negative buckets of native histograms.
* update to 2.40.5:
* [BUGFIX] TSDB: Fix queries involving native histograms due to improper reset
of iterators.
* update to 2.40.3:
* [BUGFIX] TSDB: Fix compaction after a deletion is called.
* update to 2.40.2:
* [BUGFIX] UI: Fix black-on-black metric name color in dark mode.
* update to 2.40.1:
* [BUGFIX] TSDB: Fix alignment for atomic int64 for 32 bit architecture.
* [BUGFIX] Scrape: Fix accept headers.
* update to 2.40.0:
* [FEATURE] Add experimental support for native histograms. Enable with the
flag --enable-feature=native-histograms.
* [FEATURE] SD: Add service discovery for OVHcloud.
* [ENHANCEMENT] Kubernetes SD: Use protobuf encoding.
* [ENHANCEMENT] TSDB: Use golang.org/x/exp/slices for improved sorting speed.
* [ENHANCEMENT] Consul SD: Add enterprise admin partitions. Adds
__meta_consul_partition label. Adds partition config in consul_sd_config.
* [BUGFIX] API: Fix API error codes for /api/v1/labels and /api/v1/series.
* update to 2.39.1:
* [BUGFIX] Rules: Fix notifier relabel changing the labels on active alerts.
* update to 2.39.0:
* [FEATURE] experimental TSDB: Add support for ingesting out-of-order samples.
This is configured via out_of_order_time_window field in the config file;
check config file docs for more info.
* [ENHANCEMENT] API: /-/healthy and /-/ready API calls now also respond to a
HEAD request on top of existing GET support.
* [ENHANCEMENT] PuppetDB SD: Add __meta_puppetdb_query label.
* [ENHANCEMENT] AWS EC2 SD: Add __meta_ec2_region label.
* [ENHANCEMENT] AWS Lightsail SD: Add __meta_lightsail_region label.
* [ENHANCEMENT] Scrape: Optimise relabeling by re-using memory.
* [ENHANCEMENT] TSDB: Improve WAL replay timings.
* [ENHANCEMENT] TSDB: Optimise memory by not storing unnecessary data in the
memory.
* [ENHANCEMENT] TSDB: Allow overlapping blocks by default.
\--storage.tsdb.allow-overlapping-blocks now has no effect.
* [ENHANCEMENT] UI: Click to copy label-value pair from query result to
clipboard.
* [BUGFIX] TSDB: Turn off isolation for Head compaction to fix a memory leak.
* [BUGFIX] TSDB: Fix 'invalid magic number 0' error on Prometheus startup.
* [BUGFIX] PromQL: Properly close file descriptor when logging unfinished
queries.
* [BUGFIX] Agent: Fix validation of flag options and prevent WAL from growing
more than desired.
* update to 2.38.0:
* [FEATURE]: Web: Add a /api/v1/format_query HTTP API endpoint that allows
pretty-formatting PromQL expressions.
* [FEATURE]: UI: Add support for formatting PromQL expressions in the UI.
* [FEATURE]: DNS SD: Support MX records for discovering targets.
* [FEATURE]: Templates: Add toTime() template function that allows converting
sample timestamps to Go time.Time values.
* [ENHANCEMENT]: Kubernetes SD: Add __meta_kubernetes_service_port_number meta
label indicating the service port number.
* [ENHANCEMENT]: Kubernetes SD: Add __meta_kubernetes_pod_container_image meta
label indicating the container image.
* [ENHANCEMENT]: PromQL: When a query panics, also log the query itself
alongside the panic message.
* [ENHANCEMENT]: UI: Tweak colors in the dark theme to improve the contrast
ratio.
* [ENHANCEMENT]: Web: Speed up calls to /api/v1/rules by avoiding locks and
using atomic types instead.
* [ENHANCEMENT]: Scrape: Add a no-default-scrape-port feature flag, which
omits or removes any default HTTP (:80) or HTTPS (:443) ports in the
target's scrape address.
* [BUGFIX]: TSDB: In the WAL watcher metrics, expose the type="exemplar" label
instead of type="unknown" for exemplar records.
* [BUGFIX]: TSDB: Fix race condition around allocating series IDs during chunk
snapshot loading.
* Remove npm_licenses.tar.bz2 during "make clean"
* Remove web-ui archives during "make clean".
* [SECURITY] CVE-2022-41715: Limit memory used by parsing regexps
(bsc#1204023).
* Fix uncontrolled resource consumption by updating Go to version 1.20.1
(CVE-2022-41723, bsc#1208298)
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-3288=1
* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2024-3288=1
* SUSE Package Hub 15 15-SP5
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-3288=1
* SUSE Package Hub 15 15-SP6
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-3288=1
* SUSE Manager Proxy 4.3 Module 4.3
zypper in -t patch SUSE-SLE-Module-SUSE-Manager-Proxy-4.3-2024-3288=1
## Package List:
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* golang-github-prometheus-prometheus-2.45.6-150100.4.20.1
* firewalld-prometheus-config-0.1-150100.4.20.1
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64)
* golang-github-prometheus-prometheus-2.45.6-150100.4.20.1
* firewalld-prometheus-config-0.1-150100.4.20.1
* SUSE Package Hub 15 15-SP5 (aarch64 ppc64le s390x x86_64)
* golang-github-prometheus-prometheus-2.45.6-150100.4.20.1
* SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64)
* golang-github-prometheus-prometheus-2.45.6-150100.4.20.1
* SUSE Manager Proxy 4.3 Module 4.3 (aarch64 ppc64le s390x x86_64)
* golang-github-prometheus-prometheus-2.45.6-150100.4.20.1
## References:
* https://www.suse.com/security/cve/CVE-2022-41715.html
* https://www.suse.com/security/cve/CVE-2022-41723.html
* https://www.suse.com/security/cve/CVE-2023-45142.html
* https://www.suse.com/security/cve/CVE-2024-6104.html
* https://bugzilla.suse.com/show_bug.cgi?id=1204023
* https://bugzilla.suse.com/show_bug.cgi?id=1208298
* https://bugzilla.suse.com/show_bug.cgi?id=1227038
* https://bugzilla.suse.com/show_bug.cgi?id=1228556
* https://jira.suse.com/browse/MSQA-848
* https://jira.suse.com/browse/PED-3577
* https://jira.suse.com/browse/PED-5406
1
0