SUSE-SU-2019:0629-1: moderate: Security update for yast2-rmt
sle-security-updates at lists.suse.com
sle-security-updates at lists.suse.com
Mon Mar 18 08:14:01 MDT 2019
SUSE Security Update: Security update for yast2-rmt
______________________________________________________________________________
Announcement ID: SUSE-SU-2019:0629-1
Rating: moderate
References: #1119835 #1120672 #1123562
Cross-References: CVE-2018-20105
Affected Products:
SUSE Linux Enterprise Module for Server Applications 15
______________________________________________________________________________
An update that solves one vulnerability and has two fixes
is now available.
Description:
This update for yast2-rmt to 1.2.2 fixes the following issues:
Security issue fixed:
- CVE-2018-20105: Pass SSL password to Cheetah CLI interface securely
(bsc#1119835)
Non-security issues fixed:
- Launch as root from gnome-shell menu (bsc#1123562)
- Remove broken hyperlink from help (bsc#1120672)
Patch Instructions:
To install this SUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- SUSE Linux Enterprise Module for Server Applications 15:
zypper in -t patch SUSE-SLE-Module-Server-Applications-15-2019-629=1
Package List:
- SUSE Linux Enterprise Module for Server Applications 15 (noarch):
yast2-rmt-1.2.2-3.18.1
References:
https://www.suse.com/security/cve/CVE-2018-20105.html
https://bugzilla.suse.com/1119835
https://bugzilla.suse.com/1120672
https://bugzilla.suse.com/1123562
More information about the sle-security-updates
mailing list