SUSE-SU-2023:3136-1: critical: Maintenance update for SUSE Manager 4.3.7 Release Notes

Wed Aug 2 08:45:44 UTC 2023

# Maintenance update for SUSE Manager 4.3.7 Release Notes

Announcement ID: SUSE-SU-2023:3136-1  
Rating: critical  
References:

  * #1175823
  * #1179747
  * #1195380
  * #1201337
  * #1204089
  * #1207330
  * #1207550
  * #1207691
  * #1207941
  * #1208528
  * #1208577
  * #1208612
  * #1208720
  * #1208984
  * #1209156
  * #1210011
  * #1210103
  * #1210394
  * #1210406
  * #1210456
  * #1210475
  * #1210659
  * #1210834
  * #1210957
  * #1210994
  * #1211062
  * #1211276
  * #1211330
  * #1211469
  * #1211621
  * #1211650
  * #1211713
  * #1211897
  * #1211929
  * #1212032
  * #1212550
  * #1212588
  * #1212700
  * #1212770
  * #1212771
  * #1213432

Cross-References:

  * CVE-2023-2183
  * CVE-2023-2801
  * CVE-2023-3128

CVSS scores:

  * CVE-2023-2183 ( SUSE ):  4.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:N/A:N
  * CVE-2023-2183 ( NVD ):  4.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:N/A:N
  * CVE-2023-2801 ( SUSE ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2023-2801 ( NVD ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2023-3128 ( SUSE ):  9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
  * CVE-2023-3128 ( NVD ):  9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

Affected Products:

  * openSUSE Leap 15.4

An update that solves three vulnerabilities, contains one feature and has 38
fixes can now be installed.

## Description:

Maintenance update for SUSE Manager 4.3.7 Release Notes:

This is a codestream only update

## Patch Instructions:

To install this SUSE Critical update use the SUSE recommended installation
methods like YaST online_update or "zypper patch".  
Alternatively you can run the command listed for your product:

  * openSUSE Leap 15.4  
    zypper in -t patch SUSE-2023-3136=1

## Package List:

  * openSUSE Leap 15.4 (noarch)
    * release-notes-susemanager-proxy-4.3.7-150400.3.58.1
    * release-notes-susemanager-4.3.7-150400.3.72.1

## References:

  * https://www.suse.com/security/cve/CVE-2023-2183.html
  * https://www.suse.com/security/cve/CVE-2023-2801.html
  * https://www.suse.com/security/cve/CVE-2023-3128.html
  * https://bugzilla.suse.com/show_bug.cgi?id=1175823
  * https://bugzilla.suse.com/show_bug.cgi?id=1179747
  * https://bugzilla.suse.com/show_bug.cgi?id=1195380
  * https://bugzilla.suse.com/show_bug.cgi?id=1201337
  * https://bugzilla.suse.com/show_bug.cgi?id=1204089
  * https://bugzilla.suse.com/show_bug.cgi?id=1207330
  * https://bugzilla.suse.com/show_bug.cgi?id=1207550
  * https://bugzilla.suse.com/show_bug.cgi?id=1207691
  * https://bugzilla.suse.com/show_bug.cgi?id=1207941
  * https://bugzilla.suse.com/show_bug.cgi?id=1208528
  * https://bugzilla.suse.com/show_bug.cgi?id=1208577
  * https://bugzilla.suse.com/show_bug.cgi?id=1208612
  * https://bugzilla.suse.com/show_bug.cgi?id=1208720
  * https://bugzilla.suse.com/show_bug.cgi?id=1208984
  * https://bugzilla.suse.com/show_bug.cgi?id=1209156
  * https://bugzilla.suse.com/show_bug.cgi?id=1210011
  * https://bugzilla.suse.com/show_bug.cgi?id=1210103
  * https://bugzilla.suse.com/show_bug.cgi?id=1210394
  * https://bugzilla.suse.com/show_bug.cgi?id=1210406
  * https://bugzilla.suse.com/show_bug.cgi?id=1210456
  * https://bugzilla.suse.com/show_bug.cgi?id=1210475
  * https://bugzilla.suse.com/show_bug.cgi?id=1210659
  * https://bugzilla.suse.com/show_bug.cgi?id=1210834
  * https://bugzilla.suse.com/show_bug.cgi?id=1210957
  * https://bugzilla.suse.com/show_bug.cgi?id=1210994
  * https://bugzilla.suse.com/show_bug.cgi?id=1211062
  * https://bugzilla.suse.com/show_bug.cgi?id=1211276
  * https://bugzilla.suse.com/show_bug.cgi?id=1211330
  * https://bugzilla.suse.com/show_bug.cgi?id=1211469
  * https://bugzilla.suse.com/show_bug.cgi?id=1211621
  * https://bugzilla.suse.com/show_bug.cgi?id=1211650
  * https://bugzilla.suse.com/show_bug.cgi?id=1211713
  * https://bugzilla.suse.com/show_bug.cgi?id=1211897
  * https://bugzilla.suse.com/show_bug.cgi?id=1211929
  * https://bugzilla.suse.com/show_bug.cgi?id=1212032
  * https://bugzilla.suse.com/show_bug.cgi?id=1212550
  * https://bugzilla.suse.com/show_bug.cgi?id=1212588
  * https://bugzilla.suse.com/show_bug.cgi?id=1212700
  * https://bugzilla.suse.com/show_bug.cgi?id=1212770
  * https://bugzilla.suse.com/show_bug.cgi?id=1212771
  * https://bugzilla.suse.com/show_bug.cgi?id=1213432
  * https://jira.suse.com/browse/MSQA-679

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/sle-security-updates/attachments/20230802/1a20fdc0/attachment.htm>