<div class="container">
<h1>Maintenance update for SUSE Manager 4.2: Server, Proxy and Retail Branch Server</h1>
<table class="table table-striped table-bordered">
<tbody>
<tr>
<th>Announcement ID:</th>
<td>SUSE-SU-2023:1831-1</td>
</tr>
<tr>
<th>Rating:</th>
<td>important</td>
</tr>
<tr>
<th>References:</th>
<td>
<ul>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1179926">bsc#1179926</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1197027">bsc#1197027</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1206562">bsc#1206562</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1206973">bsc#1206973</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207063">bsc#1207063</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207308">bsc#1207308</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207352">bsc#1207352</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207490">bsc#1207490</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207799">bsc#1207799</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207829">bsc#1207829</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207830">bsc#1207830</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207838">bsc#1207838</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207883">bsc#1207883</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1208288">bsc#1208288</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1208321">bsc#1208321</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1208325">bsc#1208325</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1208586">bsc#1208586</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1208687">bsc#1208687</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1208719">bsc#1208719</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1208772">bsc#1208772</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1208908">bsc#1208908</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1209369">bsc#1209369</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1209386">bsc#1209386</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1209434">bsc#1209434</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1209703">bsc#1209703</a>
</li>
<li style="display: inline;">
<a href="https://jira.suse.com/browse/PED-2777">jsc#PED-2777</a>
</li>
</ul>
</td>
</tr>
<tr>
<th>
Cross-References:
</th>
<td>
<ul>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2020-8908.html">CVE-2020-8908</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2022-0860.html">CVE-2022-0860</a>
</li>
<li style="display: inline;">
<a href="https://www.suse.com/security/cve/CVE-2023-22644.html">CVE-2023-22644</a>
</li>
</ul>
</td>
</tr>
<tr>
<th>CVSS scores:</th>
<td>
<ul class="list-group">
<li class="list-group-item">
<span class="cvss-reference">CVE-2020-8908</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">4.0</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2020-8908</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">3.3</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2022-0860</span>
<span class="cvss-source">
(
SUSE
):
</span>
<span class="cvss-score">8.2</span>
<span class="cvss-vector">CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2022-0860</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">9.1</span>
<span class="cvss-vector">CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N</span>
</li>
<li class="list-group-item">
<span class="cvss-reference">CVE-2023-22644</span>
<span class="cvss-source">
(
NVD
):
</span>
<span class="cvss-score">3.8</span>
<span class="cvss-vector">CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N</span>
</li>
</ul>
</td>
</tr>
<tr>
<th>Affected Products:</th>
<td>
<ul class="list-group">
<li class="list-group-item">Development Tools Module 15-SP4</li>
<li class="list-group-item">openSUSE Leap 15.4</li>
<li class="list-group-item">SUSE Enterprise Storage 7</li>
<li class="list-group-item">SUSE Enterprise Storage 7.1</li>
<li class="list-group-item">SUSE Linux Enterprise Desktop 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing 15 SP2</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing 15 SP3</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing LTSS 15 SP3</li>
<li class="list-group-item">SUSE Linux Enterprise Real Time 15 SP3</li>
<li class="list-group-item">SUSE Linux Enterprise Real Time 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP2</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP3</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise Server for SAP Applications 15 SP2</li>
<li class="list-group-item">SUSE Linux Enterprise Server for SAP Applications 15 SP3</li>
<li class="list-group-item">SUSE Linux Enterprise Server for SAP Applications 15 SP4</li>
<li class="list-group-item">SUSE Manager Proxy 4.2</li>
<li class="list-group-item">SUSE Manager Proxy 4.2 Module 4.2</li>
<li class="list-group-item">SUSE Manager Proxy 4.3</li>
<li class="list-group-item">SUSE Manager Retail Branch Server 4.2</li>
<li class="list-group-item">SUSE Manager Retail Branch Server 4.3</li>
<li class="list-group-item">SUSE Manager Server 4.2</li>
<li class="list-group-item">SUSE Manager Server 4.2 Module 4.2</li>
<li class="list-group-item">SUSE Manager Server 4.3</li>
</ul>
</td>
</tr>
</tbody>
</table>
<p>An update that solves three vulnerabilities, contains one feature and has 22 security fixes can now be installed.</p>
<h2>Security update for SUSE Manager Server 4.2</h2>
<h3>Description:</h3>
<p>This update fixes the following issues:</p>
<p>cobbler:</p>
<ul>
<li>CVE-2022-0860: Unbreak PAM authentication due to missing encode of user input in the PAM auth module of
Cobbler (bsc#1197027)</li>
<li>Fix S390X auto-installation for cases where kernel options are longer than 79 characters (bsc#1207308)</li>
<li>Switch packaging from patch based to Git tree based development</li>
<li>All patches that are being removed in this revision are contained in the new Git tree.</li>
</ul>
<p>guava:</p>
<ul>
<li>Upgrade to guava 30.1.1</li>
<li>CVE-2020-8908: temp directory creation vulnerability in Guava versions prior to 30.0. (bsc#1179926)</li>
<li>Remove parent reference from ALL distributed pom files</li>
<li>Avoid version-less dependencies that can cause problems with some tools</li>
<li>Build the package with ant in order to prevent build cycles using a generated and customized ant build system</li>
<li>Produce with Java >= 9 binaries that are compatible with Java 8</li>
</ul>
<p>jsr-305:</p>
<ul>
<li>Deliver jsr-305 to SUSE Manager as Guava dependency</li>
</ul>
<p>mgr-libmod:</p>
<ul>
<li>Version 4.2.8-1</li>
<li>Ignore extra metadata fields for Liberty Linux (bsc#1208908)</li>
</ul>
<p>spacecmd:</p>
<ul>
<li>Version 4.2.22-1</li>
<li>Display activation key details after executing the corresponding command (bsc#1208719)</li>
<li>Show targetted packages before actually removing them (bsc#1207830)</li>
<li>Fix spacecmd not showing any output for softwarechannel_diff and softwarechannel_errata_diff (bsc#1207352)</li>
</ul>
<p>spacewalk-backend:</p>
<ul>
<li>Version 4.2.27-1</li>
<li>Fix the mgr-inter-sync not creating valid repository metadata when dealing with empty channels (bsc#1207829)</li>
<li>Fix repo sync for cloud "Pay As You Go" connected repositories (bsc#1208772)</li>
<li>Fix issues with kickstart syncing on mirrorlist repositories</li>
<li>Do not sync .mirrorlist and other non needed files</li>
<li>reposync: catch local file not found urlgrabber error properly (bsc#1208288)</li>
</ul>
<p>spacewalk-client-tools:</p>
<ul>
<li>Version 4.2.23-1</li>
<li>Update translation strings</li>
</ul>
<p>spacewalk-java:</p>
<ul>
<li>Version 4.2.49-1</li>
<li>
<p>Refactor Java notification synchronize to avoid deadlocks (bsc#1209369)</p>
</li>
<li>
<p>Version 4.2.48-1</p>
</li>
<li>Prevent logging formula data (bsc#1209386)</li>
<li>Use gnu-jaf instead of jaf</li>
<li>Use reload4j instead of log4j or log4j12</li>
<li>Use slf4j-reload4j</li>
<li>Save scheduler user when creating Patch actions manually (bsc#1208321)</li>
<li>Add <code>mgr_server_is_uyuni</code> minion pillar item</li>
<li>Do not execute immediately Package Refresh action for the SSH minion (bsc#1208325)</li>
<li>Mark as failed actions that cannot be scheduled because earliest date is too old</li>
<li>Update earliest date when rescheduling failed actions (bsc#1206562)</li>
<li>Fix reconnection of postgres event stream</li>
<li>fix NumberFormatException when syncing Ubuntu errata (bsc#1207883)</li>
<li>Fix duplicate keys in image tables (bsc#1207799)</li>
<li>Fix CLM environments UI for environment labels containing dots (bsc#1207838)</li>
</ul>
<p>spacewalk-search:</p>
<ul>
<li>Version 4.2.10-1</li>
<li>Use reload4j instead of log4j or log4j12</li>
</ul>
<p>spacewalk-web:</p>
<ul>
<li>Version 4.2.34-1</li>
<li>
<p>Fix datetime picker appearing behind modal edge (bsc#1209703) </p>
</li>
<li>
<p>Version 4.2.33-1</p>
</li>
<li>Deprecate jQuery datepicker, integrate React datepicker</li>
<li>Fix CLM environments UI for environment labels containing dots (bsc#1207838)</li>
</ul>
<p>subscription-matcher:</p>
<ul>
<li>Relax antlr version requirement</li>
</ul>
<p>supportutils-plugin-susemanager:</p>
<ul>
<li>Version 4.2.6-1</li>
<li>Fix DB connection check tool (bsc#1208586)</li>
</ul>
<p>susemanager-build-keys:</p>
<ul>
<li>Version 15.3.7 (jsc#PED-2777):</li>
<li>Add new 4096 bit RSA build key gpg-pubkey-3fa1d6ce-63c9481c.asc</li>
<li>add new 4096 bit RSA reserve build key gpg-pubkey-d588dc46-63c939db.asc</li>
<li>Add 2022 2048 bit RSA PTF key suse_ptf_key-6F5DA62B.asc</li>
<li>Add new 4096 bit RSA PTF key suse_ptf_key_2023.asc</li>
</ul>
<p>susemanager-doc-indexes:</p>
<ul>
<li>Removed z196 and z114 from listing in System Z chapter of the Installation and Upgrade Guide (bsc#1206973)</li>
<li>Branding updated for 2023</li>
<li>New search engine optimization improvements for documentation</li>
<li>Translations are now included in the webui help documentation</li>
<li>Local search is now provided with the webui help documentation</li>
</ul>
<p>susemanager-docs_en:</p>
<ul>
<li>Removed z196 and z114 from listing in System Z chapter of the
Installation and Upgrade Guide (bsc#1206973)</li>
<li>Branding updated for 2023</li>
<li>New search engine optimization improvements for documentation</li>
<li>Translations are now included in the WebUI help documentation</li>
<li>Local search is now provided with the WebUI help documentation </li>
</ul>
<p>susemanager-sls:</p>
<ul>
<li>Version 4.2.32-1</li>
<li>Improve error handling in mgr_events.py (bsc#1208687)</li>
</ul>
<p>susemanager-tftpsync:</p>
<ul>
<li>Version 4.2.4-1</li>
<li>Fix removal of proxies section in cobbler settings (bsc#1207063)</li>
</ul>
<p>uyuni-common-libs:</p>
<ul>
<li>Version 4.2.10-1</li>
<li>Allow default component for context manager.</li>
</ul>
<p>virtual-host-gatherer:</p>
<ul>
<li>Version 1.0.25-1</li>
<li>Report total CPU numbers in the libvirt module</li>
</ul>
<p>How to apply this update:</p>
<ol>
<li>Log in as root user to the SUSE Manager Server.</li>
<li>Stop the Spacewalk service:
<code>spacewalk-service stop</code></li>
<li>Apply the patch using either zypper patch or YaST Online Update.</li>
<li>Start the Spacewalk service:
<code>spacewalk-service start</code></li>
</ol>
<h2>Recommended update for SUSE Manager Proxy and Retail Branch Server 4.2</h2>
<h3>Description:</h3>
<p>This update fixes the following issues:</p>
<p>mgr-daemon: </p>
<ul>
<li>Version 4.2.11-1</li>
<li>Update translation strings</li>
</ul>
<p>spacecmd:</p>
<ul>
<li>Version 4.2.22-1</li>
<li>Display activation key details after executing the corresponding command (bsc#1208719)</li>
<li>Show targetted packages before actually removing them (bsc#1207830)</li>
<li>Fix spacecmd not showing any output for softwarechannel_diff and softwarechannel_errata_diff (bsc#1207352)</li>
</ul>
<p>spacewalk-backend:</p>
<ul>
<li>Version 4.2.27-1</li>
<li>Fix the mgr-inter-sync not creating valid repository metadata when dealing with empty channels (bsc#1207829)</li>
<li>fix repo sync for cloud payg connected repositories (bsc#1208772)</li>
<li>Fix issues with kickstart syncing on mirrorlist repositories</li>
<li>Do not sync .mirrorlist and other non needed files</li>
<li>reposync: catch local file not found urlgrabber error properly (bsc#1208288)</li>
</ul>
<p>spacewalk-client-tools:</p>
<ul>
<li>Version 4.2.23-1</li>
<li>Update translation strings</li>
</ul>
<p>spacewalk-proxy:</p>
<ul>
<li>Version 4.2.14-1</li>
<li>Avoid unnecessary debug messages from proxy backend (bsc#1207490)</li>
</ul>
<p>spacewalk-web:</p>
<ul>
<li>Version 4.2.34-1</li>
<li>
<p>Fix datetime picker appearing behind modal edge (bsc#1209703) </p>
</li>
<li>
<p>Version 4.2.33-1</p>
</li>
<li>Deprecate jQuery datepicker, integrate React datepicker</li>
<li>Fix CLM environments UI for environment labels containing dots (bsc#1207838)</li>
</ul>
<p>susemanager-build-keys:</p>
<ul>
<li>Version 15.3.7 (jsc#PED-2777):</li>
<li>Add new 4096 bit RSA build key gpg-pubkey-3fa1d6ce-63c9481c.asc</li>
<li>Add new 4096 bit RSA reserve build key gpg-pubkey-d588dc46-63c939db.asc</li>
<li>Add 2022 2048 bit RSA PTF key suse_ptf_key-6F5DA62B.asc</li>
<li>Add new 4096 bit RSA PTF key suse_ptf_key_2023.asc</li>
</ul>
<p>uyuni-common-libs:</p>
<ul>
<li>Version 4.2.10-1</li>
<li>Allow default component for context manager.</li>
</ul>
<p>How to apply this update:</p>
<ol>
<li>Log in as root user to the SUSE Manager Proxy or Retail Branch Server.</li>
<li>Stop the proxy service:
<code>spacewalk-proxy stop</code></li>
<li>Apply the patch using either zypper patch or YaST Online Update.</li>
<li>Start the Spacewalk service:
<code>spacewalk-proxy start</code></li>
</ol>
<h2>Recommended update for jsr-305</h2>
<h3>Description:</h3>
<p>This update for jsr-305 provides the following fix:</p>
<pre><code>- Ship the correct versions of jsr-305 on SUSE Manager repositories (no source changes).
</code></pre>
<h2>Patch Instructions:</h2>
<p>
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".<br/>
Alternatively you can run the command listed for your product:
</p>
<ul class="list-group">
<li class="list-group-item">
SUSE Manager Proxy 4.2 Module 4.2
<br/>
<code>zypper in -t patch SUSE-SLE-Module-SUSE-Manager-Proxy-4.2-2023-1831=1</code>
</li>
<li class="list-group-item">
SUSE Manager Server 4.2 Module 4.2
<br/>
<code>zypper in -t patch SUSE-SLE-Module-SUSE-Manager-Server-4.2-2023-1831=1</code>
</li>
<li class="list-group-item">
openSUSE Leap 15.4
<br/>
<code>zypper in -t patch openSUSE-SLE-15.4-2023-1831=1</code>
</li>
<li class="list-group-item">
Development Tools Module 15-SP4
<br/>
<code>zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP4-2023-1831=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2
<br/>
<code>zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2023-1831=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3
<br/>
<code>zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-ESPOS-2023-1831=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
<br/>
<code>zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2023-1831=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Real Time 15 SP3
<br/>
<code>zypper in -t patch SUSE-SLE-Product-RT-15-SP3-2023-1831=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2023-1831=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2023-1831=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Server for SAP Applications 15 SP2
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2023-1831=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Server for SAP Applications 15 SP3
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2023-1831=1</code>
</li>
<li class="list-group-item">
SUSE Enterprise Storage 7.1
<br/>
<code>zypper in -t patch SUSE-Storage-7.1-2023-1831=1</code>
</li>
<li class="list-group-item">
SUSE Enterprise Storage 7
<br/>
<code>zypper in -t patch SUSE-Storage-7-2023-1831=1</code>
</li>
</ul>
<h2>Package List:</h2>
<ul>
<li>
SUSE Manager Proxy 4.2 Module 4.2 (noarch)
<ul>
<li>spacewalk-proxy-salt-4.2.14-150300.3.27.6</li>
<li>python3-spacewalk-client-tools-4.2.23-150300.4.33.7</li>
<li>spacewalk-client-setup-4.2.23-150300.4.33.7</li>
<li>spacewalk-base-minimal-4.2.34-150300.3.41.5</li>
<li>python3-spacewalk-client-setup-4.2.23-150300.4.33.7</li>
<li>susemanager-build-keys-15.3.6-150300.3.9.5</li>
<li>spacewalk-client-tools-4.2.23-150300.4.33.7</li>
<li>spacewalk-proxy-management-4.2.14-150300.3.27.6</li>
<li>spacecmd-4.2.22-150300.4.36.7</li>
<li>mgr-daemon-4.2.11-150300.2.12.5</li>
<li>spacewalk-proxy-redirect-4.2.14-150300.3.27.6</li>
<li>spacewalk-check-4.2.23-150300.4.33.7</li>
<li>spacewalk-base-minimal-config-4.2.34-150300.3.41.5</li>
<li>spacewalk-proxy-package-manager-4.2.14-150300.3.27.6</li>
<li>susemanager-build-keys-web-15.3.6-150300.3.9.5</li>
<li>spacewalk-proxy-common-4.2.14-150300.3.27.6</li>
<li>python3-spacewalk-check-4.2.23-150300.4.33.7</li>
<li>spacewalk-proxy-broker-4.2.14-150300.3.27.6</li>
<li>spacewalk-backend-4.2.27-150300.4.38.7</li>
</ul>
</li>
<li>
SUSE Manager Proxy 4.2 Module 4.2 (x86_64)
<ul>
<li>python3-uyuni-common-libs-4.2.10-150300.3.17.6</li>
</ul>
</li>
<li>
SUSE Manager Server 4.2 Module 4.2 (noarch)
<ul>
<li>guava-30.1.1-150300.4.3.4</li>
<li>virtual-host-gatherer-libcloud-1.0.25-150300.3.12.5</li>
<li>virtual-host-gatherer-VMware-1.0.25-150300.3.12.5</li>
<li>spacewalk-backend-package-push-server-4.2.27-150300.4.38.7</li>
<li>spacewalk-backend-xmlrpc-4.2.27-150300.4.38.7</li>
<li>spacewalk-java-lib-4.2.49-150300.3.63.3</li>
<li>spacewalk-backend-app-4.2.27-150300.4.38.7</li>
<li>spacewalk-java-4.2.49-150300.3.63.3</li>
<li>spacewalk-base-minimal-config-4.2.34-150300.3.41.5</li>
<li>susemanager-sls-4.2.32-150300.3.46.5</li>
<li>susemanager-docs_en-pdf-4.2-150300.12.42.5</li>
<li>susemanager-doc-indexes-4.2-150300.12.42.6</li>
<li>subscription-matcher-0.29-150300.6.15.5</li>
<li>virtual-host-gatherer-Nutanix-1.0.25-150300.3.12.5</li>
<li>spacewalk-backend-4.2.27-150300.4.38.7</li>
<li>spacewalk-search-4.2.10-150300.3.18.6</li>
<li>spacewalk-base-minimal-4.2.34-150300.3.41.5</li>
<li>spacewalk-backend-sql-postgresql-4.2.27-150300.4.38.7</li>
<li>mgr-libmod-4.2.8-150300.3.9.6</li>
<li>spacewalk-backend-iss-export-4.2.27-150300.4.38.7</li>
<li>susemanager-docs_en-4.2-150300.12.42.5</li>
<li>supportutils-plugin-susemanager-4.2.6-150300.3.12.5</li>
<li>spacewalk-backend-applet-4.2.27-150300.4.38.7</li>
<li>spacewalk-backend-config-files-common-4.2.27-150300.4.38.7</li>
<li>spacewalk-html-4.2.34-150300.3.41.5</li>
<li>spacewalk-backend-server-4.2.27-150300.4.38.7</li>
<li>spacewalk-backend-config-files-tool-4.2.27-150300.4.38.7</li>
<li>spacewalk-backend-config-files-4.2.27-150300.4.38.7</li>
<li>cobbler-3.1.2-150300.5.22.5</li>
<li>spacewalk-base-4.2.34-150300.3.41.5</li>
<li>spacewalk-backend-xml-export-libs-4.2.27-150300.4.38.7</li>
<li>virtual-host-gatherer-1.0.25-150300.3.12.5</li>
<li>spacewalk-backend-iss-4.2.27-150300.4.38.7</li>
<li>spacecmd-4.2.22-150300.4.36.7</li>
<li>spacewalk-backend-tools-4.2.27-150300.4.38.7</li>
<li>virtual-host-gatherer-Kubernetes-1.0.25-150300.3.12.5</li>
<li>susemanager-build-keys-15.3.6-150300.3.9.5</li>
<li>spacewalk-java-postgresql-4.2.49-150300.3.63.3</li>
<li>jsr-305-3.0.2-150200.3.7.5</li>
<li>python3-spacewalk-client-tools-4.2.23-150300.4.33.7</li>
<li>uyuni-config-modules-4.2.32-150300.3.46.5</li>
<li>spacewalk-client-tools-4.2.23-150300.4.33.7</li>
<li>spacewalk-backend-sql-4.2.27-150300.4.38.7</li>
<li>susemanager-build-keys-web-15.3.6-150300.3.9.5</li>
<li>spacewalk-java-config-4.2.49-150300.3.63.3</li>
<li>spacewalk-taskomatic-4.2.49-150300.3.63.3</li>
</ul>
</li>
<li>
SUSE Manager Server 4.2 Module 4.2 (ppc64le s390x x86_64)
<ul>
<li>susemanager-tftpsync-4.2.4-150300.3.6.6</li>
<li>python3-uyuni-common-libs-4.2.10-150300.3.17.6</li>
</ul>
</li>
<li>
openSUSE Leap 15.4 (noarch)
<ul>
<li>jsr-305-3.0.2-150200.3.7.5</li>
<li>jsr-305-javadoc-3.0.2-150200.3.7.5</li>
</ul>
</li>
<li>
Development Tools Module 15-SP4 (noarch)
<ul>
<li>jsr-305-3.0.2-150200.3.7.5</li>
</ul>
</li>
<li>
SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch)
<ul>
<li>jsr-305-3.0.2-150200.3.7.5</li>
</ul>
</li>
<li>
SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 (noarch)
<ul>
<li>jsr-305-3.0.2-150200.3.7.5</li>
</ul>
</li>
<li>
SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch)
<ul>
<li>jsr-305-3.0.2-150200.3.7.5</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Real Time 15 SP3 (noarch)
<ul>
<li>jsr-305-3.0.2-150200.3.7.5</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch)
<ul>
<li>jsr-305-3.0.2-150200.3.7.5</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch)
<ul>
<li>jsr-305-3.0.2-150200.3.7.5</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch)
<ul>
<li>jsr-305-3.0.2-150200.3.7.5</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch)
<ul>
<li>jsr-305-3.0.2-150200.3.7.5</li>
</ul>
</li>
<li>
SUSE Enterprise Storage 7.1 (noarch)
<ul>
<li>jsr-305-3.0.2-150200.3.7.5</li>
</ul>
</li>
<li>
SUSE Enterprise Storage 7 (noarch)
<ul>
<li>jsr-305-3.0.2-150200.3.7.5</li>
</ul>
</li>
</ul>
<h2>References:</h2>
<ul>
<li>
<a href="https://www.suse.com/security/cve/CVE-2020-8908.html">https://www.suse.com/security/cve/CVE-2020-8908.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2022-0860.html">https://www.suse.com/security/cve/CVE-2022-0860.html</a>
</li>
<li>
<a href="https://www.suse.com/security/cve/CVE-2023-22644.html">https://www.suse.com/security/cve/CVE-2023-22644.html</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1179926">https://bugzilla.suse.com/show_bug.cgi?id=1179926</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1197027">https://bugzilla.suse.com/show_bug.cgi?id=1197027</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1206562">https://bugzilla.suse.com/show_bug.cgi?id=1206562</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1206973">https://bugzilla.suse.com/show_bug.cgi?id=1206973</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207063">https://bugzilla.suse.com/show_bug.cgi?id=1207063</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207308">https://bugzilla.suse.com/show_bug.cgi?id=1207308</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207352">https://bugzilla.suse.com/show_bug.cgi?id=1207352</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207490">https://bugzilla.suse.com/show_bug.cgi?id=1207490</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207799">https://bugzilla.suse.com/show_bug.cgi?id=1207799</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207829">https://bugzilla.suse.com/show_bug.cgi?id=1207829</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207830">https://bugzilla.suse.com/show_bug.cgi?id=1207830</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207838">https://bugzilla.suse.com/show_bug.cgi?id=1207838</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1207883">https://bugzilla.suse.com/show_bug.cgi?id=1207883</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1208288">https://bugzilla.suse.com/show_bug.cgi?id=1208288</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1208321">https://bugzilla.suse.com/show_bug.cgi?id=1208321</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1208325">https://bugzilla.suse.com/show_bug.cgi?id=1208325</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1208586">https://bugzilla.suse.com/show_bug.cgi?id=1208586</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1208687">https://bugzilla.suse.com/show_bug.cgi?id=1208687</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1208719">https://bugzilla.suse.com/show_bug.cgi?id=1208719</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1208772">https://bugzilla.suse.com/show_bug.cgi?id=1208772</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1208908">https://bugzilla.suse.com/show_bug.cgi?id=1208908</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1209369">https://bugzilla.suse.com/show_bug.cgi?id=1209369</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1209386">https://bugzilla.suse.com/show_bug.cgi?id=1209386</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1209434">https://bugzilla.suse.com/show_bug.cgi?id=1209434</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1209703">https://bugzilla.suse.com/show_bug.cgi?id=1209703</a>
</li>
<li>
<a href="https://jira.suse.com/browse/PED-2777">https://jira.suse.com/browse/PED-2777</a>
</li>
</ul>
</div>