SUSE-RU-2017:0200-1: moderate: Recommended update for webyast-base

sle-updates at lists.suse.com sle-updates at lists.suse.com
Wed Jan 18 16:08:41 MST 2017 

   SUSE Recommended Update: Recommended update for webyast-base
______________________________________________________________________________

Announcement ID:    SUSE-RU-2017:0200-1
Rating:             moderate
References:         #981769 
Affected Products:
                    SUSE Webyast 1.3
                    SUSE Studio Onsite 1.3
                    SUSE Lifecycle Management Server 1.3
______________________________________________________________________________

   An update that has one recommended fix can now be installed.

Description:


   This update for webyast-base provides the following fixes:

   - Tell the browser that it must not allow embedding this page to another
     page via an IFRAME, preventing Clickjacking attacks. (bsc#981769)


Patch Instructions:

   To install this SUSE Recommended Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - SUSE Webyast 1.3:

      zypper in -t patch slewyst13-webyast-base-12946=1

   - SUSE Studio Onsite 1.3:

      zypper in -t patch slestso13-webyast-base-12946=1

   - SUSE Lifecycle Management Server 1.3:

      zypper in -t patch sleslms13-webyast-base-12946=1

   To bring your system up-to-date, use "zypper patch".


Package List:

   - SUSE Webyast 1.3 (i586 ia64 ppc64 s390x x86_64):

      rubygem-cancan-1.6.7-3.1
      rubygem-devise-1.5.3-3.3
      rubygem-devise-i18n-0.5.7-3.1
      rubygem-devise_unix2_chkpwd_authenticatable-0.4.2-3.2
      rubygem-haml-3.1.6-0.9.4.3
      rubygem-orm_adapter-0.0.7-3.1
      rubygem-ruby-dbus-0.7.2-3.1
      rubygem-warden-1.1.0-3.1
      rubygem-webyast-rake-tasks-0.3.6-0.5.8

   - SUSE Webyast 1.3 (noarch):

      webyast-base-0.3.43.3-7.20
      webyast-base-branding-default-0.3.43.3-7.20

   - SUSE Studio Onsite 1.3 (noarch):

      webyast-base-0.3.43.3-7.20
      webyast-base-branding-default-0.3.43.3-7.20

   - SUSE Studio Onsite 1.3 (x86_64):

      rubygem-cancan-1.6.7-3.1
      rubygem-devise-1.5.3-3.3
      rubygem-devise-i18n-0.5.7-3.1
      rubygem-devise_unix2_chkpwd_authenticatable-0.4.2-3.2
      rubygem-haml-3.1.6-0.9.4.3
      rubygem-orm_adapter-0.0.7-3.1
      rubygem-ruby-dbus-0.7.2-3.1
      rubygem-warden-1.1.0-3.1
      rubygem-webyast-rake-tasks-0.3.6-0.5.8

   - SUSE Lifecycle Management Server 1.3 (noarch):

      webyast-base-0.3.43.3-7.20
      webyast-base-branding-default-0.3.43.3-7.20

   - SUSE Lifecycle Management Server 1.3 (x86_64):

      rubygem-cancan-1.6.7-3.1
      rubygem-devise-1.5.3-3.3
      rubygem-devise-i18n-0.5.7-3.1
      rubygem-devise_unix2_chkpwd_authenticatable-0.4.2-3.2
      rubygem-haml-3.1.6-0.9.4.3
      rubygem-orm_adapter-0.0.7-3.1
      rubygem-ruby-dbus-0.7.2-3.1
      rubygem-warden-1.1.0-3.1
      rubygem-webyast-rake-tasks-0.3.6-0.5.8


References:

   https://bugzilla.suse.com/981769

More information about the sle-updates mailing list