SUSE-SU-2023:0373-1: moderate: Security update for SUSE Manager Server 4.3

[sle-updates at lists.suse.com]

   SUSE Security Update: Security update for SUSE Manager Server 4.3
______________________________________________________________________________

Announcement ID:    SUSE-SU-2023:0373-1
Rating:             moderate
References:         #1172110 #1195979 #1200801 #1202150 #1203478 
                    #1203532 #1203826 #1204032 #1204126 #1204186 
                    #1204235 #1204270 #1204330 #1204712 #1204715 
                    #1204879 #1204932 #1205012 #1205040 #1205207 
                    #1205255 #1205350 #1205489 #1205523 #1205644 
                    #1205663 #1205749 #1205754 #1205890 #1205919 
                    #1205943 #1206055 #1206160 #1206168 #1206186 
                    #1206249 #1206276 #1206294 #1206336 #1206375 
                    #1206470 #1206613 #1206666 #1206799 #1207136 
                    
Cross-References:   CVE-2022-1415
CVSS scores:
                    CVE-2022-1415 (SUSE): 6.8 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

Affected Products:
                    SUSE Manager Server 4.3
______________________________________________________________________________

   An update that solves one vulnerability and has 44 fixes is
   now available.

Description:


   This update fixes the following issues:

   release-notes-susemanager:

   - Update to SUSE Manager 4.3.4
     * SUSE Liberty Linux 9 support as client
     * SUSE Linux Enterprise Micro support as client
     * Indications for systems requiring reboot or with a scheduled reboot
     * Notification messages via email
     * Grafana update to 8.5.15
     * Subscription warning notification
     * Changelogs at repositories metadata has been limited the last 20
       entries
     * Drop legacy way to prevent disabling local repositories
     * CVEs fixed CVE-2022-1415
     * Bugs mentioned bsc#1172110, bsc#1195979, bsc#1200801, bsc#1202150,
       bsc#1203478 bsc#1203532, bsc#1203826, bsc#1204032, bsc#1204126,
       bsc#1204186 bsc#1204235, bsc#1204270, bsc#1204330, bsc#1204712,
       bsc#1204715 bsc#1204879, bsc#1204932, bsc#1205012, bsc#1205040,
       bsc#1205207 bsc#1205255, bsc#1205350, bsc#1205489, bsc#1205523,
       bsc#1205644 bsc#1205663, bsc#1205749, bsc#1205754, bsc#1205890,
       bsc#1205919 bsc#1205943, bsc#1206055, bsc#1206160, bsc#1206168,
       bsc#1206186 bsc#1206249, bsc#1206276, bsc#1206294, bsc#1206336,
       bsc#1206375 bsc#1206470, bsc#1206613, bsc#1206666, bsc#1206799,
       bsc#1207136


Patch Instructions:

   To install this SUSE Security Update use the SUSE recommended installation methods
   like YaST online_update or "zypper patch".

   Alternatively you can run the command listed for your product:

   - SUSE Manager Server 4.3:

      zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2023-373=1



Package List:

   - SUSE Manager Server 4.3 (ppc64le s390x x86_64):

      release-notes-susemanager-4.3.4-150400.3.43.1


References:

   https://www.suse.com/security/cve/CVE-2022-1415.html
   https://bugzilla.suse.com/1172110
   https://bugzilla.suse.com/1195979
   https://bugzilla.suse.com/1200801
   https://bugzilla.suse.com/1202150
   https://bugzilla.suse.com/1203478
   https://bugzilla.suse.com/1203532
   https://bugzilla.suse.com/1203826
   https://bugzilla.suse.com/1204032
   https://bugzilla.suse.com/1204126
   https://bugzilla.suse.com/1204186
   https://bugzilla.suse.com/1204235
   https://bugzilla.suse.com/1204270
   https://bugzilla.suse.com/1204330
   https://bugzilla.suse.com/1204712
   https://bugzilla.suse.com/1204715
   https://bugzilla.suse.com/1204879
   https://bugzilla.suse.com/1204932
   https://bugzilla.suse.com/1205012
   https://bugzilla.suse.com/1205040
   https://bugzilla.suse.com/1205207
   https://bugzilla.suse.com/1205255
   https://bugzilla.suse.com/1205350
   https://bugzilla.suse.com/1205489
   https://bugzilla.suse.com/1205523
   https://bugzilla.suse.com/1205644
   https://bugzilla.suse.com/1205663
   https://bugzilla.suse.com/1205749
   https://bugzilla.suse.com/1205754
   https://bugzilla.suse.com/1205890
   https://bugzilla.suse.com/1205919
   https://bugzilla.suse.com/1205943
   https://bugzilla.suse.com/1206055
   https://bugzilla.suse.com/1206160
   https://bugzilla.suse.com/1206168
   https://bugzilla.suse.com/1206186
   https://bugzilla.suse.com/1206249
   https://bugzilla.suse.com/1206276
   https://bugzilla.suse.com/1206294
   https://bugzilla.suse.com/1206336
   https://bugzilla.suse.com/1206375
   https://bugzilla.suse.com/1206470
   https://bugzilla.suse.com/1206613
   https://bugzilla.suse.com/1206666
   https://bugzilla.suse.com/1206799
   https://bugzilla.suse.com/1207136