SUSE-SU-2026:2766-1: important: Security update 5.1.4 for Multi-Linux Manager Client Tools
SLE-UPDATES
null at suse.de
Mon Jul 6 12:36:50 UTC 2026
# Security update 5.1.4 for Multi-Linux Manager Client Tools
Announcement ID: SUSE-SU-2026:2766-1
Release Date: 2026-07-06T07:47:40Z
Rating: important
References:
* bsc#1227579
* bsc#1229105
* bsc#1232641
* bsc#1248699
* bsc#1248707
* bsc#1249400
* bsc#1249532
* bsc#1253174
* bsc#1259739
* bsc#1260806
* bsc#1260905
* bsc#1261810
* bsc#1261902
* bsc#1262409
* bsc#1262708
* bsc#1262760
* bsc#1263157
* bsc#1263823
* bsc#1266012
* jsc#MSQA-1056
Cross-References:
* CVE-2022-21698
CVSS scores:
* CVE-2022-21698 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2022-21698 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products:
* SUSE Linux Enterprise Desktop 12
* SUSE Linux Enterprise Desktop 12 SP1
* SUSE Linux Enterprise Desktop 12 SP2
* SUSE Linux Enterprise Desktop 12 SP3
* SUSE Linux Enterprise Desktop 12 SP4
* SUSE Linux Enterprise High Performance Computing 12 SP2
* SUSE Linux Enterprise High Performance Computing 12 SP3
* SUSE Linux Enterprise High Performance Computing 12 SP4
* SUSE Linux Enterprise High Performance Computing 12 SP5
* SUSE Linux Enterprise Server 12
* SUSE Linux Enterprise Server 12 SP1
* SUSE Linux Enterprise Server 12 SP2
* SUSE Linux Enterprise Server 12 SP3
* SUSE Linux Enterprise Server 12 SP4
* SUSE Linux Enterprise Server 12 SP5
* SUSE Linux Enterprise Server for SAP Applications 12
* SUSE Linux Enterprise Server for SAP Applications 12 SP1
* SUSE Linux Enterprise Server for SAP Applications 12 SP2
* SUSE Linux Enterprise Server for SAP Applications 12 SP3
* SUSE Linux Enterprise Server for SAP Applications 12 SP4
* SUSE Linux Enterprise Server for SAP Applications 12 SP5
* SUSE Multi-Linux Manager Client Tools for SLE 12
An update that solves one vulnerability, contains one feature and has 18
security fixes can now be installed.
## Description:
This update fixes the following issues:
golang-github-QubitProducts-exporter_exporter:
* CVE-2022-21698: Replace github.com/prometheus/client_golang with version
1.11.1 (bsc#1248707)
golang-github-boynux-squid_exporter:
* Non customer facing changes
golang-github-lusitaniae-apache_exporter:
* Non customer facing changes
golang-github-prometheus-node_exporter:
* Update to 1.10.2:
* [BUGFIX] meminfo: Fix typo in Zswap metric name
* Update to 1.10.1:
* [BUGFIX] filesystem: Fix mount points being collected multiple times
* [BUGFIX] filesystem: Refactor mountinfo parsing (bsc#1261810)
* [BUGFIX] meminfo: Add Zswap/Zswapped metrics
* Update to 1.10.0:
* [CHANGE] mdadm: Use sysfs for RAID metrics
* [CHANGE] filesystem: Add erofs in default excluded fs
* [CHANGE] tcpstat: Use std lib binary.NativeEndian
* [FEATURE] pcidevice: Add new collector for PCIe devices
* [FEATURE] systemd: Add Virtualization metrics
* [FEATURE] swaps: Add new collector
* [ENHANCEMENT] wifi: Add packet received and transmitted metrics
* [ENHANCEMENT] filesystem: Take super options into account for read-only
* [ENHANCEMENT] pcidevice: Add additional metrics
* [ENHANCEMENT] perf: Add tlb_data metrics
* [BUGFIX] diskstats: Simplify condition
* [BUGFIX] thermal: Sanitize darwin thermal strings
* [BUGFIX] cpufreq: Fix: collector enable
* [BUGFIX] ethtool: Fix returning 0 for sanitized metrics
* [BUGFIX] systemd: Fix logging race
mgr-push:
* Version 5.2.4-0
* Non customer facing changes
* Version 5.2.3-0
* Non customer facing changes
* Version 5.2.2-0
* Non customer facing changes
* Version 5.2.1-0
* Non customer facing changes
prometheus-postgres_exporter:
* CVE-2022-21698: Replace github.com/prometheus/client_golang with version
1.11.1 (bsc#1248699)
rhnlib:
* Version 5.2.5-0
* Non customer facing changes
* Version 5.2.4-0
* Non customer facing changes
* Version 5.2.3-0
* Non customer facing changes
* Version 5.2.2-0
* Non customer facing changes
* Version 5.2.1-0
* Non customer facing changes
spacecmd:
* Version 5.2.8-0
* Non customer facing changes
* Version 5.2.7-0
* Add proxy_container_config_nossl command
* Version 5.2.6-0
* Update translation strings
* Version 5.2.5-0
* Update translation strings
* Version 5.2.4-0
* Update translation strings
* Version 5.2.3-0
* Fix typo in spacecmd help ca-cert flag (bsc#1253174)
* Add subcommand to check if reboot is needed after applying all available
patches
* Version 5.2.2-0
* Update translation strings
* Version 5.2.1-0
* Use JSON instead of pickle for spacecmd cache (bsc#1227579)
* Fix methods in api namespace in spacecmd (bsc#1249532)
spacewalk-client-tools:
* Version 5.2.6-0
* Non customer facing changes
* Version 5.2.5-0
* Update translations
* Version 5.2.4-0
* Non customer facing changes
* Version 5.2.3-0
* Non customer facing changes
* Version 5.2.2-0
* Update translation strings1260806
* Version 5.2.1-0
* Non customer facing changes
supportutils-plugin-susemanager-client:
* Version 5.2.3-0
* Non customer facing changes
* Version 5.2.2-0
* Non customer facing changes
* Version 5.2.1-0
* Non customer facing changes
uyuni-tools:
* Version 5.2.12-0
* No customer facing changes
* Version 5.2.11-0
* Do not call podman healthcheck run to wait for pods to be ready
(bsc#1266012)
* Version 5.2.10-0
* Preserve hub replicas during upgrade (bsc#1262708)
* Add mgrctl commands "ssh" and "ssh remove_known_host"
* Use a startup check with no limit for the main server container bsc#1263157)
* Make uyuni-server service dependent on uyuni-db (bsc#1263823)
* Internal SANs for db and reportdb are no longer required
* Generate the same certificate for server and reportdb
* Update the default tag to 5.1.3.1 (bsc#1262760)
* Remove waitForTraefik function (bsc#1261902)
* Fix inspect: missing registry for db image (bsc#1259739)
* Use correct CA for Report DB (bsc#1260806)
* Version 5.2.9-0
* Do not stop container on health check failure Temporary workaround for
bsc#1263157
* Version 5.2.8-0
* Generate service template only after secrets are created
* Version 5.2.7-0
* Do not require admin secrets on upgrades (bsc#1262409)
* Version 5.2.6-0
* Use podman secrets for SSL on proxy
* Fix db online backup with new pg_hba settings
* mgrctl copy can now infer target name if not set
* No need to expose the cobbler port
* Add the TFTP port back to the proxy (bsc#1260905)
* Fix the macros in the spec file (bsc#1229105)
* Disable TFTP by default on the server
* Bump zerolog to 1.34
* Ignore spacewalk-service stop return code.
* Stop automatically unhealthy container
* Use container based server setup instead tools bundled one
* Version 5.2.5-0
* Remove migrate command
* Remove template script from mgradm: use the one in the image
* Split the TFTP server into a separate container
* Adjust mgrctl server filter to work with the new helm chart labels
* Remove hub register command
* Remove the Kubernetes install and upgrade from mgrpxy - Version 5.2.4-0
* Move the SSL checks at the begining of the migration
* Remove Kubernetes code for the mgrdam
* Use single universal image to migrate between PostgreSQL versions
* Version 5.2.3-0
* Update translation strings
* Version 5.2.2-0
* Non customer facing changes
* Version 5.2.1-0
* Actually use the --dbupgrade-tag parameter when computing the image URL
(bsc#1249400)
* Detect custom Apache and Squid config in the /etc/uyuni/proxy folder
* Fix generated DB certificate subject alternate names
* add --registry-host, --registry-user and --registry-password to pull images
from an authenticate registry
* deprecate --registry
uyuni-common-libs:
* Version 5.2.5-0
* Remove legacy md5/sha1 fallback imports from checksum module; use hashlib
directly
* Version 5.2.4-0
* Build uyuni-common-libs noarch
* Version 5.2.3-0
* Non customer facing changes
* Version 5.2.2-0
* Non customer facing changes
* Version 5.2.1-0
* Bump version to 5.2.0
## Special Instructions and Notes:
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Multi-Linux Manager Client Tools for SLE 12
zypper in -t patch SUSE-MultiLinuxManagerTools-SLE-12-2026-2766=1
## Package List:
* SUSE Multi-Linux Manager Client Tools for SLE 12 (aarch64 ppc64le s390x
x86_64)
* prometheus-postgres_exporter-0.10.1-120002.3.3.2
* golang-github-prometheus-node_exporter-1.10.2-120002.3.6.3
* mgrctl-debuginfo-5.2.12-120002.3.15.2
* golang-github-prometheus-node_exporter-debuginfo-1.10.2-120002.3.6.3
* golang-github-boynux-squid_exporter-1.13.0-120002.3.6.1
* mgrctl-5.2.12-120002.3.15.2
* prometheus-postgres_exporter-debuginfo-0.10.1-120002.3.3.2
* golang-github-lusitaniae-apache_exporter-debuginfo-1.0.10-120002.3.9.2
* golang-github-QubitProducts-exporter_exporter-0.4.0-120002.3.6.1
* golang-github-lusitaniae-apache_exporter-1.0.10-120002.3.9.2
* golang-github-boynux-squid_exporter-debuginfo-1.13.0-120002.3.6.1
* SUSE Multi-Linux Manager Client Tools for SLE 12 (noarch)
* mgr-push-5.2.4-120002.3.9.1
* python-defusedxml-0.6.0-120002.1.3.1
* python2-rhnlib-5.2.5-120002.3.9.1
* mgrctl-lang-5.2.12-120002.3.15.2
* supportutils-plugin-salt-1.2.3-120002.3.3.1
* python2-uyuni-common-libs-5.2.5-120002.3.6.1
* mgrctl-zsh-completion-5.2.12-120002.3.15.2
* spacecmd-5.2.8-120002.3.12.1
* spacewalk-client-tools-5.2.6-120002.3.9.1
* python2-spacewalk-client-tools-5.2.6-120002.3.9.1
* mgrctl-bash-completion-5.2.12-120002.3.15.2
* python2-mgr-push-5.2.4-120002.3.9.1
* supportutils-plugin-susemanager-client-5.2.3-120002.3.9.1
## References:
* https://www.suse.com/security/cve/CVE-2022-21698.html
* https://bugzilla.suse.com/show_bug.cgi?id=1227579
* https://bugzilla.suse.com/show_bug.cgi?id=1229105
* https://bugzilla.suse.com/show_bug.cgi?id=1232641
* https://bugzilla.suse.com/show_bug.cgi?id=1248699
* https://bugzilla.suse.com/show_bug.cgi?id=1248707
* https://bugzilla.suse.com/show_bug.cgi?id=1249400
* https://bugzilla.suse.com/show_bug.cgi?id=1249532
* https://bugzilla.suse.com/show_bug.cgi?id=1253174
* https://bugzilla.suse.com/show_bug.cgi?id=1259739
* https://bugzilla.suse.com/show_bug.cgi?id=1260806
* https://bugzilla.suse.com/show_bug.cgi?id=1260905
* https://bugzilla.suse.com/show_bug.cgi?id=1261810
* https://bugzilla.suse.com/show_bug.cgi?id=1261902
* https://bugzilla.suse.com/show_bug.cgi?id=1262409
* https://bugzilla.suse.com/show_bug.cgi?id=1262708
* https://bugzilla.suse.com/show_bug.cgi?id=1262760
* https://bugzilla.suse.com/show_bug.cgi?id=1263157
* https://bugzilla.suse.com/show_bug.cgi?id=1263823
* https://bugzilla.suse.com/show_bug.cgi?id=1266012
* https://jira.suse.com/browse/MSQA-1056
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/sle-updates/attachments/20260706/8c6f6d2d/attachment.htm>
More information about the sle-updates
mailing list