<div class="container">
<h1>Recommended update for supportutils-scrub</h1>
<table class="table table-striped table-bordered">
<tbody>
<tr>
<th>Announcement ID:</th>
<td>SUSE-RU-2026:1401-1</td>
</tr>
<tr>
<th>Release Date:</th>
<td>2026-04-16T11:33:21Z</td>
</tr>
<tr>
<th>Rating:</th>
<td>moderate</td>
</tr>
<tr>
<th>References:</th>
<td>
<ul>
</ul>
</td>
</tr>
<tr>
<th>Affected Products:</th>
<td>
<ul class="list-group">
<li class="list-group-item">Basesystem Module 15-SP7</li>
<li class="list-group-item">openSUSE Leap 15.6</li>
<li class="list-group-item">SUSE Linux Enterprise Desktop 15 SP7</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing 15 SP5</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing LTSS 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing LTSS 15 SP5</li>
<li class="list-group-item">SUSE Linux Enterprise Micro 5.2</li>
<li class="list-group-item">SUSE Linux Enterprise Micro 5.3</li>
<li class="list-group-item">SUSE Linux Enterprise Micro 5.4</li>
<li class="list-group-item">SUSE Linux Enterprise Micro 5.5</li>
<li class="list-group-item">SUSE Linux Enterprise Micro for Rancher 5.2</li>
<li class="list-group-item">SUSE Linux Enterprise Micro for Rancher 5.3</li>
<li class="list-group-item">SUSE Linux Enterprise Micro for Rancher 5.4</li>
<li class="list-group-item">SUSE Linux Enterprise Real Time 15 SP7</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP4 LTSS</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP5</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP5 LTSS</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP6</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP6 LTSS</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP7</li>
<li class="list-group-item">SUSE Linux Enterprise Server for SAP Applications 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise Server for SAP Applications 15 SP5</li>
<li class="list-group-item">SUSE Linux Enterprise Server for SAP Applications 15 SP6</li>
<li class="list-group-item">SUSE Linux Enterprise Server for SAP Applications 15 SP7</li>
</ul>
</td>
</tr>
</tbody>
</table>
<p>An update that can now be installed.</p>
<h2>Description:</h2>
<p>This update for supportutils-scrub fixes the following issues:</p>
<ul>
<li>Update to version 1.2.0</li>
<li>New input modes<ul>
<li>Folder mode: pass any directory, output written to {dir}_scrubbed/</li>
<li>Stdin/pipe mode: cat log | supportutils-scrub (scrubbed text to stdout)</li>
<li>Single file mode: process a plain file, output to {file}_scrubbed</li>
<li>Multi-archive mode: process several .txz/.tgz in one run with shared
mappings ensuring consistent obfuscation across all archives</li>
</ul>
</li>
<li>Improved automatic entity detection for pipe/file/stdin modes<ul>
<li>PAM log patterns: pam_unix([...]) and unix_chkpwd extract usernames</li>
<li>logname= field now recognised as username source</li>
<li>NFS server lines extract hostname and domain automatically</li>
<li>RFC 5424 syslog hostname (field repeated >= 3 lines) auto-detected</li>
</ul>
</li>
<li>Fixed domain parser false positives<ul>
<li>Added TLD allowlist rejecting D-Bus names, container runtime
interfaces, version strings, systemd scopes and hardware IDs</li>
</ul>
</li>
<li>
<p>Bug fixes</p>
<ul>
<li>Fixed IP pool exhaustion crash when mixed prefix lengths allocated</li>
</ul>
</li>
<li>
<p>Update to version 1.1.0</p>
</li>
<li>Major enhancement: Subnet-aware IP obfuscation<ul>
<li>Maps entire IPv4 subnets to fake subnets preserving host offsets</li>
<li>Gateway .1 remains .1, broadcast .255 remains .255</li>
<li>Maintains network topology for effective troubleshooting</li>
</ul>
</li>
<li>Added PCAP obfuscation support with tcprewrite integration<ul>
<li>Rewrites packet captures using same subnet mappings as logs</li>
<li>Ensures consistency across supportconfigs and network traces</li>
<li>Exports tcprewrite-compatible subnet rules </li>
</ul>
</li>
<li>Enhanced mapping file structure<ul>
<li>Added 'subnet' section with subnet-to-subnet translations</li>
<li>Added 'state' section tracking IP pool allocation cursors</li>
<li>Enables reproducible obfuscation across multiple runs</li>
</ul>
</li>
<li>Improved IP processing<ul>
<li>Two-pass processing: learns subnets then applies mapping</li>
<li>Preserves special IPs (0.0.0.0, 127.0.0.1, multicast)</li>
<li>Protects version strings from incorrect obfuscation</li>
</ul>
</li>
<li>Enhanced domain and hostname extraction<ul>
<li>Multiple source parsing (resolv.conf, hosts, NFS, NTP)</li>
<li>Fixed word boundary detection preventing partial replacements</li>
<li>Added minimum length requirements for hostnames</li>
</ul>
</li>
<li>Security improvements<ul>
<li>Dataset JSON files created with 0600 permissions</li>
<li>System users excluded from obfuscation</li>
</ul>
</li>
<li>Added command-line options for PCAP processing<ul>
<li>--rewrite-pcap: Enable PCAP rewriting mode</li>
<li>--pcap-in: Specify input PCAP files</li>
<li>--pcap-out-dir: Output directory for obfuscated PCAPs</li>
<li>--print-tcprewrite: Display tcprewrite command</li>
</ul>
</li>
<li>
<p>Bug fixes</p>
<ul>
<li>Fixed /32 host route handling</li>
<li>Corrected inline comment processing in hostnames</li>
<li>Resolved IPv6 subnet awareness issues</li>
<li>Fixed MAC address parsing false positives</li>
</ul>
</li>
<li>
<p>Initial release version 1.0.0</p>
</li>
<li>Basic obfuscation for supportconfig tarballs</li>
<li>Supports IP, domain, hostname, username, MAC, IPv6</li>
<li>Configuration file support</li>
<li>Keyword-based obfuscation</li>
<li>Mapping file for consistency across runs</li>
</ul>
<h2>Patch Instructions:</h2>
<p>
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".<br/>
Alternatively you can run the command listed for your product:
</p>
<ul class="list-group">
<li class="list-group-item">
openSUSE Leap 15.6
<br/>
<code>zypper in -t patch openSUSE-SLE-15.6-2026-1401=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Micro for Rancher 5.3
<br/>
<code>zypper in -t patch SUSE-SLE-Micro-5.3-2026-1401=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Micro 5.3
<br/>
<code>zypper in -t patch SUSE-SLE-Micro-5.3-2026-1401=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Micro for Rancher 5.4
<br/>
<code>zypper in -t patch SUSE-SLE-Micro-5.4-2026-1401=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Micro 5.4
<br/>
<code>zypper in -t patch SUSE-SLE-Micro-5.4-2026-1401=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Micro 5.5
<br/>
<code>zypper in -t patch SUSE-SLE-Micro-5.5-2026-1401=1</code>
</li>
<li class="list-group-item">
Basesystem Module 15-SP7
<br/>
<code>zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-1401=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
<br/>
<code>zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-1401=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
<br/>
<code>zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-1401=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
<br/>
<code>zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-1401=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
<br/>
<code>zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-1401=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Server 15 SP4 LTSS
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-1401=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Server 15 SP5 LTSS
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-1401=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Server 15 SP6 LTSS
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-1401=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Server for SAP Applications 15 SP4
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-1401=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Server for SAP Applications 15 SP5
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-1401=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Server for SAP Applications 15 SP6
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-1401=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Micro 5.2
<br/>
<code>zypper in -t patch SUSE-SUSE-MicroOS-5.2-2026-1401=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Micro for Rancher 5.2
<br/>
<code>zypper in -t patch SUSE-SUSE-MicroOS-5.2-2026-1401=1</code>
</li>
</ul>
<h2>Package List:</h2>
<ul>
<li>
openSUSE Leap 15.6 (noarch)
<ul>
<li>supportutils-scrub-1.2-150100.3.6.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Micro for Rancher 5.3 (noarch)
<ul>
<li>supportutils-scrub-1.2-150100.3.6.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Micro 5.3 (noarch)
<ul>
<li>supportutils-scrub-1.2-150100.3.6.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Micro for Rancher 5.4 (noarch)
<ul>
<li>supportutils-scrub-1.2-150100.3.6.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Micro 5.4 (noarch)
<ul>
<li>supportutils-scrub-1.2-150100.3.6.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Micro 5.5 (noarch)
<ul>
<li>supportutils-scrub-1.2-150100.3.6.1</li>
</ul>
</li>
<li>
Basesystem Module 15-SP7 (noarch)
<ul>
<li>supportutils-scrub-1.2-150100.3.6.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch)
<ul>
<li>supportutils-scrub-1.2-150100.3.6.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch)
<ul>
<li>supportutils-scrub-1.2-150100.3.6.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch)
<ul>
<li>supportutils-scrub-1.2-150100.3.6.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch)
<ul>
<li>supportutils-scrub-1.2-150100.3.6.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server 15 SP4 LTSS (noarch)
<ul>
<li>supportutils-scrub-1.2-150100.3.6.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server 15 SP5 LTSS (noarch)
<ul>
<li>supportutils-scrub-1.2-150100.3.6.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server 15 SP6 LTSS (noarch)
<ul>
<li>supportutils-scrub-1.2-150100.3.6.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch)
<ul>
<li>supportutils-scrub-1.2-150100.3.6.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch)
<ul>
<li>supportutils-scrub-1.2-150100.3.6.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch)
<ul>
<li>supportutils-scrub-1.2-150100.3.6.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Micro 5.2 (noarch)
<ul>
<li>supportutils-scrub-1.2-150100.3.6.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Micro for Rancher 5.2 (noarch)
<ul>
<li>supportutils-scrub-1.2-150100.3.6.1</li>
</ul>
</li>
</ul>
</div>