SUSE-RU-2023:4408-1: important: Recommended update for SUSE Manager Salt Bundle
maint-coord at suse.de
maint-coord at suse.de
Thu Nov 9 08:30:30 UTC 2023
# Recommended update for SUSE Manager Salt Bundle
Announcement ID: SUSE-RU-2023:4408-1
Rating: important
References:
* bsc#1097531
* bsc#1182851
* bsc#1186738
* bsc#1190781
* bsc#1193357
* bsc#1193948
* bsc#1194632
* bsc#1195624
* bsc#1195895
* bsc#1196050
* bsc#1196432
* bsc#1197288
* bsc#1197417
* bsc#1197533
* bsc#1197637
* bsc#1198489
* bsc#1198556
* bsc#1198744
* bsc#1199149
* bsc#1199372
* bsc#1199562
* bsc#1200566
* bsc#1200596
* bsc#1201082
* bsc#1202165
* bsc#1202631
* bsc#1203685
* bsc#1203834
* bsc#1203886
* bsc#1204206
* bsc#1204939
* bsc#1205687
* bsc#1207071
* bsc#1208691
* bsc#1209233
* bsc#1210954
* bsc#1210994
* bsc#1211591
* bsc#1211612
* bsc#1211741
* bsc#1211754
* bsc#1212516
* bsc#1212517
* bsc#1212794
* bsc#1212844
* bsc#1212855
* bsc#1213257
* bsc#1213293
* bsc#1213441
* bsc#1213518
* bsc#1213630
* bsc#1213926
* bsc#1213960
* bsc#1214796
* bsc#1214797
* bsc#1215489
* jsc#MSQA-706
* jsc#PED-3139
Cross-References:
* CVE-2022-22934
* CVE-2022-22935
* CVE-2022-22936
* CVE-2022-22941
* CVE-2022-22967
* CVE-2023-20897
* CVE-2023-20898
* CVE-2023-28370
CVSS scores:
* CVE-2022-22934 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2022-22934 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2022-22935 ( SUSE ): 6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2022-22935 ( NVD ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2022-22936 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2022-22936 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
* CVE-2022-22941 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2022-22941 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2022-22967 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2022-22967 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2023-20897 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2023-20897 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2023-20898 ( SUSE ): 4.2 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N
* CVE-2023-20898 ( NVD ): 4.2 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N
* CVE-2023-28370 ( SUSE ): 3.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N
* CVE-2023-28370 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Affected Products:
* SUSE Manager Client Tools for Debian 12
An update that solves eight vulnerabilities, contains two features and has 48
fixes can now be installed.
## Description:
This update fixes the following issues:
venv-salt-minion:
* Provide the venv-salt-minion version 3006.0
## Special Instructions and Notes:
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Manager Client Tools for Debian 12
zypper in -t patch SUSE-Debian-12-CLIENT-TOOLS-x86_64-2023-4408=1
## Package List:
* SUSE Manager Client Tools for Debian 12 (amd64)
* venv-salt-minion-3006.0-2.3.3
## References:
* https://www.suse.com/security/cve/CVE-2022-22934.html
* https://www.suse.com/security/cve/CVE-2022-22935.html
* https://www.suse.com/security/cve/CVE-2022-22936.html
* https://www.suse.com/security/cve/CVE-2022-22941.html
* https://www.suse.com/security/cve/CVE-2022-22967.html
* https://www.suse.com/security/cve/CVE-2023-20897.html
* https://www.suse.com/security/cve/CVE-2023-20898.html
* https://www.suse.com/security/cve/CVE-2023-28370.html
* https://bugzilla.suse.com/show_bug.cgi?id=1097531
* https://bugzilla.suse.com/show_bug.cgi?id=1182851
* https://bugzilla.suse.com/show_bug.cgi?id=1186738
* https://bugzilla.suse.com/show_bug.cgi?id=1190781
* https://bugzilla.suse.com/show_bug.cgi?id=1193357
* https://bugzilla.suse.com/show_bug.cgi?id=1193948
* https://bugzilla.suse.com/show_bug.cgi?id=1194632
* https://bugzilla.suse.com/show_bug.cgi?id=1195624
* https://bugzilla.suse.com/show_bug.cgi?id=1195895
* https://bugzilla.suse.com/show_bug.cgi?id=1196050
* https://bugzilla.suse.com/show_bug.cgi?id=1196432
* https://bugzilla.suse.com/show_bug.cgi?id=1197288
* https://bugzilla.suse.com/show_bug.cgi?id=1197417
* https://bugzilla.suse.com/show_bug.cgi?id=1197533
* https://bugzilla.suse.com/show_bug.cgi?id=1197637
* https://bugzilla.suse.com/show_bug.cgi?id=1198489
* https://bugzilla.suse.com/show_bug.cgi?id=1198556
* https://bugzilla.suse.com/show_bug.cgi?id=1198744
* https://bugzilla.suse.com/show_bug.cgi?id=1199149
* https://bugzilla.suse.com/show_bug.cgi?id=1199372
* https://bugzilla.suse.com/show_bug.cgi?id=1199562
* https://bugzilla.suse.com/show_bug.cgi?id=1200566
* https://bugzilla.suse.com/show_bug.cgi?id=1200596
* https://bugzilla.suse.com/show_bug.cgi?id=1201082
* https://bugzilla.suse.com/show_bug.cgi?id=1202165
* https://bugzilla.suse.com/show_bug.cgi?id=1202631
* https://bugzilla.suse.com/show_bug.cgi?id=1203685
* https://bugzilla.suse.com/show_bug.cgi?id=1203834
* https://bugzilla.suse.com/show_bug.cgi?id=1203886
* https://bugzilla.suse.com/show_bug.cgi?id=1204206
* https://bugzilla.suse.com/show_bug.cgi?id=1204939
* https://bugzilla.suse.com/show_bug.cgi?id=1205687
* https://bugzilla.suse.com/show_bug.cgi?id=1207071
* https://bugzilla.suse.com/show_bug.cgi?id=1208691
* https://bugzilla.suse.com/show_bug.cgi?id=1209233
* https://bugzilla.suse.com/show_bug.cgi?id=1210954
* https://bugzilla.suse.com/show_bug.cgi?id=1210994
* https://bugzilla.suse.com/show_bug.cgi?id=1211591
* https://bugzilla.suse.com/show_bug.cgi?id=1211612
* https://bugzilla.suse.com/show_bug.cgi?id=1211741
* https://bugzilla.suse.com/show_bug.cgi?id=1211754
* https://bugzilla.suse.com/show_bug.cgi?id=1212516
* https://bugzilla.suse.com/show_bug.cgi?id=1212517
* https://bugzilla.suse.com/show_bug.cgi?id=1212794
* https://bugzilla.suse.com/show_bug.cgi?id=1212844
* https://bugzilla.suse.com/show_bug.cgi?id=1212855
* https://bugzilla.suse.com/show_bug.cgi?id=1213257
* https://bugzilla.suse.com/show_bug.cgi?id=1213293
* https://bugzilla.suse.com/show_bug.cgi?id=1213441
* https://bugzilla.suse.com/show_bug.cgi?id=1213518
* https://bugzilla.suse.com/show_bug.cgi?id=1213630
* https://bugzilla.suse.com/show_bug.cgi?id=1213926
* https://bugzilla.suse.com/show_bug.cgi?id=1213960
* https://bugzilla.suse.com/show_bug.cgi?id=1214796
* https://bugzilla.suse.com/show_bug.cgi?id=1214797
* https://bugzilla.suse.com/show_bug.cgi?id=1215489
* https://jira.suse.com/browse/MSQA-706
* https://jira.suse.com/browse/PED-3139
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/suma-updates/attachments/20231109/f7f79aa1/attachment-0001.htm>
More information about the suma-updates
mailing list