SUSE-RU-2024:3971-1: moderate: Recommended update for mojo-parent

SUSE-MANAGER-UPDATES null at suse.de
Mon Nov 11 12:30:09 UTC 2024



# Recommended update for mojo-parent

Announcement ID: SUSE-RU-2024:3971-1  
Release Date: 2024-11-11T09:30:14Z  
Rating: moderate  
References:

  
Affected Products:

  * Basesystem Module 15-SP5
  * Basesystem Module 15-SP6
  * Development Tools Module 15-SP5
  * Development Tools Module 15-SP6
  * openSUSE Leap 15.5
  * openSUSE Leap 15.6
  * SUSE Enterprise Storage 7.1
  * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
  * SUSE Linux Enterprise Desktop 15 SP5
  * SUSE Linux Enterprise Desktop 15 SP6
  * SUSE Linux Enterprise High Performance Computing 15 SP2
  * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2
  * SUSE Linux Enterprise High Performance Computing 15 SP3
  * SUSE Linux Enterprise High Performance Computing 15 SP4
  * SUSE Linux Enterprise High Performance Computing 15 SP5
  * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
  * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
  * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
  * SUSE Linux Enterprise Real Time 15 SP5
  * SUSE Linux Enterprise Real Time 15 SP6
  * SUSE Linux Enterprise Server 15 SP2
  * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2
  * SUSE Linux Enterprise Server 15 SP3
  * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
  * SUSE Linux Enterprise Server 15 SP4
  * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
  * SUSE Linux Enterprise Server 15 SP5
  * SUSE Linux Enterprise Server 15 SP6
  * SUSE Linux Enterprise Server for SAP Applications 15 SP2
  * SUSE Linux Enterprise Server for SAP Applications 15 SP3
  * SUSE Linux Enterprise Server for SAP Applications 15 SP4
  * SUSE Linux Enterprise Server for SAP Applications 15 SP5
  * SUSE Linux Enterprise Server for SAP Applications 15 SP6
  * SUSE Manager Proxy 4.3
  * SUSE Manager Retail Branch Server 4.3
  * SUSE Manager Server 4.3
  * SUSE Manager Server 4.3 Module 4.3

  
  
An update that can now be installed.

## Description:

This update for mojo-parent fixes the following issues:

xalan-j2 was updated from version 2.7.2 to 2.7.3:

  * Security issues fixed:

  * CVE-2022-34169: Fixed integer truncation issue when processing malicious
    XSLT stylesheets (bsc#1201684)

  * Changes and Bugs fixed:

  * Java 8 is now the minimum requirement

  * Upgraded to Apache Commons BCEL 6.7.0
  * Upgraded to Xerces-J 2.12.2

mojo-parent was updated from version 70 to 82:

  * Main changes:

  * Potentially Breaking Changes:

    * mojo.java.target should be set as "8", without "1."
    * spotless plugin must be executed by JDK 11 at least
    * ossrh-snapshots repository was removed from parent
  * New features and improvements:

    * Removed SHA-512 checksum for source release artifact
    * Use only project version as tag for release
    * Added space before close empty elements in poms by spotless
    * Using Checkstyle together with Spotless
    * Introduce spotless for automatic code formatting
    * Introduce enforcer rule for minimal version of Java and Maven
    * Use new Plugin Tools report - maven-plugin-report-plugin
    * Added sisu-maven-plugin
    * Introduced maven.version property
    * Execute spotless by JDK 11 at least
    * Use release options for m-compiler-p with newer JDKs
    * Allow override of invoker.streamLogsOnFailures
    * Require Maven 3.9.x at least for releases
    * Added maven-wrapper-plugin to pluginManagement
    * Removed ossrh-snapshots repository from MojoHaus parent
    * Added build-helper-maven-plugin to pluginManagement
    * Require Maven 3.6.3+
    * Updated palantirJavaFormat for spotless - JDK 21 compatible
    * Added dependencyManagement for maven-shade-plugin
    * Dropped recommendedJavaBuildVersion property
    * Format Markdown files with Spotless Plugin
  * Bugs fixed:

    * Restore source release distribution in child projects
    * Rename property maven.version to mavenVersion
    * minimalMavenBuildVersion should not be overriding by mavenVersion
    * Use simple checkstyle rules since spotless is executed by default
    * Use old spotless version only for JDK < 11
    * Fixed spotless configuration for markdown
  * Other changes:

  * Removed Google search box due to privacy

  * Put version for mrm-maven-plugin in property
  * Added streamLogsOnFailures to m-invoker-p
  * Added property for maven-fluido-skin version
  * Setup Apache Matomo analytics
  * Require Maven 3.2.5
  * Added SHA-512 hashes
  * Extract plugin version as variable so child pom can override if needed
  * Removed issue-tracking as no longer exists
  * Removed cim report as no longer exists

bcel was updated from version 5.2 to 6.10:

  * Many APIs have been extended
  * Added riscv64 support
  * Various bugs were fixed

apache-commons-lang3 was updated to version 3.12.0 to 3.16.0:

  * Included new APIs that are needed by bcel 6.x
  * Various minor bugs were fixed

xerces-j2:

  * Improved RPM packaging build instructions

netty3:

  * Generate sources with protobuf instead of using pre-generated ones

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".  
Alternatively you can run the command listed for your product:

  * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4  
    zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-3971=1

  * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4  
    zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-3971=1

  * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4  
    zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-3971=1

  * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2  
    zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-3971=1

  * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3  
    zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-3971=1

  * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4  
    zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-3971=1

  * SUSE Linux Enterprise Server for SAP Applications 15 SP2  
    zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-3971=1

  * SUSE Linux Enterprise Server for SAP Applications 15 SP3  
    zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-3971=1

  * SUSE Linux Enterprise Server for SAP Applications 15 SP4  
    zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-3971=1

  * SUSE Manager Proxy 4.3  
    zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-3971=1

  * SUSE Manager Retail Branch Server 4.3  
    zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-
Server-4.3-2024-3971=1

  * SUSE Manager Server 4.3  
    zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-3971=1

  * SUSE Enterprise Storage 7.1  
    zypper in -t patch SUSE-Storage-7.1-2024-3971=1

  * openSUSE Leap 15.5  
    zypper in -t patch openSUSE-SLE-15.5-2024-3971=1

  * openSUSE Leap 15.6  
    zypper in -t patch openSUSE-SLE-15.6-2024-3971=1

  * Basesystem Module 15-SP5  
    zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-3971=1

  * Basesystem Module 15-SP6  
    zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-3971=1

  * Development Tools Module 15-SP5  
    zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP5-2024-3971=1

  * Development Tools Module 15-SP6  
    zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP6-2024-3971=1

  * SUSE Manager Server 4.3 Module 4.3  
    zypper in -t patch SUSE-SLE-Module-SUSE-Manager-Server-4.3-2024-3971=1

  * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2  
    zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-3971=1

  * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3  
    zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-3971=1

## Package List:

  * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch)
    * xalan-j2-2.7.3-150200.11.7.1
    * netty3-3.10.6-150200.3.13.2
    * bcel-6.10.0-150200.11.6.2
    * xerces-j2-2.12.2-150200.3.10.2
    * apache-commons-lang3-3.16.0-150200.3.9.2
  * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch)
    * xalan-j2-2.7.3-150200.11.7.1
    * netty3-3.10.6-150200.3.13.2
    * bcel-6.10.0-150200.11.6.2
    * xerces-j2-2.12.2-150200.3.10.2
    * apache-commons-lang3-3.16.0-150200.3.9.2
  * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch)
    * xalan-j2-2.7.3-150200.11.7.1
    * netty3-3.10.6-150200.3.13.2
    * bcel-6.10.0-150200.11.6.2
    * xerces-j2-2.12.2-150200.3.10.2
    * apache-commons-lang3-3.16.0-150200.3.9.2
  * SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch)
    * xalan-j2-2.7.3-150200.11.7.1
    * netty3-3.10.6-150200.3.13.2
    * bcel-6.10.0-150200.11.6.2
    * xerces-j2-2.12.2-150200.3.10.2
    * apache-commons-lang3-3.16.0-150200.3.9.2
  * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch)
    * xalan-j2-2.7.3-150200.11.7.1
    * netty3-3.10.6-150200.3.13.2
    * bcel-6.10.0-150200.11.6.2
    * xerces-j2-2.12.2-150200.3.10.2
    * apache-commons-lang3-3.16.0-150200.3.9.2
  * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch)
    * xalan-j2-2.7.3-150200.11.7.1
    * netty3-3.10.6-150200.3.13.2
    * bcel-6.10.0-150200.11.6.2
    * xerces-j2-2.12.2-150200.3.10.2
    * apache-commons-lang3-3.16.0-150200.3.9.2
  * SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch)
    * xalan-j2-2.7.3-150200.11.7.1
    * netty3-3.10.6-150200.3.13.2
    * bcel-6.10.0-150200.11.6.2
    * xerces-j2-2.12.2-150200.3.10.2
    * apache-commons-lang3-3.16.0-150200.3.9.2
  * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch)
    * xalan-j2-2.7.3-150200.11.7.1
    * netty3-3.10.6-150200.3.13.2
    * bcel-6.10.0-150200.11.6.2
    * xerces-j2-2.12.2-150200.3.10.2
    * apache-commons-lang3-3.16.0-150200.3.9.2
  * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch)
    * xalan-j2-2.7.3-150200.11.7.1
    * netty3-3.10.6-150200.3.13.2
    * bcel-6.10.0-150200.11.6.2
    * xerces-j2-2.12.2-150200.3.10.2
    * apache-commons-lang3-3.16.0-150200.3.9.2
  * SUSE Manager Proxy 4.3 (noarch)
    * xalan-j2-2.7.3-150200.11.7.1
    * bcel-6.10.0-150200.11.6.2
    * xerces-j2-2.12.2-150200.3.10.2
  * SUSE Manager Retail Branch Server 4.3 (noarch)
    * xalan-j2-2.7.3-150200.11.7.1
    * bcel-6.10.0-150200.11.6.2
    * xerces-j2-2.12.2-150200.3.10.2
  * SUSE Manager Server 4.3 (noarch)
    * xalan-j2-2.7.3-150200.11.7.1
    * bcel-6.10.0-150200.11.6.2
    * xerces-j2-2.12.2-150200.3.10.2
  * SUSE Enterprise Storage 7.1 (noarch)
    * xalan-j2-2.7.3-150200.11.7.1
    * netty3-3.10.6-150200.3.13.2
    * bcel-6.10.0-150200.11.6.2
    * xerces-j2-2.12.2-150200.3.10.2
    * apache-commons-lang3-3.16.0-150200.3.9.2
  * openSUSE Leap 15.5 (noarch)
    * xalan-j2-demo-2.7.3-150200.11.7.1
    * apache-commons-lang3-javadoc-3.16.0-150200.3.9.2
    * xalan-j2-2.7.3-150200.11.7.1
    * xerces-j2-javadoc-2.12.2-150200.3.10.2
    * xalan-j2-xsltc-2.7.3-150200.11.7.1
    * mojo-parent-82-150200.3.10.1
    * netty3-javadoc-3.10.6-150200.3.13.2
    * netty3-3.10.6-150200.3.13.2
    * xerces-j2-demo-2.12.2-150200.3.10.2
    * bcel-6.10.0-150200.11.6.2
    * xerces-j2-2.12.2-150200.3.10.2
    * apache-commons-lang3-3.16.0-150200.3.9.2
    * xalan-j2-manual-2.7.3-150200.11.7.1
  * openSUSE Leap 15.6 (noarch)
    * xalan-j2-demo-2.7.3-150200.11.7.1
    * apache-commons-lang3-javadoc-3.16.0-150200.3.9.2
    * xalan-j2-2.7.3-150200.11.7.1
    * xerces-j2-javadoc-2.12.2-150200.3.10.2
    * xalan-j2-xsltc-2.7.3-150200.11.7.1
    * mojo-parent-82-150200.3.10.1
    * netty3-javadoc-3.10.6-150200.3.13.2
    * netty3-3.10.6-150200.3.13.2
    * xerces-j2-demo-2.12.2-150200.3.10.2
    * bcel-6.10.0-150200.11.6.2
    * xerces-j2-2.12.2-150200.3.10.2
    * apache-commons-lang3-3.16.0-150200.3.9.2
    * xalan-j2-manual-2.7.3-150200.11.7.1
  * Basesystem Module 15-SP5 (noarch)
    * xalan-j2-2.7.3-150200.11.7.1
    * bcel-6.10.0-150200.11.6.2
    * xerces-j2-2.12.2-150200.3.10.2
  * Basesystem Module 15-SP6 (noarch)
    * apache-commons-lang3-3.16.0-150200.3.9.2
    * xalan-j2-2.7.3-150200.11.7.1
    * bcel-6.10.0-150200.11.6.2
    * xerces-j2-2.12.2-150200.3.10.2
  * Development Tools Module 15-SP5 (noarch)
    * apache-commons-lang3-3.16.0-150200.3.9.2
    * netty3-3.10.6-150200.3.13.2
  * Development Tools Module 15-SP6 (noarch)
    * netty3-3.10.6-150200.3.13.2
  * SUSE Manager Server 4.3 Module 4.3 (noarch)
    * apache-commons-lang3-3.16.0-150200.3.9.2
  * SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch)
    * xalan-j2-2.7.3-150200.11.7.1
    * netty3-3.10.6-150200.3.13.2
    * bcel-6.10.0-150200.11.6.2
    * xerces-j2-2.12.2-150200.3.10.2
    * apache-commons-lang3-3.16.0-150200.3.9.2
  * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch)
    * xalan-j2-2.7.3-150200.11.7.1
    * netty3-3.10.6-150200.3.13.2
    * bcel-6.10.0-150200.11.6.2
    * xerces-j2-2.12.2-150200.3.10.2
    * apache-commons-lang3-3.16.0-150200.3.9.2

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/suma-updates/attachments/20241111/0e0a1bc1/attachment.htm>


More information about the suma-updates mailing list