SUSE-SU-2024:4009-1: critical: Maintenance update for SUSE Manager 5.0: Server, Proxy and Retail Branch Server

SUSE-MANAGER-UPDATES null at suse.de
Mon Nov 18 16:34:58 UTC 2024



# Maintenance update for SUSE Manager 5.0: Server, Proxy and Retail Branch
Server

Announcement ID: SUSE-SU-2024:4009-1  
Release Date: 2024-11-18T13:21:54Z  
Rating: critical  
References:

  * bsc#1228945
  * bsc#1229077
  * bsc#1229923
  * bsc#1230255
  * bsc#1230536
  * bsc#1231332
  * bsc#1231568
  * bsc#1231852
  * bsc#1231900
  * bsc#1231922
  * jsc#MSQA-863

  
Cross-References:

  * CVE-2024-47533
  * CVE-2024-49502
  * CVE-2024-49503

  
CVSS scores:

  * CVE-2024-47533 ( SUSE ):  9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  * CVE-2024-49502 ( SUSE ):  4.6
    CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
  * CVE-2024-49502 ( SUSE ):  3.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:N
  * CVE-2024-49503 ( SUSE ):  4.6
    CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N
  * CVE-2024-49503 ( SUSE ):  3.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:N

  
Affected Products:

  * SUSE Linux Enterprise Micro 5.5
  * SUSE Manager Proxy 5.0 Extension 5.0
  * SUSE Manager Retail Branch Server 5.0 Extension 5.0
  * SUSE Manager Server 5.0 Extension 5.0

  
  
An update that solves three vulnerabilities, contains one feature and has seven
security fixes can now be installed.

## Recommended update for SUSE Manager Proxy 5.0

### Description:

This update fixes the following issues:

proxy-httpd-image:

  * Version 5.0.8
  * Store Proxy FQDN in rhn.conf for auth token use (bsc#1230255)

proxy-salt-broker-image:

  * Version 5.0.8
  * Update for next release

proxy-squid-image:

  * Version 5.0.8
  * Update for next release

proxy-ssh-image:

  * Version 5.0.8
  * Update for next release

proxy-tftpd-image:

  * Version 5.0.8
  * Update for next release

## Recommended update for SUSE Manager Retail Branch Server 5.0

### Description:

This update fixes the following issues:

proxy-httpd-image:

  * Version 5.0.8
  * Store Proxy FQDN in rhn.conf for auth token use (bsc#1230255)

proxy-salt-broker-image:

  * Version 5.0.8
  * Update for next release

proxy-squid-image:

  * Version 5.0.8
  * Update for next release

proxy-ssh-image:

  * Version 5.0.8
  * Update for next release

proxy-tftpd-image:

  * Version 5.0.8
  * Update for next release

## Security update for SUSE Manager Server 5.0

### Description:

This update fixes the following issues:

server-attestation-image:

  * Version 5.0.6
  * Update for next release

server-hub-xmlrpc-api-image:

  * Version 5.0.8
  * Update for next release

server-image:

  * Version 5.0.9
  * Add HANA and cluster formulas to Server image (bsc#1230536)
  * Use /etc/krb5.conf.d for all kerberos related configurations (bsc#1229077)
  * Do not install outdated package "spacewalk-utils-extras" on Server image
    (bsc#1228945)
  * Fix package name search when syncing volumes data (bsc#1229923)

server-migration-14-16-image:

  * Version 5.0.9
  * Update for next release

susemanager-sync-data:

  * Version 5.0.8-0
  * Add SUSE Linux Enterprise 15 SP5 LTSS channel families
  * Add MicroOS PPC channel family
  * Set Ubuntu 22.04 to released
  * Version 5.0.7-0
  * Add Ubuntu 24.04 support
  * Add channel family for SLES 12 SP5 LTSS Extended Security

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".  
Alternatively you can run the command listed for your product:

  * SUSE Manager Proxy 5.0 Extension 5.0  
    zypper in -t patch SUSE-SUSE-Manager-Proxy-5.0-2024-4009=1

  * SUSE Manager Retail Branch Server 5.0 Extension 5.0  
    zypper in -t patch SUSE-SUSE-Manager-Retail-Branch-Server-5.0-2024-4009=1

  * SUSE Manager Server 5.0 Extension 5.0  
    zypper in -t patch SUSE-SUSE-Manager-Server-5.0-2024-4009=1

## Package List:

  * SUSE Manager Proxy 5.0 Extension 5.0 (aarch64)
    * suse-manager-5.0-aarch64-proxy-ssh-image-5.0.2-7.6.9
    * suse-manager-5.0-aarch64-proxy-squid-image-5.0.2-7.6.11
    * suse-manager-5.0-aarch64-proxy-httpd-image-5.0.2-7.6.29
    * suse-manager-5.0-aarch64-proxy-tftpd-image-5.0.2-7.6.9
    * suse-manager-5.0-aarch64-proxy-salt-broker-image-5.0.2-7.6.30
  * SUSE Manager Proxy 5.0 Extension 5.0 (ppc64le)
    * suse-manager-5.0-ppc64le-proxy-salt-broker-image-5.0.2-7.6.30
    * suse-manager-5.0-ppc64le-proxy-squid-image-5.0.2-7.6.11
    * suse-manager-5.0-ppc64le-proxy-ssh-image-5.0.2-7.6.9
    * suse-manager-5.0-ppc64le-proxy-httpd-image-5.0.2-7.6.29
    * suse-manager-5.0-ppc64le-proxy-tftpd-image-5.0.2-7.6.9
  * SUSE Manager Proxy 5.0 Extension 5.0 (s390x)
    * suse-manager-5.0-s390x-proxy-ssh-image-5.0.2-7.6.9
    * suse-manager-5.0-s390x-proxy-salt-broker-image-5.0.2-7.6.30
    * suse-manager-5.0-s390x-proxy-httpd-image-5.0.2-7.6.29
    * suse-manager-5.0-s390x-proxy-squid-image-5.0.2-7.6.11
    * suse-manager-5.0-s390x-proxy-tftpd-image-5.0.2-7.6.9
  * SUSE Manager Proxy 5.0 Extension 5.0 (x86_64)
    * suse-manager-5.0-x86_64-proxy-tftpd-image-5.0.2-7.6.9
    * suse-manager-5.0-x86_64-proxy-ssh-image-5.0.2-7.6.9
    * suse-manager-5.0-x86_64-proxy-salt-broker-image-5.0.2-7.6.30
    * suse-manager-5.0-x86_64-proxy-squid-image-5.0.2-7.6.11
    * suse-manager-5.0-x86_64-proxy-httpd-image-5.0.2-7.6.29
  * SUSE Manager Retail Branch Server 5.0 Extension 5.0 (aarch64)
    * suse-manager-5.0-aarch64-proxy-ssh-image-5.0.2-7.6.9
    * suse-manager-5.0-aarch64-proxy-squid-image-5.0.2-7.6.11
    * suse-manager-5.0-aarch64-proxy-httpd-image-5.0.2-7.6.29
    * suse-manager-5.0-aarch64-proxy-tftpd-image-5.0.2-7.6.9
    * suse-manager-5.0-aarch64-proxy-salt-broker-image-5.0.2-7.6.30
  * SUSE Manager Retail Branch Server 5.0 Extension 5.0 (ppc64le)
    * suse-manager-5.0-ppc64le-proxy-salt-broker-image-5.0.2-7.6.30
    * suse-manager-5.0-ppc64le-proxy-squid-image-5.0.2-7.6.11
    * suse-manager-5.0-ppc64le-proxy-ssh-image-5.0.2-7.6.9
    * suse-manager-5.0-ppc64le-proxy-httpd-image-5.0.2-7.6.29
    * suse-manager-5.0-ppc64le-proxy-tftpd-image-5.0.2-7.6.9
  * SUSE Manager Retail Branch Server 5.0 Extension 5.0 (s390x)
    * suse-manager-5.0-s390x-proxy-ssh-image-5.0.2-7.6.9
    * suse-manager-5.0-s390x-proxy-salt-broker-image-5.0.2-7.6.30
    * suse-manager-5.0-s390x-proxy-httpd-image-5.0.2-7.6.29
    * suse-manager-5.0-s390x-proxy-squid-image-5.0.2-7.6.11
    * suse-manager-5.0-s390x-proxy-tftpd-image-5.0.2-7.6.9
  * SUSE Manager Retail Branch Server 5.0 Extension 5.0 (x86_64)
    * suse-manager-5.0-x86_64-proxy-tftpd-image-5.0.2-7.6.9
    * suse-manager-5.0-x86_64-proxy-ssh-image-5.0.2-7.6.9
    * suse-manager-5.0-x86_64-proxy-salt-broker-image-5.0.2-7.6.30
    * suse-manager-5.0-x86_64-proxy-squid-image-5.0.2-7.6.11
    * suse-manager-5.0-x86_64-proxy-httpd-image-5.0.2-7.6.29
  * SUSE Manager Server 5.0 Extension 5.0 (aarch64)
    * suse-manager-5.0-aarch64-server-image-5.0.2-7.6.32
    * suse-manager-5.0-aarch64-server-migration-14-16-image-5.0.2-7.6.25
    * suse-manager-5.0-aarch64-server-attestation-image-5.0.2-6.6.9
    * suse-manager-5.0-aarch64-server-hub-xmlrpc-api-image-5.0.2-6.6.12
  * SUSE Manager Server 5.0 Extension 5.0 (ppc64le)
    * suse-manager-5.0-ppc64le-server-image-5.0.2-7.6.32
    * suse-manager-5.0-ppc64le-server-attestation-image-5.0.2-6.6.9
    * suse-manager-5.0-ppc64le-server-hub-xmlrpc-api-image-5.0.2-6.6.12
    * suse-manager-5.0-ppc64le-server-migration-14-16-image-5.0.2-7.6.25
  * SUSE Manager Server 5.0 Extension 5.0 (s390x)
    * suse-manager-5.0-s390x-server-migration-14-16-image-5.0.2-7.6.25
    * suse-manager-5.0-s390x-server-attestation-image-5.0.2-6.6.9
    * suse-manager-5.0-s390x-server-hub-xmlrpc-api-image-5.0.2-6.6.12
    * suse-manager-5.0-s390x-server-image-5.0.2-7.6.32
  * SUSE Manager Server 5.0 Extension 5.0 (x86_64)
    * suse-manager-5.0-x86_64-server-image-5.0.2-7.6.32
    * suse-manager-5.0-x86_64-server-hub-xmlrpc-api-image-5.0.2-6.6.12
    * suse-manager-5.0-x86_64-server-attestation-image-5.0.2-6.6.9
    * suse-manager-5.0-x86_64-server-migration-14-16-image-5.0.2-7.6.25

## References:

  * https://www.suse.com/security/cve/CVE-2024-47533.html
  * https://www.suse.com/security/cve/CVE-2024-49502.html
  * https://www.suse.com/security/cve/CVE-2024-49503.html
  * https://bugzilla.suse.com/show_bug.cgi?id=1228945
  * https://bugzilla.suse.com/show_bug.cgi?id=1229077
  * https://bugzilla.suse.com/show_bug.cgi?id=1229923
  * https://bugzilla.suse.com/show_bug.cgi?id=1230255
  * https://bugzilla.suse.com/show_bug.cgi?id=1230536
  * https://bugzilla.suse.com/show_bug.cgi?id=1231332
  * https://bugzilla.suse.com/show_bug.cgi?id=1231568
  * https://bugzilla.suse.com/show_bug.cgi?id=1231852
  * https://bugzilla.suse.com/show_bug.cgi?id=1231900
  * https://bugzilla.suse.com/show_bug.cgi?id=1231922
  * https://jira.suse.com/browse/MSQA-863

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/suma-updates/attachments/20241118/f9bf1df5/attachment.htm>


More information about the suma-updates mailing list