From null at suse.de Wed Jun 3 20:31:24 2026 From: null at suse.de (SUSE-MANAGER-UPDATES) Date: Wed, 03 Jun 2026 20:31:24 -0000 Subject: SUSE-SU-2026:2255-1: important: Security update 5.0.8 for Multi-Linux Manager Salt Bundle Message-ID: <178051868482.412.16709821498185006589@04080f4f8216> # Security update 5.0.8 for Multi-Linux Manager Salt Bundle Announcement ID: SUSE-SU-2026:2255-1 Release Date: 2026-06-03T14:19:09Z Rating: important References: * bsc#1254629 * bsc#1254900 * bsc#1257583 * bsc#1257831 * bsc#1258957 * bsc#1259554 * bsc#1259700 * bsc#1259804 * bsc#1259808 * jsc#MSQA-1052 Cross-References: * CVE-2026-27448 * CVE-2026-27459 * CVE-2026-31958 CVSS scores: * CVE-2026-27448 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-27448 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-27448 ( NVD ): 1.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-27448 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-27459 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-27459 ( SUSE ): 7.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-27459 ( NVD ): 7.2 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-27459 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31958 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31958 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31958 ( NVD ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-31958 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Liberty Linux 9.6 EMS * SUSE Manager Client Tools for RHEL, Liberty and Clones 9 An update that solves three vulnerabilities, contains one feature and has six security fixes can now be installed. ## Description: This update fixes the following issues: venv-salt-minion: * Security issues fixed: * CVE-2026-31958: tornado: Fixed parsing large multipart bodies with many parts can cause a denial of service (bsc#1259554) * CVE-2026-27459: pyOpenSSL: Fixed issue with large cookie value that can lead to a buffer overflow (bsc#1259808) * CVE-2026-27448: pyOpenSSL: Fixed unhandled exception can result in connection not being cancelled (bsc#1259804) * Other updates and bugfixes: * Use non vendored Tornado with Python 3.11 (bsc#1257583, bsc#1259700) * Hardened Tornado from invalid HTTP reason phrases * Read full URI from ldap pillar config (bsc#1254900) * Make users with backslash work for `salt-ssh` (bsc#1254629). * Fixed `ansible.playbooks` `extra-vars` quoting (bsc#1257831), * Fixed `virtualenv` call in test helper to use proper Python version. * Fixed the issue preventing SELinux profile to be loaded on SLES 16 deployed using cloud images (bsc#1258957) ## Special Instructions and Notes: ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Client Tools for RHEL, Liberty and Clones 9 zypper in -t patch SUSE-EL-9-CLIENT-TOOLS-2026-2255=1 ## Package List: * SUSE Manager Client Tools for RHEL, Liberty and Clones 9 (aarch64 ppc64le s390x x86_64) * venv-salt-minion-3006.0-1.76.1 ## References: * https://www.suse.com/security/cve/CVE-2026-27448.html * https://www.suse.com/security/cve/CVE-2026-27459.html * https://www.suse.com/security/cve/CVE-2026-31958.html * https://bugzilla.suse.com/show_bug.cgi?id=1254629 * https://bugzilla.suse.com/show_bug.cgi?id=1254900 * https://bugzilla.suse.com/show_bug.cgi?id=1257583 * https://bugzilla.suse.com/show_bug.cgi?id=1257831 * https://bugzilla.suse.com/show_bug.cgi?id=1258957 * https://bugzilla.suse.com/show_bug.cgi?id=1259554 * https://bugzilla.suse.com/show_bug.cgi?id=1259700 * https://bugzilla.suse.com/show_bug.cgi?id=1259804 * https://bugzilla.suse.com/show_bug.cgi?id=1259808 * https://jira.suse.com/browse/MSQA-1052 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Jun 3 20:31:46 2026 From: null at suse.de (SUSE-MANAGER-UPDATES) Date: Wed, 03 Jun 2026 20:31:46 -0000 Subject: SUSE-SU-2026:2254-1: important: Security update 5.0.8 for Multi-Linux Manager Client Tools Message-ID: <178051870623.412.5829406561803074580@04080f4f8216> # Security update 5.0.8 for Multi-Linux Manager Client Tools Announcement ID: SUSE-SU-2026:2254-1 Release Date: 2026-06-03T14:18:10Z Rating: important References: * bsc#1236516 * bsc#1238686 * bsc#1248699 * bsc#1248707 * bsc#1252964 * bsc#1254619 * bsc#1257941 * bsc#1258927 * bsc#1259208 * bsc#1261810 * jsc#ECO-3319 * jsc#MSQA-1052 * jsc#PED-12485 * jsc#PED-7893 * jsc#PED-7928 Cross-References: * CVE-2022-21698 * CVE-2023-45288 * CVE-2025-22870 CVSS scores: * CVE-2022-21698 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2022-21698 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-45288 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2023-45288 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2023-45288 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-22870 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-22870 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L * CVE-2025-22870 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L Affected Products: * SUSE Liberty Linux 9.6 EMS * SUSE Manager Client Tools for RHEL, Liberty and Clones 9 An update that solves three vulnerabilities, contains five features and has seven security fixes can now be installed. ## Description: This update fixes the following issues: golang-github-QubitProducts-exporter_exporter: * Security Fixes: * CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248707) golang-github-prometheus-node_exporter was updated from version 1.5.0 to 1.10.2: * Security Fixes: * Version 1.9.1: * CVE-2025-22870: Fixed potential proxy bypass using IPv6 zone IDs (bsc#1238686) * Version 1.9.0: * CVE-2023-45288: Close connections when receiving too many headers (bsc#1236516) * Highlights of other changes and bug fixes: * Backward Compatibility and packaging changes: * Added compatibility for Go 1.22/1.23 needed in older RHEL toolchains * Pinned golang.org/x/net to v0.37.0 for Go 1.22 compatibility * Version 1.10.2: * Fixed typo in Zswap metric name (meminfo) * Version 1.10.1: * Fixed mount points being collected multiple times (filesystem) * Refactored mountinfo parsing (bsc#1261810) * Added Zswap/Zswapped metrics (meminfo) * Version 1.10.0: * New collectors: PCIe devices, swaps * Added systemd virtualization metrics, AIX metrics * WiFi packet metrics, additional PCIe and TLB metrics * Changed mdadm to use sysfs, added erofs to excluded filesystems * Fixed bugs: cpufreq collector, ethtool metrics * Version 1.9.1: * Fixed missing IRQ on older kernels (pressure) * Version 1.9.0 (jsc#PED-12485): * Switched to Go log/slog for logging * Converted meminfo to use procfs library * New features: filesystem mount info, Btrfs commit stats, interrupt filtering, slabinfo filters, IRQ PSI metrics, hwmon filtering, network interface alias labels, GPU clock frequencies, AIX support, * Enhancements: TCP receive queue drop, block device rotational status, CPU online status, performance optimizations * Fixed: ZFS integer underflow, CPU pressure on limited systems, dataset name parsing * Version 1.8.x: * Fixed CPU pressure metric collection, CPU seconds on Solaris, pressure collector nil reference * Version 1.8.0: * New collectors: xfrm (IPsec), watchdog * Added CPU vulnerability mitigation labels, TCP out-of-order queue metrics, filesystem device error surfacing * Removed caching of os-release file modtime/filename * Fixed: hwmon nil pointer, ethtool metric sanitization, NetClass data race * Version 1.7.0 (jsc#PED-7893, jsc#PED-7928): * New: CPU vulnerabilities reporting from sysfs * Enhancements: parallelized filesystem stat calls, missing link speeds in ethtool, CPU MHz values, qdisc performance, hwmon filtering, rtnetlink for ARP stats * Fixed: netdev 32-bit fallback, btrfs handle leaks, NFSd v4 index * Version 1.6.0: * Deprecated ntp and supervisord collectors * Removed bcache cache_readaheads_totals metrics * Improved offline CPU handling (removed metrics for offline CPUs) * New: softirqs collector * Enhancements: ZFS zpool states and memory metrics, network interface admin state, CPU frequency governor, reduced btrfs privileges * Fixed: perf tracefs detection, thermal zone noise, Linux aarch64 interrupts prometheus-postgres_exporter: * Security Fixes: * CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248699) scap-security-guide: * Update the SSG package description * Add SLE16 profiles to the build * Updated to 0.1.79 (jsc#ECO-3319) * Create SLE16 HIPAA profile * Create SLE16 PCI DSS 4 profile * Use Sequoia in RHEL 10 instead of GPG * New Profile for RHEL10: BSI * Move RHEL Control files to product files * Update RHEL 9 CCN profile * Various updates for SLE 12/15 spacecmd: * Version 5.0.16-0 * Update translation strings uyuni-tools: * Version 0.1.39-0 * mgrpxy ssh tuning should happen before crypto policies (bsc#1254619) * Fix default value for helm registry (bsc#1258927). * Use static supportconfig name to avoid dynamic search (bsc#1257941) * Do not nest multiple tarball files and instead collect all files into one tarball (bsc#1252964) * Show where final tarball was generated (bsc#1259208) ## Special Instructions and Notes: ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Client Tools for RHEL, Liberty and Clones 9 zypper in -t patch SUSE-EL-9-CLIENT-TOOLS-2026-2254=1 ## Package List: * SUSE Manager Client Tools for RHEL, Liberty and Clones 9 (aarch64 ppc64le s390x x86_64) * golang-github-QubitProducts-exporter_exporter-debuginfo-0.4.0-1.9.1 * mgrctl-0.1.39-1.32.1 * prometheus-postgres_exporter-0.10.1-1.15.1 * mgrctl-debuginfo-0.1.39-1.32.1 * golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1 * golang-github-QubitProducts-exporter_exporter-debugsource-0.4.0-1.9.1 * SUSE Manager Client Tools for RHEL, Liberty and Clones 9 (aarch64 ppc64le x86_64) * golang-github-prometheus-node_exporter-1.10.2-1.12.1 * SUSE Manager Client Tools for RHEL, Liberty and Clones 9 (noarch) * mgrctl-zsh-completion-0.1.39-1.32.1 * mgrctl-bash-completion-0.1.39-1.32.1 * scap-security-guide-redhat-0.1.80-1.44.1 * spacecmd-5.0.16-1.61.1 ## References: * https://www.suse.com/security/cve/CVE-2022-21698.html * https://www.suse.com/security/cve/CVE-2023-45288.html * https://www.suse.com/security/cve/CVE-2025-22870.html * https://bugzilla.suse.com/show_bug.cgi?id=1236516 * https://bugzilla.suse.com/show_bug.cgi?id=1238686 * https://bugzilla.suse.com/show_bug.cgi?id=1248699 * https://bugzilla.suse.com/show_bug.cgi?id=1248707 * https://bugzilla.suse.com/show_bug.cgi?id=1252964 * https://bugzilla.suse.com/show_bug.cgi?id=1254619 * https://bugzilla.suse.com/show_bug.cgi?id=1257941 * https://bugzilla.suse.com/show_bug.cgi?id=1258927 * https://bugzilla.suse.com/show_bug.cgi?id=1259208 * https://bugzilla.suse.com/show_bug.cgi?id=1261810 * https://jira.suse.com/browse/ECO-3319 * https://jira.suse.com/browse/MSQA-1052 * https://jira.suse.com/browse/PED-12485 * https://jira.suse.com/browse/PED-7893 * https://jira.suse.com/browse/PED-7928 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Jun 3 20:32:27 2026 From: null at suse.de (SUSE-MANAGER-UPDATES) Date: Wed, 03 Jun 2026 20:32:27 -0000 Subject: SUSE-SU-202604:15331-1: important: Security update 5.0.8 for Multi-Linux Manager Salt Bundle Message-ID: <178051874723.412.9715844724604686734@04080f4f8216> # Security update 5.0.8 for Multi-Linux Manager Salt Bundle Announcement ID: SUSE-SU-202604:15331-1 Release Date: 2026-06-03T14:15:16Z Rating: important References: * bsc#1254629 * bsc#1254900 * bsc#1257583 * bsc#1257831 * bsc#1258957 * bsc#1259554 * bsc#1259700 * bsc#1259804 * bsc#1259808 * jsc#MSQA-1052 Cross-References: * CVE-2026-27448 * CVE-2026-27459 * CVE-2026-31958 CVSS scores: * CVE-2026-27448 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-27448 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-27448 ( NVD ): 1.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-27448 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-27459 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-27459 ( SUSE ): 7.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-27459 ( NVD ): 7.2 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-27459 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31958 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31958 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31958 ( NVD ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-31958 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Manager Client Tools for Ubuntu 24.04 2404 An update that solves three vulnerabilities, contains one feature and has six security fixes can now be installed. ## Description: This update fixes the following issues: venv-salt-minion: * Security issues fixed: * CVE-2026-31958: tornado: Fixed parsing large multipart bodies with many parts can cause a denial of service (bsc#1259554) * CVE-2026-27459: pyOpenSSL: Fixed issue with large cookie value that can lead to a buffer overflow (bsc#1259808) * CVE-2026-27448: pyOpenSSL: Fixed unhandled exception can result in connection not being cancelled (bsc#1259804) * Other updates and bugfixes: * Use non vendored Tornado with Python 3.11 (bsc#1257583, bsc#1259700) * Hardened Tornado from invalid HTTP reason phrases * Read full URI from ldap pillar config (bsc#1254900) * Make users with backslash work for `salt-ssh` (bsc#1254629). * Fixed `ansible.playbooks` `extra-vars` quoting (bsc#1257831), * Fixed `virtualenv` call in test helper to use proper Python version. * Fixed the issue preventing SELinux profile to be loaded on SLES 16 deployed using cloud images (bsc#1258957) ## Special Instructions and Notes: ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Client Tools for Ubuntu 24.04 2404 zypper in -t patch suse-ubu244ct-client-tools-202604-15331=1 ## Package List: * SUSE Manager Client Tools for Ubuntu 24.04 2404 (amd64) * venv-salt-minion-3006.0-2.31.2 ## References: * https://www.suse.com/security/cve/CVE-2026-27448.html * https://www.suse.com/security/cve/CVE-2026-27459.html * https://www.suse.com/security/cve/CVE-2026-31958.html * https://bugzilla.suse.com/show_bug.cgi?id=1254629 * https://bugzilla.suse.com/show_bug.cgi?id=1254900 * https://bugzilla.suse.com/show_bug.cgi?id=1257583 * https://bugzilla.suse.com/show_bug.cgi?id=1257831 * https://bugzilla.suse.com/show_bug.cgi?id=1258957 * https://bugzilla.suse.com/show_bug.cgi?id=1259554 * https://bugzilla.suse.com/show_bug.cgi?id=1259700 * https://bugzilla.suse.com/show_bug.cgi?id=1259804 * https://bugzilla.suse.com/show_bug.cgi?id=1259808 * https://jira.suse.com/browse/MSQA-1052 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Jun 3 20:32:36 2026 From: null at suse.de (SUSE-MANAGER-UPDATES) Date: Wed, 03 Jun 2026 20:32:36 -0000 Subject: SUSE-RU-202604:15330-1: moderate: Recommended update 5.0.8 for Multi-Linux Manager Client Tools Message-ID: <178051875609.412.18381273506833119457@04080f4f8216> # Recommended update 5.0.8 for Multi-Linux Manager Client Tools Announcement ID: SUSE-RU-202604:15330-1 Release Date: 2026-06-03T14:14:35Z Rating: moderate References: * bsc#1252964 * bsc#1254619 * bsc#1257941 * bsc#1258927 * bsc#1259208 * jsc#MSQA-1052 Affected Products: * SUSE Manager Client Tools for Ubuntu 24.04 2404 An update that contains one feature and has five fixes can now be installed. ## Description: This update fixes the following issues: spacecmd: * Version 5.0.16-0 * Update translation strings uyuni-tools: * Version 0.1.39-0 * mgrpxy ssh tuning should happen before crypto policies (bsc#1254619) * Fix default value for helm registry (bsc#1258927). * Use static supportconfig name to avoid dynamic search (bsc#1257941) * Do not nest multiple tarball files and instead collect all files into one tarball (bsc#1252964) * Show where final tarball was generated (bsc#1259208) ## Special Instructions and Notes: ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Client Tools for Ubuntu 24.04 2404 zypper in -t patch suse-ubu244ct-client-tools-202604-15330=1 ## Package List: * SUSE Manager Client Tools for Ubuntu 24.04 2404 (all) * spacecmd-5.0.16-2.21.1 * mgrctl-fish-completion-0.1.39-2.23.1 * mgrctl-zsh-completion-0.1.39-2.23.1 * mgrctl-bash-completion-0.1.39-2.23.1 * SUSE Manager Client Tools for Ubuntu 24.04 2404 (amd64) * mgrctl-0.1.39-2.23.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1252964 * https://bugzilla.suse.com/show_bug.cgi?id=1254619 * https://bugzilla.suse.com/show_bug.cgi?id=1257941 * https://bugzilla.suse.com/show_bug.cgi?id=1258927 * https://bugzilla.suse.com/show_bug.cgi?id=1259208 * https://jira.suse.com/browse/MSQA-1052 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Jun 3 20:32:52 2026 From: null at suse.de (SUSE-MANAGER-UPDATES) Date: Wed, 03 Jun 2026 20:32:52 -0000 Subject: SUSE-SU-202604:15329-1: important: Security update 5.0.8 for Multi-Linux Manager Salt Bundle Message-ID: <178051877210.412.13220225907882524143@04080f4f8216> # Security update 5.0.8 for Multi-Linux Manager Salt Bundle Announcement ID: SUSE-SU-202604:15329-1 Release Date: 2026-06-03T14:14:26Z Rating: important References: * bsc#1254629 * bsc#1254900 * bsc#1257583 * bsc#1257831 * bsc#1258957 * bsc#1259554 * bsc#1259700 * bsc#1259804 * bsc#1259808 * jsc#MSQA-1052 Cross-References: * CVE-2026-27448 * CVE-2026-27459 * CVE-2026-31958 CVSS scores: * CVE-2026-27448 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-27448 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-27448 ( NVD ): 1.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-27448 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-27459 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-27459 ( SUSE ): 7.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-27459 ( NVD ): 7.2 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-27459 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31958 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31958 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31958 ( NVD ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-31958 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Manager Client Tools for Ubuntu 22.04 2204 An update that solves three vulnerabilities, contains one feature and has six security fixes can now be installed. ## Description: This update fixes the following issues: venv-salt-minion: * Security issues fixed: * CVE-2026-31958: tornado: Fixed parsing large multipart bodies with many parts can cause a denial of service (bsc#1259554) * CVE-2026-27459: pyOpenSSL: Fixed issue with large cookie value that can lead to a buffer overflow (bsc#1259808) * CVE-2026-27448: pyOpenSSL: Fixed unhandled exception can result in connection not being cancelled (bsc#1259804) * Other updates and bugfixes: * Use non vendored Tornado with Python 3.11 (bsc#1257583, bsc#1259700) * Hardened Tornado from invalid HTTP reason phrases * Read full URI from ldap pillar config (bsc#1254900) * Make users with backslash work for `salt-ssh` (bsc#1254629). * Fixed `ansible.playbooks` `extra-vars` quoting (bsc#1257831), * Fixed `virtualenv` call in test helper to use proper Python version. * Fixed the issue preventing SELinux profile to be loaded on SLES 16 deployed using cloud images (bsc#1258957) ## Special Instructions and Notes: ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Client Tools for Ubuntu 22.04 2204 zypper in -t patch suse-ubu224ct-client-tools-202604-15329=1 ## Package List: * SUSE Manager Client Tools for Ubuntu 22.04 2204 (amd64) * venv-salt-minion-3006.0-2.80.1 ## References: * https://www.suse.com/security/cve/CVE-2026-27448.html * https://www.suse.com/security/cve/CVE-2026-27459.html * https://www.suse.com/security/cve/CVE-2026-31958.html * https://bugzilla.suse.com/show_bug.cgi?id=1254629 * https://bugzilla.suse.com/show_bug.cgi?id=1254900 * https://bugzilla.suse.com/show_bug.cgi?id=1257583 * https://bugzilla.suse.com/show_bug.cgi?id=1257831 * https://bugzilla.suse.com/show_bug.cgi?id=1258957 * https://bugzilla.suse.com/show_bug.cgi?id=1259554 * https://bugzilla.suse.com/show_bug.cgi?id=1259700 * https://bugzilla.suse.com/show_bug.cgi?id=1259804 * https://bugzilla.suse.com/show_bug.cgi?id=1259808 * https://jira.suse.com/browse/MSQA-1052 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Jun 3 20:33:00 2026 From: null at suse.de (SUSE-MANAGER-UPDATES) Date: Wed, 03 Jun 2026 20:33:00 -0000 Subject: SUSE-RU-202604:15328-1: moderate: Recommended update 5.0.8 for Multi-Linux Manager Client Tools Message-ID: <178051878081.412.5670669273243612093@04080f4f8216> # Recommended update 5.0.8 for Multi-Linux Manager Client Tools Announcement ID: SUSE-RU-202604:15328-1 Release Date: 2026-06-03T14:13:39Z Rating: moderate References: * bsc#1252964 * bsc#1254619 * bsc#1257941 * bsc#1258927 * bsc#1259208 * jsc#ECO-3319 * jsc#MSQA-1052 Affected Products: * SUSE Manager Client Tools for Ubuntu 22.04 2204 An update that contains two features and has five fixes can now be installed. ## Description: This update fixes the following issues: scap-security-guide: * Update the SSG package description * Add SLE16 profiles to the build * Updated to 0.1.79 (jsc#ECO-3319) * Created SUSE Linux Enterprise 16 HIPAA and PCI DSS 4 profiles * Use Sequoia in RHEL 10 instead of GPG * New Profile for RHEL10: BSI * Move RHEL Control files to product files * Update RHEL 9 CCN profile * Various updates for SUSE Linux Enterprise 12 and 15 spacecmd: * Version 5.0.16-0 * Update translation strings uyuni-tools: * Version 0.1.39-0 * mgrpxy ssh tuning should happen before crypto policies (bsc#1254619) * Fix default value for helm registry (bsc#1258927). * Use static supportconfig name to avoid dynamic search (bsc#1257941) * Do not nest multiple tarball files and instead collect all files into one tarball (bsc#1252964) * Show where final tarball was generated (bsc#1259208) ## Special Instructions and Notes: ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Client Tools for Ubuntu 22.04 2204 zypper in -t patch suse-ubu224ct-client-tools-202604-15328=1 ## Package List: * SUSE Manager Client Tools for Ubuntu 22.04 2204 (all) * mgrctl-fish-completion-0.1.39-2.33.1 * scap-security-guide-ubuntu-0.1.80-2.46.1 * mgrctl-bash-completion-0.1.39-2.33.1 * spacecmd-5.0.16-2.65.1 * mgrctl-zsh-completion-0.1.39-2.33.1 * SUSE Manager Client Tools for Ubuntu 22.04 2204 (amd64) * mgrctl-0.1.39-2.33.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1252964 * https://bugzilla.suse.com/show_bug.cgi?id=1254619 * https://bugzilla.suse.com/show_bug.cgi?id=1257941 * https://bugzilla.suse.com/show_bug.cgi?id=1258927 * https://bugzilla.suse.com/show_bug.cgi?id=1259208 * https://jira.suse.com/browse/ECO-3319 * https://jira.suse.com/browse/MSQA-1052 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Jun 3 20:33:26 2026 From: null at suse.de (SUSE-MANAGER-UPDATES) Date: Wed, 03 Jun 2026 20:33:26 -0000 Subject: SUSE-SU-2026:2246-1: important: Security update 5.0.8 for Multi-Linux Manager Salt Bundle Message-ID: <178051880642.412.6060084288639934350@04080f4f8216> # Security update 5.0.8 for Multi-Linux Manager Salt Bundle Announcement ID: SUSE-SU-2026:2246-1 Release Date: 2026-06-03T14:13:17Z Rating: important References: * bsc#1254629 * bsc#1254900 * bsc#1257583 * bsc#1257831 * bsc#1258957 * bsc#1259554 * bsc#1259700 * bsc#1259804 * bsc#1259808 * jsc#MSQA-1052 Cross-References: * CVE-2026-27448 * CVE-2026-27459 * CVE-2026-31958 CVSS scores: * CVE-2026-27448 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-27448 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-27448 ( NVD ): 1.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-27448 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-27459 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-27459 ( SUSE ): 7.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-27459 ( NVD ): 7.2 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-27459 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31958 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31958 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31958 ( NVD ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-31958 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Manager Client Tools for Debian 12 An update that solves three vulnerabilities, contains one feature and has six security fixes can now be installed. ## Description: This update fixes the following issues: venv-salt-minion: * Security issues fixed: * CVE-2026-31958: tornado: Fixed parsing large multipart bodies with many parts can cause a denial of service (bsc#1259554) * CVE-2026-27459: pyOpenSSL: Fixed issue with large cookie value that can lead to a buffer overflow (bsc#1259808) * CVE-2026-27448: pyOpenSSL: Fixed unhandled exception can result in connection not being cancelled (bsc#1259804) * Other updates and bugfixes: * Use non vendored Tornado with Python 3.11 (bsc#1257583, bsc#1259700) * Hardened Tornado from invalid HTTP reason phrases * Read full URI from ldap pillar config (bsc#1254900) * Make users with backslash work for `salt-ssh` (bsc#1254629). * Fixed `ansible.playbooks` `extra-vars` quoting (bsc#1257831), * Fixed `virtualenv` call in test helper to use proper Python version. * Fixed the issue preventing SELinux profile to be loaded on SLES 16 deployed using cloud images (bsc#1258957) ## Special Instructions and Notes: ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Client Tools for Debian 12 zypper in -t patch SUSE-Debian-12-CLIENT-TOOLS-x86_64-2026-2246=1 ## Package List: * SUSE Manager Client Tools for Debian 12 (amd64) * venv-salt-minion-3006.0-2.49.2 ## References: * https://www.suse.com/security/cve/CVE-2026-27448.html * https://www.suse.com/security/cve/CVE-2026-27459.html * https://www.suse.com/security/cve/CVE-2026-31958.html * https://bugzilla.suse.com/show_bug.cgi?id=1254629 * https://bugzilla.suse.com/show_bug.cgi?id=1254900 * https://bugzilla.suse.com/show_bug.cgi?id=1257583 * https://bugzilla.suse.com/show_bug.cgi?id=1257831 * https://bugzilla.suse.com/show_bug.cgi?id=1258957 * https://bugzilla.suse.com/show_bug.cgi?id=1259554 * https://bugzilla.suse.com/show_bug.cgi?id=1259700 * https://bugzilla.suse.com/show_bug.cgi?id=1259804 * https://bugzilla.suse.com/show_bug.cgi?id=1259808 * https://jira.suse.com/browse/MSQA-1052 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Jun 3 20:33:35 2026 From: null at suse.de (SUSE-MANAGER-UPDATES) Date: Wed, 03 Jun 2026 20:33:35 -0000 Subject: SUSE-RU-2026:2245-1: moderate: Recommended update 5.0.8 for Multi-Linux Manager Client Tools Message-ID: <178051881541.412.18378770275081498050@04080f4f8216> # Recommended update 5.0.8 for Multi-Linux Manager Client Tools Announcement ID: SUSE-RU-2026:2245-1 Release Date: 2026-06-03T14:12:04Z Rating: moderate References: * bsc#1252964 * bsc#1254619 * bsc#1257941 * bsc#1258927 * bsc#1259208 * jsc#MSQA-1052 Affected Products: * SUSE Manager Client Tools for Debian 12 An update that contains one feature and has five fixes can now be installed. ## Description: This update fixes the following issues: spacecmd: * Version 5.0.16-0 * Update translation strings uyuni-tools: * Version 0.1.39-0 * mgrpxy ssh tuning should happen before crypto policies (bsc#1254619) * Fix default value for helm registry (bsc#1258927). * Use static supportconfig name to avoid dynamic search (bsc#1257941) * Do not nest multiple tarball files and instead collect all files into one tarball (bsc#1252964) * Show where final tarball was generated (bsc#1259208) ## Special Instructions and Notes: ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Client Tools for Debian 12 zypper in -t patch SUSE-Debian-12-CLIENT-TOOLS-x86_64-2026-2245=1 ## Package List: * SUSE Manager Client Tools for Debian 12 (all) * mgrctl-bash-completion-0.1.39-2.33.1 * mgrctl-fish-completion-0.1.39-2.33.1 * mgrctl-zsh-completion-0.1.39-2.33.1 * spacecmd-5.0.16-3.41.1 * SUSE Manager Client Tools for Debian 12 (amd64) * mgrctl-0.1.39-2.33.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1252964 * https://bugzilla.suse.com/show_bug.cgi?id=1254619 * https://bugzilla.suse.com/show_bug.cgi?id=1257941 * https://bugzilla.suse.com/show_bug.cgi?id=1258927 * https://bugzilla.suse.com/show_bug.cgi?id=1259208 * https://jira.suse.com/browse/MSQA-1052 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Jun 3 20:33:52 2026 From: null at suse.de (SUSE-MANAGER-UPDATES) Date: Wed, 03 Jun 2026 20:33:52 -0000 Subject: SUSE-SU-2026:2244-1: important: Security update 5.0.8 for Multi-Linux Manager Salt Bundle Message-ID: <178051883205.412.16205703743409346195@04080f4f8216> # Security update 5.0.8 for Multi-Linux Manager Salt Bundle Announcement ID: SUSE-SU-2026:2244-1 Release Date: 2026-06-03T14:11:48Z Rating: important References: * bsc#1254629 * bsc#1254900 * bsc#1257583 * bsc#1257831 * bsc#1258957 * bsc#1259554 * bsc#1259700 * bsc#1259804 * bsc#1259808 * jsc#MSQA-1052 Cross-References: * CVE-2026-27448 * CVE-2026-27459 * CVE-2026-31958 CVSS scores: * CVE-2026-27448 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-27448 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-27448 ( NVD ): 1.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-27448 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-27459 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-27459 ( SUSE ): 7.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-27459 ( NVD ): 7.2 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-27459 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31958 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31958 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31958 ( NVD ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-31958 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.3 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 * SUSE Linux Enterprise Desktop 15 SP1 * SUSE Linux Enterprise Desktop 15 SP2 * SUSE Linux Enterprise Desktop 15 SP3 * SUSE Linux Enterprise Desktop 15 SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 * SUSE Linux Enterprise High Performance Computing 15 SP1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.0 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP1 * SUSE Linux Enterprise Real Time 15 SP2 * SUSE Linux Enterprise Real Time 15 SP3 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 * SUSE Linux Enterprise Server 15 SP1 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 * SUSE Linux Enterprise Server for SAP Applications 15 SP1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Manager Client Tools for SLE 15 * SUSE Manager Client Tools for SLE Micro 5 An update that solves three vulnerabilities, contains one feature and has six security fixes can now be installed. ## Description: This update fixes the following issues: venv-salt-minion: * Security issues fixed: * CVE-2026-31958: tornado: Fixed parsing large multipart bodies with many parts can cause a denial of service (bsc#1259554) * CVE-2026-27459: pyOpenSSL: Fixed issue with large cookie value that can lead to a buffer overflow (bsc#1259808) * CVE-2026-27448: pyOpenSSL: Fixed unhandled exception can result in connection not being cancelled (bsc#1259804) * Other updates and bugfixes: * Use non vendored Tornado with Python 3.11 (bsc#1257583, bsc#1259700) * Hardened Tornado from invalid HTTP reason phrases * Read full URI from ldap pillar config (bsc#1254900) * Make users with backslash work for `salt-ssh` (bsc#1254629). * Fixed `ansible.playbooks` `extra-vars` quoting (bsc#1257831), * Fixed `virtualenv` call in test helper to use proper Python version. * Fixed the issue preventing SELinux profile to be loaded on SLES 16 deployed using cloud images (bsc#1258957) ## Special Instructions and Notes: ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Client Tools for SLE Micro 5 zypper in -t patch SUSE-SLE-Manager-Tools-For-Micro-5-2026-2244=1 * SUSE Manager Client Tools for SLE 15 zypper in -t patch SUSE-SLE-Manager-Tools-15-2026-2244=1 ## Package List: * SUSE Manager Client Tools for SLE Micro 5 (aarch64 s390x x86_64) * venv-salt-minion-3006.0-150000.3.95.1 * SUSE Manager Client Tools for SLE 15 (aarch64 ppc64le s390x x86_64) * venv-salt-minion-3006.0-150000.3.95.1 ## References: * https://www.suse.com/security/cve/CVE-2026-27448.html * https://www.suse.com/security/cve/CVE-2026-27459.html * https://www.suse.com/security/cve/CVE-2026-31958.html * https://bugzilla.suse.com/show_bug.cgi?id=1254629 * https://bugzilla.suse.com/show_bug.cgi?id=1254900 * https://bugzilla.suse.com/show_bug.cgi?id=1257583 * https://bugzilla.suse.com/show_bug.cgi?id=1257831 * https://bugzilla.suse.com/show_bug.cgi?id=1258957 * https://bugzilla.suse.com/show_bug.cgi?id=1259554 * https://bugzilla.suse.com/show_bug.cgi?id=1259700 * https://bugzilla.suse.com/show_bug.cgi?id=1259804 * https://bugzilla.suse.com/show_bug.cgi?id=1259808 * https://jira.suse.com/browse/MSQA-1052 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Jun 3 20:36:12 2026 From: null at suse.de (SUSE-MANAGER-UPDATES) Date: Wed, 03 Jun 2026 20:36:12 -0000 Subject: SUSE-SU-2026:2243-1: important: Security update 5.0.8 for Multi-Linux Manager Client Tools Message-ID: <178051897266.412.3386583330058782104@d406a135977f> # Security update 5.0.8 for Multi-Linux Manager Client Tools Announcement ID: SUSE-SU-2026:2243-1 Release Date: 2026-06-03T14:10:43Z Rating: important References: * bsc#1248699 * bsc#1248707 * bsc#1252964 * bsc#1254619 * bsc#1257941 * bsc#1258595 * bsc#1258873 * bsc#1258893 * bsc#1258927 * bsc#1259208 * bsc#1259999 * bsc#1260263 * bsc#1260267 * bsc#1260878 * bsc#1260881 * bsc#1261025 * bsc#1261026 * bsc#1261027 * bsc#1261029 * bsc#1261810 * bsc#1262222 * bsc#1262950 * bsc#1263501 * bsc#1263986 * bsc#1263987 * jsc#MSQA-1052 * jsc#PED-14816 Cross-References: * CVE-2022-21698 * CVE-2025-29923 * CVE-2026-21724 * CVE-2026-21725 * CVE-2026-26958 * CVE-2026-27606 * CVE-2026-27876 * CVE-2026-27877 * CVE-2026-27879 * CVE-2026-28375 * CVE-2026-33186 * CVE-2026-33375 * CVE-2026-34986 * CVE-2026-40179 * CVE-2026-41602 * CVE-2026-42151 * CVE-2026-42154 CVSS scores: * CVE-2022-21698 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2022-21698 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-29923 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2025-29923 ( NVD ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-21724 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-21724 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2026-21724 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2026-21724 ( NVD ): 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N * CVE-2026-21725 ( SUSE ): 2.1 CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:P/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-21725 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L * CVE-2026-21725 ( NVD ): 2.0 CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:L/A:N * CVE-2026-21725 ( NVD ): 2.6 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L * CVE-2026-26958 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N * CVE-2026-26958 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L * CVE-2026-26958 ( NVD ): 1.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-27606 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-27606 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-27606 ( NVD ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-27606 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-27876 ( SUSE ): 8.9 CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2026-27876 ( SUSE ): 9.1 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H * CVE-2026-27876 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H * CVE-2026-27877 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-27877 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-27877 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2026-27877 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-27879 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-27879 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-27879 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-28375 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-28375 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-28375 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33186 ( SUSE ): 8.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-33186 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-33186 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-33375 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33375 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-34986 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-34986 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-34986 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-40179 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-40179 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2026-40179 ( NVD ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-40179 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2026-41602 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-41602 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-41602 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42151 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-42151 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-42154 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42154 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP7 * openSUSE Leap 15.3 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 * SUSE Linux Enterprise Desktop 15 SP1 * SUSE Linux Enterprise Desktop 15 SP2 * SUSE Linux Enterprise Desktop 15 SP3 * SUSE Linux Enterprise Desktop 15 SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 * SUSE Linux Enterprise High Performance Computing 15 SP1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.0 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP1 * SUSE Linux Enterprise Real Time 15 SP2 * SUSE Linux Enterprise Real Time 15 SP3 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 * SUSE Linux Enterprise Server 15 SP1 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 * SUSE Linux Enterprise Server for SAP Applications 15 SP1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Manager Client Tools for SLE 15 * SUSE Manager Client Tools for SLE Micro 5 An update that solves 17 vulnerabilities, contains two features and has eight security fixes can now be installed. ## Description: This update fixes the following issues: golang-github-QubitProducts-exporter_exporter: * Security Fixes: * CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248707) golang-github-prometheus-node_exporter: * Backward Compatibility and packaging changes: * Added compatibility for Go 1.22/1.23 needed in older RHEL toolchains * Pinned golang.org/x/net to v0.37.0 for Go 1.22 compatibility * Version 1.10.2: * Fixed typo in Zswap metric name (meminfo) * Version 1.10.1: * Fixed mount points being collected multiple times (filesystem) * Refactored mountinfo parsing (bsc#1261810) * Added Zswap/Zswapped metrics (meminfo) * Version 1.10.0: * New collectors: PCIe devices, swaps * Added systemd virtualization metrics, AIX metrics * WiFi packet metrics, additional PCIe and TLB metrics * Changed mdadm to use sysfs, added erofs to excluded filesystems * Fixed bugs: cpufreq collector, ethtool metrics golang-github-prometheus-prometheus: * Security issues fixed: * CVE-2026-42151: AzureAD remote write: Fixed OAuth client_secret being exposed in plaintext via /-/config endpoint (bsc#1263986) * CVE-2026-42154: Remote-read: Reject snappy-compressed requests whose declared decoded length exceeds the decode limit (bsc#1263987). * CVE-2026-40179: UI: Fixed stored XSS via unescaped le label values in old UI heatmap chart tick labels (bsc#1262222) * CVE-2026-33186: Fixed authorization bypass due to improper validation of the HTTP/2 :path pseudo-header (bsc#1260267) * Bump google.golang.org/grpc to version 1.79.3 * CVE-2026-27606: Fixed arbitrary file write via path traversal in rollup (bsc#1258893) * Bump rollup to version 4.59.0 * Other changes: * Remote-Write: Reject snappy-compressed requests whose declared decoded length exceeds the decode limit. * Use systemd tmpfiles.d to create /var/lib/prometheus hierarchy (jsc#PED-14816) prometheus-postgres_exporter: * Security Fixes: * CVE-2026-42154: Remote-read: Reject snappy-compressed requests whose declared decoded length exceeds the decode limit (bsc#1263987) * CVE-2026-42151: AzureAD remote write: Fixed OAuth client_secret being exposed in plaintext via /-/config endpoint (bsc#1263986) * CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248699) * Highlights of other changes and bug fixes: * Use systemd tmpfiles.d to create /var/lib/prometheus hierarchy grafana was updated from version 11.6.11 to 11.6.14+security01: * Security Fixes: * CVE-2026-34986: Fixed unrecoverable error in JWE decryption that could lead to a denial of service (bsc#1262950) * CVE-2026-41602: Fixed Integer Overflow or Wraparound vulnerability in Apache Thrift (bsc#1263501) * CVE-2026-26958: Ensure that MultiScalarMult properly handles initialization and produces correct results (bsc#1258595) * CVE-2026-21725: Fixed missing UID when deleting datasource by name (bsc#1258873) * CVE-2026-33375: Fixed denial of Service via out-of-memory exhaustion in MSSQL data source plugin (bsc#1260881) * CVE-2026-27876: Fixed remote arbitrary code execution via chained SQL Expressions (bsc#1261025) * CVE-2026-27877: Fixed information disclosure of data-source passwords via public dashboards (bsc#1261026) * CVE-2026-28375: Fixed denial of service via testdata data-source (bsc#1261029) * CVE-2026-27879: Fixed denial of service via resample query (bsc#1261027) * CVE-2026-33186: Fixed authorization bypass due to improper validation of the HTTP/2 :path pseudo-header (bsc#1260263) * CVE-2026-21724: Fixed authorization bypass allows modification of protected webhook URLs (bsc#1260878) * Highlights of other changes and bug fixes: * Version 11.6.13: * Wire the public dashboard service to the HTTP server * Version 11.6.12: * Update authentication redirect logic * Fixed single panel render with variable references spacecmd: * Version 5.0.16-0: * Update translation strings uyuni-tools: * Version 0.1.39-0: * mgrpxy ssh tuning should happen before crypto policies (bsc#1254619) * Fixed default value for helm registry (bsc#1258927). * Use static supportconfig name to avoid dynamic search (bsc#1257941) * Do not nest multiple tarball files and instead collect all files into one tarball (bsc#1252964) * Show where final tarball was generated (bsc#1259208) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Client Tools for SLE 15 zypper in -t patch SUSE-SLE-Manager-Tools-15-2026-2243=1 * SUSE Manager Client Tools for SLE Micro 5 zypper in -t patch SUSE-SLE-Manager-Tools-For-Micro-5-2026-2243=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-2243=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2243=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2243=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2243=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2243=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2243=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2243=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2243=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2243=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2243=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2243=1 ## Package List: * SUSE Manager Client Tools for SLE 15 (aarch64 ppc64le s390x x86_64) * mgrctl-0.1.39-150000.1.33.2 * golang-github-prometheus-prometheus-3.5.3-150000.3.72.2 * prometheus-postgres_exporter-0.10.1-150000.1.20.2 * grafana-11.6.14+security01-150000.1.95.2 * grafana-debuginfo-11.6.14+security01-150000.1.95.2 * firewalld-prometheus-config-0.1-150000.3.72.2 * golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2 * mgrctl-debuginfo-0.1.39-150000.1.33.2 * SUSE Manager Client Tools for SLE 15 (noarch) * mgrctl-bash-completion-0.1.39-150000.1.33.2 * spacecmd-5.0.16-150000.3.145.1 * mgrctl-zsh-completion-0.1.39-150000.1.33.2 * mgrctl-lang-0.1.39-150000.1.33.2 * SUSE Manager Client Tools for SLE Micro 5 (aarch64 s390x x86_64) * mgrctl-0.1.39-150000.1.33.2 * golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2 * mgrctl-debuginfo-0.1.39-150000.1.33.2 * golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2 * SUSE Manager Client Tools for SLE Micro 5 (noarch) * mgrctl-bash-completion-0.1.39-150000.1.33.2 * mgrctl-zsh-completion-0.1.39-150000.1.33.2 * mgrctl-lang-0.1.39-150000.1.33.2 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * golang-github-prometheus-node_exporter-debuginfo-1.10.2-150100.3.41.2 * golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2 ## References: * https://www.suse.com/security/cve/CVE-2022-21698.html * https://www.suse.com/security/cve/CVE-2025-29923.html * https://www.suse.com/security/cve/CVE-2026-21724.html * https://www.suse.com/security/cve/CVE-2026-21725.html * https://www.suse.com/security/cve/CVE-2026-26958.html * https://www.suse.com/security/cve/CVE-2026-27606.html * https://www.suse.com/security/cve/CVE-2026-27876.html * https://www.suse.com/security/cve/CVE-2026-27877.html * https://www.suse.com/security/cve/CVE-2026-27879.html * https://www.suse.com/security/cve/CVE-2026-28375.html * https://www.suse.com/security/cve/CVE-2026-33186.html * https://www.suse.com/security/cve/CVE-2026-33375.html * https://www.suse.com/security/cve/CVE-2026-34986.html * https://www.suse.com/security/cve/CVE-2026-40179.html * https://www.suse.com/security/cve/CVE-2026-41602.html * https://www.suse.com/security/cve/CVE-2026-42151.html * https://www.suse.com/security/cve/CVE-2026-42154.html * https://bugzilla.suse.com/show_bug.cgi?id=1248699 * https://bugzilla.suse.com/show_bug.cgi?id=1248707 * https://bugzilla.suse.com/show_bug.cgi?id=1252964 * https://bugzilla.suse.com/show_bug.cgi?id=1254619 * https://bugzilla.suse.com/show_bug.cgi?id=1257941 * https://bugzilla.suse.com/show_bug.cgi?id=1258595 * https://bugzilla.suse.com/show_bug.cgi?id=1258873 * https://bugzilla.suse.com/show_bug.cgi?id=1258893 * https://bugzilla.suse.com/show_bug.cgi?id=1258927 * https://bugzilla.suse.com/show_bug.cgi?id=1259208 * https://bugzilla.suse.com/show_bug.cgi?id=1259999 * https://bugzilla.suse.com/show_bug.cgi?id=1260263 * https://bugzilla.suse.com/show_bug.cgi?id=1260267 * https://bugzilla.suse.com/show_bug.cgi?id=1260878 * https://bugzilla.suse.com/show_bug.cgi?id=1260881 * https://bugzilla.suse.com/show_bug.cgi?id=1261025 * https://bugzilla.suse.com/show_bug.cgi?id=1261026 * https://bugzilla.suse.com/show_bug.cgi?id=1261027 * https://bugzilla.suse.com/show_bug.cgi?id=1261029 * https://bugzilla.suse.com/show_bug.cgi?id=1261810 * https://bugzilla.suse.com/show_bug.cgi?id=1262222 * https://bugzilla.suse.com/show_bug.cgi?id=1262950 * https://bugzilla.suse.com/show_bug.cgi?id=1263501 * https://bugzilla.suse.com/show_bug.cgi?id=1263986 * https://bugzilla.suse.com/show_bug.cgi?id=1263987 * https://jira.suse.com/browse/MSQA-1052 * https://jira.suse.com/browse/PED-14816 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Jun 3 20:36:31 2026 From: null at suse.de (SUSE-MANAGER-UPDATES) Date: Wed, 03 Jun 2026 20:36:31 -0000 Subject: SUSE-SU-2026:2242-1: important: Security update 5.0.8 for Multi-Linux Manager Salt Bundle Message-ID: <178051899181.412.9824670418842560474@d406a135977f> # Security update 5.0.8 for Multi-Linux Manager Salt Bundle Announcement ID: SUSE-SU-2026:2242-1 Release Date: 2026-06-03T14:05:46Z Rating: important References: * bsc#1254629 * bsc#1254900 * bsc#1257583 * bsc#1257831 * bsc#1258957 * bsc#1259554 * bsc#1259700 * bsc#1259804 * bsc#1259808 * jsc#MSQA-1052 Cross-References: * CVE-2026-27448 * CVE-2026-27459 * CVE-2026-31958 CVSS scores: * CVE-2026-27448 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-27448 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-27448 ( NVD ): 1.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-27448 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-27459 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-27459 ( SUSE ): 7.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-27459 ( NVD ): 7.2 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-27459 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31958 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31958 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31958 ( NVD ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-31958 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Desktop 12 * SUSE Linux Enterprise Desktop 12 SP1 * SUSE Linux Enterprise Desktop 12 SP2 * SUSE Linux Enterprise Desktop 12 SP3 * SUSE Linux Enterprise Desktop 12 SP4 * SUSE Linux Enterprise High Performance Computing 12 SP2 * SUSE Linux Enterprise High Performance Computing 12 SP3 * SUSE Linux Enterprise High Performance Computing 12 SP4 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 * SUSE Linux Enterprise Server 12 SP1 * SUSE Linux Enterprise Server 12 SP2 * SUSE Linux Enterprise Server 12 SP3 * SUSE Linux Enterprise Server 12 SP4 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 * SUSE Linux Enterprise Server for SAP Applications 12 SP1 * SUSE Linux Enterprise Server for SAP Applications 12 SP2 * SUSE Linux Enterprise Server for SAP Applications 12 SP3 * SUSE Linux Enterprise Server for SAP Applications 12 SP4 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Server for the Raspberry Pi 12-SP2 * SUSE Manager Client Tools for SLE 12 An update that solves three vulnerabilities, contains one feature and has six security fixes can now be installed. ## Description: This update fixes the following issues: venv-salt-minion: * Security issues fixed: * CVE-2026-31958: tornado: Fixed parsing large multipart bodies with many parts can cause a denial of service (bsc#1259554) * CVE-2026-27459: pyOpenSSL: Fixed issue with large cookie value that can lead to a buffer overflow (bsc#1259808) * CVE-2026-27448: pyOpenSSL: Fixed unhandled exception can result in connection not being cancelled (bsc#1259804) * Other updates and bugfixes: * Use non vendored Tornado with Python 3.11 (bsc#1257583, bsc#1259700) * Hardened Tornado from invalid HTTP reason phrases * Read full URI from ldap pillar config (bsc#1254900) * Make users with backslash work for `salt-ssh` (bsc#1254629). * Fixed `ansible.playbooks` `extra-vars` quoting (bsc#1257831), * Fixed `virtualenv` call in test helper to use proper Python version. * Fixed the issue preventing SELinux profile to be loaded on SLES 16 deployed using cloud images (bsc#1258957) ## Special Instructions and Notes: ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Client Tools for SLE 12 zypper in -t patch SUSE-SLE-Manager-Tools-12-2026-2242=1 ## Package List: * SUSE Manager Client Tools for SLE 12 (aarch64 ppc64le s390x x86_64) * venv-salt-minion-3006.0-3.95.1 ## References: * https://www.suse.com/security/cve/CVE-2026-27448.html * https://www.suse.com/security/cve/CVE-2026-27459.html * https://www.suse.com/security/cve/CVE-2026-31958.html * https://bugzilla.suse.com/show_bug.cgi?id=1254629 * https://bugzilla.suse.com/show_bug.cgi?id=1254900 * https://bugzilla.suse.com/show_bug.cgi?id=1257583 * https://bugzilla.suse.com/show_bug.cgi?id=1257831 * https://bugzilla.suse.com/show_bug.cgi?id=1258957 * https://bugzilla.suse.com/show_bug.cgi?id=1259554 * https://bugzilla.suse.com/show_bug.cgi?id=1259700 * https://bugzilla.suse.com/show_bug.cgi?id=1259804 * https://bugzilla.suse.com/show_bug.cgi?id=1259808 * https://jira.suse.com/browse/MSQA-1052 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Jun 3 20:36:48 2026 From: null at suse.de (SUSE-MANAGER-UPDATES) Date: Wed, 03 Jun 2026 20:36:48 -0000 Subject: SUSE-SU-2026:2241-1: important: Security update 5.0.8 for Multi-Linux Manager Client Tools Message-ID: <178051900857.412.2941661665377700738@d406a135977f> # Security update 5.0.8 for Multi-Linux Manager Client Tools Announcement ID: SUSE-SU-2026:2241-1 Release Date: 2026-06-03T13:58:35Z Rating: important References: * bsc#1248699 * bsc#1248707 * bsc#1252964 * bsc#1254619 * bsc#1257941 * bsc#1258927 * bsc#1259208 * bsc#1261810 * jsc#MSQA-1052 Cross-References: * CVE-2022-21698 CVSS scores: * CVE-2022-21698 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2022-21698 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Desktop 12 * SUSE Linux Enterprise Desktop 12 SP1 * SUSE Linux Enterprise Desktop 12 SP2 * SUSE Linux Enterprise Desktop 12 SP3 * SUSE Linux Enterprise Desktop 12 SP4 * SUSE Linux Enterprise High Performance Computing 12 SP2 * SUSE Linux Enterprise High Performance Computing 12 SP3 * SUSE Linux Enterprise High Performance Computing 12 SP4 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 * SUSE Linux Enterprise Server 12 SP1 * SUSE Linux Enterprise Server 12 SP2 * SUSE Linux Enterprise Server 12 SP3 * SUSE Linux Enterprise Server 12 SP4 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 12 SP5 LTSS * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security * SUSE Linux Enterprise Server for SAP Applications 12 * SUSE Linux Enterprise Server for SAP Applications 12 SP1 * SUSE Linux Enterprise Server for SAP Applications 12 SP2 * SUSE Linux Enterprise Server for SAP Applications 12 SP3 * SUSE Linux Enterprise Server for SAP Applications 12 SP4 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Server for the Raspberry Pi 12-SP2 * SUSE Manager Client Tools for SLE 12 An update that solves one vulnerability, contains one feature and has seven security fixes can now be installed. ## Description: This update fixes the following issues: prometheus-postgres_exporter: * Security Fixes: * CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248699) golang-github-QubitProducts-exporter_exporter: * Security Fixes: * CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248707) golang-github-prometheus-node_exporter: * Highlights of changes and bug fixes: * Packaging changes: * Pinned golang.org/x/net to v0.37.0 for Go 1.22 compatibility * Version 1.10.2: * Fixed typo in Zswap metric name (meminfo) * Version 1.10.1: * Fixed mount points being collected multiple times (filesystem) * Refactored mountinfo parsing (bsc#1261810) * Added Zswap/Zswapped metrics (meminfo) * Version 1.10.0: * New collectors: PCIe devices, swaps * Added systemd virtualization metrics, AIX metrics * WiFi packet metrics, additional PCIe and TLB metrics * Changed mdadm to use sysfs, added erofs to excluded filesystems * Fixed bugs: cpufreq collector, ethtool metrics spacecmd: * Version 5.0.16-0: * Update translation strings uyuni-tools: * Version 0.1.39-0: * mgrpxy ssh tuning should happen before crypto policies (bsc#1254619) * Fix default value for helm registry (bsc#1258927). * Use static supportconfig name to avoid dynamic search (bsc#1257941) * Do not nest multiple tarball files and instead collect all files into one tarball (bsc#1252964) * Show where final tarball was generated (bsc#1259208) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Client Tools for SLE 12 zypper in -t patch SUSE-SLE-Manager-Tools-12-2026-2241=1 * SUSE Linux Enterprise Server 12 SP5 LTSS zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-2026-2241=1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-2241=1 ## Package List: * SUSE Manager Client Tools for SLE 12 (aarch64 ppc64le s390x x86_64) * mgrctl-0.1.39-1.33.2 * mgrctl-debuginfo-0.1.39-1.33.2 * golang-github-QubitProducts-exporter_exporter-0.4.0-1.18.1 * prometheus-postgres_exporter-0.10.1-1.20.1 * golang-github-prometheus-node_exporter-1.10.2-1.42.3 * SUSE Manager Client Tools for SLE 12 (noarch) * mgrctl-bash-completion-0.1.39-1.33.2 * mgrctl-zsh-completion-0.1.39-1.33.2 * spacecmd-5.0.16-38.168.2 * SUSE Linux Enterprise Server 12 SP5 LTSS (aarch64 ppc64le s390x x86_64) * golang-github-prometheus-node_exporter-1.10.2-1.42.3 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (x86_64) * golang-github-prometheus-node_exporter-1.10.2-1.42.3 ## References: * https://www.suse.com/security/cve/CVE-2022-21698.html * https://bugzilla.suse.com/show_bug.cgi?id=1248699 * https://bugzilla.suse.com/show_bug.cgi?id=1248707 * https://bugzilla.suse.com/show_bug.cgi?id=1252964 * https://bugzilla.suse.com/show_bug.cgi?id=1254619 * https://bugzilla.suse.com/show_bug.cgi?id=1257941 * https://bugzilla.suse.com/show_bug.cgi?id=1258927 * https://bugzilla.suse.com/show_bug.cgi?id=1259208 * https://bugzilla.suse.com/show_bug.cgi?id=1261810 * https://jira.suse.com/browse/MSQA-1052 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Jun 3 20:37:20 2026 From: null at suse.de (SUSE-MANAGER-UPDATES) Date: Wed, 03 Jun 2026 20:37:20 -0000 Subject: SUSE-RU-2026:2240-1: moderate: Maintenance update for Multi-Linux Manager 5.0: Server, Proxy and Retail Message-ID: <178051904057.412.7058914970773876284@d406a135977f> # Maintenance update for Multi-Linux Manager 5.0: Server, Proxy and Retail Announcement ID: SUSE-RU-2026:2240-1 Release Date: 2026-06-03T13:53:36Z Rating: moderate References: * bsc#1240895 * bsc#1245107 * bsc#1249675 * bsc#1252927 * bsc#1254427 * bsc#1255857 * bsc#1256392 * bsc#1256953 * bsc#1257621 * bsc#1258041 * bsc#1258106 * bsc#1258109 * bsc#1258378 * bsc#1258382 * bsc#1258796 * bsc#1259127 * bsc#1259243 * bsc#1259261 * bsc#1261307 * bsc#1262741 * bsc#1264256 * jsc#MSQA-1052 Affected Products: * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Manager Proxy 5.0 Extension * SUSE Manager Retail Branch Server 5.0 Extension * SUSE Manager Server 5.0 Extension An update that contains one feature and has 21 fixes can now be installed. ## Recommended update 5.0.8 for Multi-Linux Manager Proxy ### Description: This update fixes the following issues: proxy-httpd-image: * Version 5.0.17 * Image rebuilt to the newest version with updated dependencies for SUSE Multi-Linux Manager 5.0.8 proxy-salt-broker-image: * Version 5.0.17 * Image rebuilt to the newest version with updated dependencies for SUSE Multi-Linux Manager 5.0.8 proxy-squid-image: * Version 5.0.17 * Image rebuilt to the newest version with updated dependencies for SUSE Multi-Linux Manager 5.0.8 proxy-ssh-image: * Version 5.0.17 * Image rebuilt to the newest version with updated dependencies for SUSE Multi-Linux Manager 5.0.8 proxy-tftpd-image: * Version 5.0.17 * Image rebuilt to the newest version with updated dependencies for SUSE Multi-Linux Manager 5.0.8 proxy-helm: * Version 5.0.19 * Chart rebuilt to the newest version with updated dependencies for SUSE Multi-Linux Manager 5.0.8 The following packages are underlying build dependencies and system components used by the containers: billing-data-service: * Version 5.0.4-0 * Fix billing-data-service crashing (bsc#1252927) cobbler: * Fix failing mkloaders test saltboot-formula: * Update to version 1.0.0 * Always send branch id as a string (bsc#1258382) spacecmd: * Version 5.0.16-0 * Update translation strings spacewalk-backend: * Version 5.0.18-0 * Update translation strings spacewalk-certs-tools: * Version 5.0.14-0 * Fix bootstrap script failure with SUSE Linux Micro 6.2 during first execution (bsc#1258796) spacewalk-client-tools: * Version 5.0.13-0 * Update translation strings spacewalk-java: * Version 5.0.32-0 * Fix updating "modified" column in TaskoRun and TaskoSchedule (bsc#1258378) * Sanitize inputs to avoid injection in rhn_conf of http proxy settings inputs (bsc#1245107) * Fix SSO metadata response in XML format * Optimize schedule queries for performance (bsc#1257621, bsc#1259127) spacewalk-utils: * Version 5.0.9-0 * Align bootstrap repo definition and spacewalk-common-channels with newer Multi-Linux versions spacewalk-web: * Version 5.0.27-0 * Update the WebUI version to 5.0.8 subscription-matcher: * Version 0.43 * Add new SKU (874-008422) missing in subscription matching (bsc#1259243) * Version 0.42 * Fix unsupported part number in promotional subscriptions (bsc#1256392) * Version 0.41 * keep mvel version 2.2.6 for MLM 5.1 and below susemanager: * Version 5.0.18-0 * Add OES25.4 support (bsc#1249675) susemanager-docs_en: * Clarified how to get PTF images in air-gapped setup in Installation and Upgrade Guide (bsc#1261307) * SUSE Multi-Linux Support does not support autoinstallation (bsc#1259261) * Added instructions about accessing git repositories when building images to Administration Guide * Documented SUSE Linux Micro 6.2 as supported client * Removed CIS from list of supported OpenSCAP profiles * Changed example for the third-party repository GPG keys (bsc#1255857) * Fixed command for replacing self-signed certificates (bsc#1258106) * Added warning to use original media to Registering SUSE Libery Clients in Client Configuration Guide (bsc#1254427) * Added admonition to network requirements about network management not working without wicked (bsc#1240895) * Fixed missing content from Administration Guide (bsc#1258109) * Added instructions for handling _.rpmnew and_.rpmsave files after update to Server Upgrade and Proxy ugprade (bsc#1256953) susemanager-schema: * Version 5.0.20-0 * Add index on rhnPackage (checksum_id) (bsc#1258041) * Add indexes to improve schedule queries performance (bsc#1257621, bsc#1259127) susemanager-sync-data: * Version 5.0.15-0 * Add OES25.4 support (bsc#1249675) ## Recommended update 5.0.8 for Multi-Linux Manager Retail Branch Server ### Description: This update fixes the following issues: proxy-httpd-image: * Version 5.0.17 * Image rebuilt to the newest version with updated dependencies for SUSE Multi-Linux Manager 5.0.8 proxy-salt-broker-image: * Version 5.0.17 * Image rebuilt to the newest version with updated dependencies for SUSE Multi-Linux Manager 5.0.8 proxy-squid-image: * Version 5.0.17 * Image rebuilt to the newest version with updated dependencies for SUSE Multi-Linux Manager 5.0.8 proxy-ssh-image: * Version 5.0.17 * Image rebuilt to the newest version with updated dependencies for SUSE Multi-Linux Manager 5.0.8 proxy-tftpd-image: * Version 5.0.17 * Image rebuilt to the newest version with updated dependencies for SUSE Multi-Linux Manager 5.0.8 proxy-helm: * Version 5.0.19 * Chart rebuilt to the newest version with updated dependencies for SUSE Multi-Linux Manager 5.0.8 The following packages are underlying build dependencies and system components used by the containers: billing-data-service: * Version 5.0.4-0 * Fix billing-data-service crashing (bsc#1252927) cobbler: * Fix failing mkloaders test saltboot-formula: * Update to version 1.0.0 * Always send branch id as a string (bsc#1258382) spacecmd: * Version 5.0.16-0 * Update translation strings spacewalk-backend: * Version 5.0.18-0 * Update translation strings spacewalk-certs-tools: * Version 5.0.14-0 * Fix bootstrap script failure with SUSE Linux Micro 6.2 during first execution (bsc#1258796) spacewalk-client-tools: * Version 5.0.13-0 * Update translation strings spacewalk-java: * Version 5.0.32-0 * Fix updating "modified" column in TaskoRun and TaskoSchedule (bsc#1258378) * Sanitize inputs to avoid injection in rhn_conf of http proxy settings inputs (bsc#1245107) * Fix SSO metadata response in XML format * Optimize schedule queries for performance (bsc#1257621, bsc#1259127) spacewalk-utils: * Version 5.0.9-0 * Align bootstrap repo definition and spacewalk-common-channels with newer Multi-Linux versions spacewalk-web: * Version 5.0.27-0 * Update the WebUI version to 5.0.8 subscription-matcher: * Version 0.43 * Add new SKU (874-008422) missing in subscription matching (bsc#1259243) * Version 0.42 * Fix unsupported part number in promotional subscriptions (bsc#1256392) * Version 0.41 * keep mvel version 2.2.6 for MLM 5.1 and below susemanager: * Version 5.0.18-0 * Add OES25.4 support (bsc#1249675) susemanager-docs_en: * Clarified how to get PTF images in air-gapped setup in Installation and Upgrade Guide (bsc#1261307) * SUSE Multi-Linux Support does not support autoinstallation (bsc#1259261) * Added instructions about accessing git repositories when building images to Administration Guide * Documented SUSE Linux Micro 6.2 as supported client * Removed CIS from list of supported OpenSCAP profiles * Changed example for the third-party repository GPG keys (bsc#1255857) * Fixed command for replacing self-signed certificates (bsc#1258106) * Added warning to use original media to Registering SUSE Libery Clients in Client Configuration Guide (bsc#1254427) * Added admonition to network requirements about network management not working without wicked (bsc#1240895) * Fixed missing content from Administration Guide (bsc#1258109) * Added instructions for handling _.rpmnew and_.rpmsave files after update to Server Upgrade and Proxy ugprade (bsc#1256953) susemanager-schema: * Version 5.0.20-0 * Add index on rhnPackage (checksum_id) (bsc#1258041) * Add indexes to improve schedule queries performance (bsc#1257621, bsc#1259127) susemanager-sync-data: * Version 5.0.15-0 * Add OES25.4 support (bsc#1249675) ## Recommended update 5.0.8 for Multi-Linux Manager Server ### Description: This update fixes the following issues: server-image: * Version 5.0.21 * Files in root tarball were not added to image (bsc#1262741) * Version 5.0.20 * Add rpm-ndb to the server-image (bsc#1259557) server-attestation-image: * Version 5.0.16 * Image rebuilt to the newest version with updated dependencies for SUSE Multi-Linux Manager 5.0.8 server-migration-14-16-image: * Version 5.0.18 * Image rebuilt to the newest version with updated dependencies for SUSE Multi-Linux Manager 5.0.8 server-hub-xmlrpc-api-image: * Version 5.0.17 * Image rebuilt to the newest version with updated dependencies for SUSE Multi-Linux Manager 5.0.8 The following packages are underlying build dependencies and system components used by the containers: billing-data-service: * Version 5.0.4-0 * Fix billing-data-service crashing (bsc#1252927) cobbler: * Fix failing mkloaders test saltboot-formula: * Update to version 1.0.0 * Always send branch id as a string (bsc#1258382) spacecmd: * Version 5.0.16-0 * Update translation strings spacewalk-backend: * Version 5.0.18-0 * Update translation strings spacewalk-certs-tools: * Version 5.0.14-0 * Fix bootstrap script failure with SUSE Linux Micro 6.2 during first execution (bsc#1258796) spacewalk-client-tools: * Version 5.0.13-0 * Update translation strings spacewalk-java: * Version 5.0.32-0 * Fix updating "modified" column in TaskoRun and TaskoSchedule (bsc#1258378) * Sanitize inputs to avoid injection in rhn_conf of http proxy settings inputs (bsc#1245107) * Fix SSO metadata response in XML format * Optimize schedule queries for performance (bsc#1257621, bsc#1259127) spacewalk-utils: * Version 5.0.9-0 * Align bootstrap repo definition and spacewalk-common-channels with newer Multi-Linux versions spacewalk-web: * Version 5.0.27-0 * Update the WebUI version to 5.0.8 subscription-matcher: * Version 0.44 * Fixed missing part numbers (bsc#1264256) * Version 0.43 * Add new SKU (874-008422) missing in subscription matching (bsc#1259243) * Version 0.42 * Fix unsupported part number in promotional subscriptions (bsc#1256392) * Version 0.41 * keep mvel version 2.2.6 for MLM 5.1 and below susemanager: * Version 5.0.18-0 * Add OES25.4 support (bsc#1249675) susemanager-docs_en: * Clarified how to get PTF images in air-gapped setup in Installation and Upgrade Guide (bsc#1261307) * SUSE Multi-Linux Support does not support autoinstallation (bsc#1259261) * Added instructions about accessing git repositories when building images to Administration Guide * Documented SUSE Linux Micro 6.2 as supported client * Removed CIS from list of supported OpenSCAP profiles * Changed example for the third-party repository GPG keys (bsc#1255857) * Fixed command for replacing self-signed certificates (bsc#1258106) * Added warning to use original media to Registering SUSE Libery Clients in Client Configuration Guide (bsc#1254427) * Added admonition to network requirements about network management not working without wicked (bsc#1240895) * Fixed missing content from Administration Guide (bsc#1258109) * Added instructions for handling _.rpmnew and_.rpmsave files after update to Server Upgrade and Proxy ugprade (bsc#1256953) susemanager-schema: * Version 5.0.20-0 * Add index on rhnPackage (checksum_id) (bsc#1258041) * Add indexes to improve schedule queries performance (bsc#1257621, bsc#1259127) susemanager-sync-data: * Version 5.0.15-0 * Add OES25.4 support (bsc#1249675) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Proxy 5.0 Extension zypper in -t patch SUSE-SUSE-Manager-Proxy-5.0-2026-2240=1 * SUSE Manager Server 5.0 Extension zypper in -t patch SUSE-SUSE-Manager-Server-5.0-2026-2240=1 * SUSE Manager Retail Branch Server 5.0 Extension zypper in -t patch SUSE-SUSE-Manager-Retail-Branch-Server-5.0-2026-2240=1 ## Package List: * SUSE Manager Proxy 5.0 Extension (aarch64) * suse-manager-5.0-aarch64-proxy-httpd-image-5.0.8-7.33.11 * suse-manager-5.0-aarch64-proxy-tftpd-image-5.0.8-7.33.7 * suse-manager-5.0-aarch64-proxy-salt-broker-image-5.0.8-7.35.10 * suse-manager-5.0-aarch64-proxy-ssh-image-5.0.8-7.33.7 * suse-manager-5.0-aarch64-proxy-squid-image-5.0.8-7.33.7 * SUSE Manager Proxy 5.0 Extension (ppc64le) * suse-manager-5.0-ppc64le-proxy-ssh-image-5.0.8-7.33.7 * suse-manager-5.0-ppc64le-proxy-squid-image-5.0.8-7.33.7 * suse-manager-5.0-ppc64le-proxy-tftpd-image-5.0.8-7.33.7 * suse-manager-5.0-ppc64le-proxy-httpd-image-5.0.8-7.33.11 * suse-manager-5.0-ppc64le-proxy-salt-broker-image-5.0.8-7.35.10 * SUSE Manager Proxy 5.0 Extension (s390x) * suse-manager-5.0-s390x-proxy-ssh-image-5.0.8-7.33.7 * suse-manager-5.0-s390x-proxy-httpd-image-5.0.8-7.33.11 * suse-manager-5.0-s390x-proxy-squid-image-5.0.8-7.33.7 * suse-manager-5.0-s390x-proxy-salt-broker-image-5.0.8-7.35.10 * suse-manager-5.0-s390x-proxy-tftpd-image-5.0.8-7.33.7 * SUSE Manager Proxy 5.0 Extension (x86_64) * suse-manager-5.0-x86_64-proxy-ssh-image-5.0.8-7.33.7 * suse-manager-5.0-x86_64-proxy-squid-image-5.0.8-7.33.7 * suse-manager-5.0-x86_64-proxy-httpd-image-5.0.8-7.33.11 * suse-manager-5.0-x86_64-proxy-salt-broker-image-5.0.8-7.35.10 * suse-manager-5.0-x86_64-proxy-tftpd-image-5.0.8-7.33.7 * SUSE Manager Server 5.0 Extension (x86_64) * suse-manager-5.0-x86_64-server-image-5.0.8-7.42.10 * suse-manager-5.0-x86_64-server-migration-14-16-image-5.0.8-7.33.7 * suse-manager-5.0-x86_64-server-hub-xmlrpc-api-image-5.0.8-6.33.7 * suse-manager-5.0-x86_64-server-attestation-image-5.0.8-6.37.8 * SUSE Manager Server 5.0 Extension (aarch64) * suse-manager-5.0-aarch64-server-hub-xmlrpc-api-image-5.0.8-6.33.7 * suse-manager-5.0-aarch64-server-migration-14-16-image-5.0.8-7.33.7 * suse-manager-5.0-aarch64-server-attestation-image-5.0.8-6.37.8 * suse-manager-5.0-aarch64-server-image-5.0.8-7.42.10 * SUSE Manager Server 5.0 Extension (ppc64le) * suse-manager-5.0-ppc64le-server-hub-xmlrpc-api-image-5.0.8-6.33.7 * suse-manager-5.0-ppc64le-server-attestation-image-5.0.8-6.37.8 * suse-manager-5.0-ppc64le-server-migration-14-16-image-5.0.8-7.33.7 * suse-manager-5.0-ppc64le-server-image-5.0.8-7.42.10 * SUSE Manager Server 5.0 Extension (s390x) * suse-manager-5.0-s390x-server-image-5.0.8-7.42.10 * suse-manager-5.0-s390x-server-attestation-image-5.0.8-6.37.8 * suse-manager-5.0-s390x-server-migration-14-16-image-5.0.8-7.33.7 * suse-manager-5.0-s390x-server-hub-xmlrpc-api-image-5.0.8-6.33.7 * SUSE Manager Retail Branch Server 5.0 Extension (aarch64) * suse-manager-5.0-aarch64-proxy-httpd-image-5.0.8-7.33.11 * suse-manager-5.0-aarch64-proxy-tftpd-image-5.0.8-7.33.7 * suse-manager-5.0-aarch64-proxy-salt-broker-image-5.0.8-7.35.10 * suse-manager-5.0-aarch64-proxy-ssh-image-5.0.8-7.33.7 * suse-manager-5.0-aarch64-proxy-squid-image-5.0.8-7.33.7 * SUSE Manager Retail Branch Server 5.0 Extension (ppc64le) * suse-manager-5.0-ppc64le-proxy-ssh-image-5.0.8-7.33.7 * suse-manager-5.0-ppc64le-proxy-squid-image-5.0.8-7.33.7 * suse-manager-5.0-ppc64le-proxy-tftpd-image-5.0.8-7.33.7 * suse-manager-5.0-ppc64le-proxy-httpd-image-5.0.8-7.33.11 * suse-manager-5.0-ppc64le-proxy-salt-broker-image-5.0.8-7.35.10 * SUSE Manager Retail Branch Server 5.0 Extension (s390x) * suse-manager-5.0-s390x-proxy-ssh-image-5.0.8-7.33.7 * suse-manager-5.0-s390x-proxy-httpd-image-5.0.8-7.33.11 * suse-manager-5.0-s390x-proxy-squid-image-5.0.8-7.33.7 * suse-manager-5.0-s390x-proxy-salt-broker-image-5.0.8-7.35.10 * suse-manager-5.0-s390x-proxy-tftpd-image-5.0.8-7.33.7 * SUSE Manager Retail Branch Server 5.0 Extension (x86_64) * suse-manager-5.0-x86_64-proxy-ssh-image-5.0.8-7.33.7 * suse-manager-5.0-x86_64-proxy-squid-image-5.0.8-7.33.7 * suse-manager-5.0-x86_64-proxy-httpd-image-5.0.8-7.33.11 * suse-manager-5.0-x86_64-proxy-salt-broker-image-5.0.8-7.35.10 * suse-manager-5.0-x86_64-proxy-tftpd-image-5.0.8-7.33.7 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1240895 * https://bugzilla.suse.com/show_bug.cgi?id=1245107 * https://bugzilla.suse.com/show_bug.cgi?id=1249675 * https://bugzilla.suse.com/show_bug.cgi?id=1252927 * https://bugzilla.suse.com/show_bug.cgi?id=1254427 * https://bugzilla.suse.com/show_bug.cgi?id=1255857 * https://bugzilla.suse.com/show_bug.cgi?id=1256392 * https://bugzilla.suse.com/show_bug.cgi?id=1256953 * https://bugzilla.suse.com/show_bug.cgi?id=1257621 * https://bugzilla.suse.com/show_bug.cgi?id=1258041 * https://bugzilla.suse.com/show_bug.cgi?id=1258106 * https://bugzilla.suse.com/show_bug.cgi?id=1258109 * https://bugzilla.suse.com/show_bug.cgi?id=1258378 * https://bugzilla.suse.com/show_bug.cgi?id=1258382 * https://bugzilla.suse.com/show_bug.cgi?id=1258796 * https://bugzilla.suse.com/show_bug.cgi?id=1259127 * https://bugzilla.suse.com/show_bug.cgi?id=1259243 * https://bugzilla.suse.com/show_bug.cgi?id=1259261 * https://bugzilla.suse.com/show_bug.cgi?id=1261307 * https://bugzilla.suse.com/show_bug.cgi?id=1262741 * https://bugzilla.suse.com/show_bug.cgi?id=1264256 * https://jira.suse.com/browse/MSQA-1052 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Wed Jun 3 20:37:29 2026 From: null at suse.de (SUSE-MANAGER-UPDATES) Date: Wed, 03 Jun 2026 20:37:29 -0000 Subject: SUSE-RU-2026:2239-1: moderate: Maintenance update for Multi-Linux Manager 5.0: Server, Proxy and Retail Branch Server Message-ID: <178051904960.412.4508194416673923755@d406a135977f> # Maintenance update for Multi-Linux Manager 5.0: Server, Proxy and Retail Branch Server Announcement ID: SUSE-RU-2026:2239-1 Release Date: 2026-06-03T13:44:18Z Rating: moderate References: * bsc#1252964 * bsc#1254619 * bsc#1257941 * bsc#1258927 * bsc#1259208 * jsc#MSQA-1052 Affected Products: * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Manager Proxy 5.0 Extension * SUSE Manager Retail Branch Server 5.0 Extension * SUSE Manager Server 5.0 Extension An update that contains one feature and has five fixes can now be installed. ## Recommended update 5.0.8 for Multi-Linux Manager Proxy ### Description: This update fixes the following issues: uyuni-tools: * Version 0.1.39-0 * mgrpxy ssh tuning should happen before crypto policies (bsc#1254619) * Fix default value for helm registry (bsc#1258927). * Use static supportconfig name to avoid dynamic search (bsc#1257941) * Do not nest multiple tarball files and instead collect all files into one tarball (bsc#1252964) * Show where final tarball was generated (bsc#1259208) How to apply this update: 1. Log in as root user to the SUSE Multi-Linux Manager Proxy. 2. Upgrade mgrpxy. 3. If you are in a disconnected environment, upgrade the image packages. 4. Reboot the system. 5. Run `mgrpxy upgrade podman` which will use the default image tags. ## Recommended update 5.0.8 for Multi-Linux Manager Retail Branch Server ### Description: This update fixes the following issues: uyuni-tools: * Version 0.1.39-0 * mgrpxy ssh tuning should happen before crypto policies (bsc#1254619) * Fix default value for helm registry (bsc#1258927). * Use static supportconfig name to avoid dynamic search (bsc#1257941) * Do not nest multiple tarball files and instead collect all files into one tarball (bsc#1252964) * Show where final tarball was generated (bsc#1259208) How to apply this update: 1. Log in as root user to the SUSE Multi-Linux Manager Retail Branch Server. 2. Upgrade mgrpxy. 3. If you are in a disconnected environment, upgrade the image packages. 4. Reboot the system. 5. Run `mgrpxy upgrade podman` which will use the default image tags. ## Recommended update 5.0.8 for Multi-Linux Manager Server ### Description: This update fixes the following issues: uyuni-tools: * Version 0.1.39-0 * mgrpxy ssh tuning should happen before crypto policies (bsc#1254619) * Fix default value for helm registry (bsc#1258927). * Use static supportconfig name to avoid dynamic search (bsc#1257941) * Do not nest multiple tarball files and instead collect all files into one tarball (bsc#1252964) * Show where final tarball was generated (bsc#1259208) How to apply this update: 1. Log in as root user to the SUSE Multi-Linux Manager Server. 2. Upgrade mgradm and mgrctl. 3. If you are in a disconnected environment, upgrade the image packages. 4. Reboot the system. 5. Run `mgradm upgrade podman` which will use the default image tags. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Proxy 5.0 Extension zypper in -t patch SUSE-SUSE-Manager-Proxy-5.0-2026-2239=1 * SUSE Manager Retail Branch Server 5.0 Extension zypper in -t patch SUSE-SUSE-Manager-Retail-Branch-Server-5.0-2026-2239=1 * SUSE Manager Server 5.0 Extension zypper in -t patch SUSE-SUSE-Manager-Server-5.0-2026-2239=1 ## Package List: * SUSE Manager Proxy 5.0 Extension (aarch64 ppc64le s390x x86_64) * mgrpxy-0.1.39-150500.3.51.1 * mgrpxy-debuginfo-0.1.39-150500.3.51.1 * SUSE Manager Proxy 5.0 Extension (noarch) * mgrpxy-lang-0.1.39-150500.3.51.1 * mgrpxy-zsh-completion-0.1.39-150500.3.51.1 * mgrpxy-bash-completion-0.1.39-150500.3.51.1 * SUSE Manager Retail Branch Server 5.0 Extension (aarch64 ppc64le s390x x86_64) * mgrpxy-0.1.39-150500.3.51.1 * mgrpxy-debuginfo-0.1.39-150500.3.51.1 * SUSE Manager Retail Branch Server 5.0 Extension (noarch) * mgrpxy-lang-0.1.39-150500.3.51.1 * mgrpxy-zsh-completion-0.1.39-150500.3.51.1 * mgrpxy-bash-completion-0.1.39-150500.3.51.1 * SUSE Manager Server 5.0 Extension (aarch64 ppc64le s390x x86_64) * mgrctl-debuginfo-0.1.39-150500.3.51.1 * mgradm-debuginfo-0.1.39-150500.3.51.1 * mgrctl-0.1.39-150500.3.51.1 * mgradm-0.1.39-150500.3.51.1 * SUSE Manager Server 5.0 Extension (noarch) * mgradm-lang-0.1.39-150500.3.51.1 * mgrctl-lang-0.1.39-150500.3.51.1 * mgradm-zsh-completion-0.1.39-150500.3.51.1 * mgrctl-zsh-completion-0.1.39-150500.3.51.1 * mgrctl-bash-completion-0.1.39-150500.3.51.1 * mgradm-bash-completion-0.1.39-150500.3.51.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1252964 * https://bugzilla.suse.com/show_bug.cgi?id=1254619 * https://bugzilla.suse.com/show_bug.cgi?id=1257941 * https://bugzilla.suse.com/show_bug.cgi?id=1258927 * https://bugzilla.suse.com/show_bug.cgi?id=1259208 * https://jira.suse.com/browse/MSQA-1052 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Jun 4 08:30:38 2026 From: null at suse.de (SUSE-MANAGER-UPDATES) Date: Thu, 04 Jun 2026 08:30:38 -0000 Subject: SUSE-SU-2026:21986-1: important: Security update 5.0.8 for Multi-Linux Manager Client Tools, Salt Bundle and Salt Message-ID: <178056183837.660.11819467815137323011@b0da085613fb> # Security update 5.0.8 for Multi-Linux Manager Client Tools, Salt Bundle and Salt Announcement ID: SUSE-SU-2026:21986-1 Release Date: 2026-06-03T13:34:00Z Rating: important References: * bsc#1252964 * bsc#1254619 * bsc#1254629 * bsc#1254900 * bsc#1257583 * bsc#1257831 * bsc#1257941 * bsc#1258927 * bsc#1258957 * bsc#1259208 * bsc#1259554 * bsc#1259700 * bsc#1259804 * bsc#1259808 * bsc#1261810 Cross-References: * CVE-2026-27448 * CVE-2026-27459 * CVE-2026-31958 CVSS scores: * CVE-2026-27448 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-27448 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-27448 ( NVD ): 1.7 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-27448 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-27459 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-27459 ( SUSE ): 7.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-27459 ( NVD ): 7.2 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-27459 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31958 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31958 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31958 ( NVD ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-31958 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Micro 6.0 * SUSE Linux Micro 6.1 * SUSE Manager Client Tools for SUSE Linux Micro 6 An update that solves three vulnerabilities and has 12 fixes can now be installed. ## Description: This update fixes the following issues: golang-github-prometheus-node_exporter: * Version 1.10.2: * meminfo: Fix typo in Zswap metric name * Version 1.10.1: * filesystem: Fix mount points being collected multiple times * filesystem: Refactor mountinfo parsing (bsc#1261810) * meminfo: Add Zswap/Zswapped metrics * Version 1.10.0: * Changes: * mdadm: Use sysfs for RAID metrics * filesystem: Add erofs in default excluded fs * tcpstat: Use std lib binary.NativeEndian * New Features: * pcidevice: Add new collector for PCIe devices * AIX: Add more metrics * systemd: Add Virtualization metrics * swaps: Add new collector * Enhancements: * wifi: Add packet received and transmitted metrics * filesystem: Take super options into account for read-only * pcidevice: Add additional metrics * perf: Add tlb_data metrics * Bugs fixed: * interrupts: Fix OpenBSD interrupt device parsing * diskstats: Simplify condition * thermal: Sanitize darwin thermal strings * filesystem: Fix Darwin collector cgo memory leak * cpufreq: Fix: collector enable * ethtool: Fix returning 0 for sanitized metrics * netdev: Fix Darwin netdev i/o bytes metric * systemd: Fix logging race * filesystem: Fix duplicate Darwin CGO import salt: * Security issues fixed: * CVE-2026-31958: tornado: Fixed parsing large multipart bodies with many parts can cause a denial of service (bsc#1259554) * Other updates and bugfixes: * Use non vendored Tornado with Python 3.11 (bsc#1257583, bsc#1259700) * Hardened Tornado from invalid HTTP reason phrases * Read full URI from ldap pillar config (bsc#1254900) * Fixed testsuite failures * Make users with backslash working for salt-ssh (bsc#1254629) * Fixed ansible.playbooks extra-vars quoting (bsc#1257831) * Fixed virtualenv call in test helper to use proper python version uyuni-tools: * Version 0.1.39-0: * mgrpxy ssh tuning should happen before crypto policies (bsc#1254619) * Fixed default value for helm registry (bsc#1258927). * Use static supportconfig name to avoid dynamic search (bsc#1257941) * Do not nest multiple tarball files and instead collect all files into one tarball (bsc#1252964) * Show where final tarball was generated (bsc#1259208) venv-salt-minion: * Security issues fixed: * CVE-2026-31958: tornado: Fixed parsing large multipart bodies with many parts can cause a denial of service (bsc#1259554) * CVE-2026-27459: pyOpenSSL: Fixed issue with large cookie value that can lead to a buffer overflow (bsc#1259808) * CVE-2026-27448: pyOpenSSL: Fixed unhandled exception can result in connection not being cancelled (bsc#1259804) * Other updates and bugfixes: * Use non vendored Tornado with Python 3.11 (bsc#1257583, bsc#1259700) * Hardened Tornado from invalid HTTP reason phrases * Read full URI from ldap pillar config (bsc#1254900) * Make users with backslash work for `salt-ssh` (bsc#1254629). * Fixed `ansible.playbooks` `extra-vars` quoting (bsc#1257831), * Fixed `virtualenv` call in test helper to use proper Python version. * Fixed the issue preventing SELinux profile to be loaded on SLES 16 deployed using cloud images (bsc#1258957) ## Special Instructions and Notes: ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Client Tools for SUSE Linux Micro 6 zypper in -t patch SUSE-Manager-Tools-For-SL-Micro-6-740=1 ## Package List: * SUSE Manager Client Tools for SUSE Linux Micro 6 (aarch64 ppc64le s390x) * mgrctl-0.1.39-1.1 * golang-github-prometheus-node_exporter-debuginfo-1.10.2-1.1 * golang-github-prometheus-node_exporter-1.10.2-1.1 * venv-salt-minion-3006.0-11.1 * mgrctl-debuginfo-0.1.39-1.1 * SUSE Manager Client Tools for SUSE Linux Micro 6 (noarch) * mgrctl-zsh-completion-0.1.39-1.1 * mgrctl-bash-completion-0.1.39-1.1 * mgrctl-lang-0.1.39-1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-27448.html * https://www.suse.com/security/cve/CVE-2026-27459.html * https://www.suse.com/security/cve/CVE-2026-31958.html * https://bugzilla.suse.com/show_bug.cgi?id=1252964 * https://bugzilla.suse.com/show_bug.cgi?id=1254619 * https://bugzilla.suse.com/show_bug.cgi?id=1254629 * https://bugzilla.suse.com/show_bug.cgi?id=1254900 * https://bugzilla.suse.com/show_bug.cgi?id=1257583 * https://bugzilla.suse.com/show_bug.cgi?id=1257831 * https://bugzilla.suse.com/show_bug.cgi?id=1257941 * https://bugzilla.suse.com/show_bug.cgi?id=1258927 * https://bugzilla.suse.com/show_bug.cgi?id=1258957 * https://bugzilla.suse.com/show_bug.cgi?id=1259208 * https://bugzilla.suse.com/show_bug.cgi?id=1259554 * https://bugzilla.suse.com/show_bug.cgi?id=1259700 * https://bugzilla.suse.com/show_bug.cgi?id=1259804 * https://bugzilla.suse.com/show_bug.cgi?id=1259808 * https://bugzilla.suse.com/show_bug.cgi?id=1261810 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Jun 4 08:30:51 2026 From: null at suse.de (SUSE-MANAGER-UPDATES) Date: Thu, 04 Jun 2026 08:30:51 -0000 Subject: SUSE-SU-2026:2267-1: important: Security update for golang-github-prometheus-prometheus Message-ID: <178056185135.660.5289780373180715433@b0da085613fb> # Security update for golang-github-prometheus-prometheus Announcement ID: SUSE-SU-2026:2267-1 Release Date: 2026-06-03T18:06:35Z Rating: important References: * bsc#1258893 * bsc#1260267 * bsc#1262222 * bsc#1263986 * bsc#1263987 * jsc#MSQA-1052 * jsc#PED-14816 Cross-References: * CVE-2026-27606 * CVE-2026-33186 * CVE-2026-40179 * CVE-2026-42151 * CVE-2026-42154 CVSS scores: * CVE-2026-27606 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-27606 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-27606 ( NVD ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-27606 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-33186 ( SUSE ): 8.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-33186 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-33186 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-40179 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-40179 ( SUSE ): 5.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2026-40179 ( NVD ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-40179 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N * CVE-2026-42151 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-42151 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-42154 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42154 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP7 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.0 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Manager Client Tools for SLE Micro 5 * SUSE Package Hub 15 15-SP7 An update that solves five vulnerabilities and contains two features can now be installed. ## Description: This update for golang-github-prometheus-prometheus to version 3.5.3 fixes the following issues: * Security issues fixed: * CVE-2026-42151: AzureAD remote write: Fixed OAuth client_secret being exposed in plaintext via /-/config endpoint (bsc#1263986) * CVE-2026-42154: Remote-read: Reject snappy-compressed requests whose declared decoded length exceeds the decode limit (bsc#1263987). * CVE-2026-40179: UI: Fixed stored XSS via unescaped le label values in old UI heatmap chart tick labels (bsc#1262222) * CVE-2026-33186: Fixed authorization bypass due to improper validation of the HTTP/2 :path pseudo-header (bsc#1260267) * Bump google.golang.org/grpc to version 1.79.3 * CVE-2026-27606: Fixed arbitrary file write via path traversal in rollup (bsc#1258893) * Bump rollup to version 4.59.0 * Other changes: * Remote-Write: Reject snappy-compressed requests whose declared decoded length exceeds the decode limit. * Use systemd tmpfiles.d to create /var/lib/prometheus hierarchy (jsc#PED-14816) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Client Tools for SLE Micro 5 zypper in -t patch SUSE-SLE-Manager-Tools-For-Micro-5-2026-2267=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-2267=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-2267=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2267=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2267=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2267=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2267=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2267=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2267=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2267=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2267=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2267=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2267=1 ## Package List: * SUSE Manager Client Tools for SLE Micro 5 (aarch64 s390x x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.42.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.42.1 * golang-github-prometheus-node_exporter-debuginfo-1.10.2-150100.3.42.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * golang-github-prometheus-prometheus-debuginfo-3.5.3-150100.4.34.1 * golang-github-prometheus-prometheus-3.5.3-150100.4.34.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.42.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.42.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.42.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.42.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.42.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.42.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.42.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.42.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.42.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * golang-github-prometheus-node_exporter-1.10.2-150100.3.42.1 ## References: * https://www.suse.com/security/cve/CVE-2026-27606.html * https://www.suse.com/security/cve/CVE-2026-33186.html * https://www.suse.com/security/cve/CVE-2026-40179.html * https://www.suse.com/security/cve/CVE-2026-42151.html * https://www.suse.com/security/cve/CVE-2026-42154.html * https://bugzilla.suse.com/show_bug.cgi?id=1258893 * https://bugzilla.suse.com/show_bug.cgi?id=1260267 * https://bugzilla.suse.com/show_bug.cgi?id=1262222 * https://bugzilla.suse.com/show_bug.cgi?id=1263986 * https://bugzilla.suse.com/show_bug.cgi?id=1263987 * https://jira.suse.com/browse/MSQA-1052 * https://jira.suse.com/browse/PED-14816 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Jun 4 08:30:58 2026 From: null at suse.de (SUSE-MANAGER-UPDATES) Date: Thu, 04 Jun 2026 08:30:58 -0000 Subject: SUSE-RU-2026:2263-1: moderate: Recommended update 4.3.18 for Multi-Linux Manager Client Tools Message-ID: <178056185896.660.5767578042149514420@b0da085613fb> # Recommended update 4.3.18 for Multi-Linux Manager Client Tools Announcement ID: SUSE-RU-2026:2263-1 Release Date: 2026-06-03T18:02:27Z Rating: moderate References: * jsc#MSQA-1052 Affected Products: * SUSE Linux Enterprise Desktop 12 * SUSE Linux Enterprise Desktop 12 SP1 * SUSE Linux Enterprise Desktop 12 SP2 * SUSE Linux Enterprise Desktop 12 SP3 * SUSE Linux Enterprise Desktop 12 SP4 * SUSE Linux Enterprise High Performance Computing 12 SP2 * SUSE Linux Enterprise High Performance Computing 12 SP3 * SUSE Linux Enterprise High Performance Computing 12 SP4 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 * SUSE Linux Enterprise Server 12 SP1 * SUSE Linux Enterprise Server 12 SP2 * SUSE Linux Enterprise Server 12 SP3 * SUSE Linux Enterprise Server 12 SP4 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 * SUSE Linux Enterprise Server for SAP Applications 12 SP1 * SUSE Linux Enterprise Server for SAP Applications 12 SP2 * SUSE Linux Enterprise Server for SAP Applications 12 SP3 * SUSE Linux Enterprise Server for SAP Applications 12 SP4 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Server for the Raspberry Pi 12-SP2 * SUSE Manager Client Tools for SLE 12 An update that contains one feature can now be installed. ## Description: This update fixes the following issues: mgr-daemon: * Version 4.3.14-0 * Update translation strings spacewalk-client-tools: * Version 4.3.25-0 * Update translation strings ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Client Tools for SLE 12 zypper in -t patch SUSE-SLE-Manager-Tools-12-2026-2263=1 ## Package List: * SUSE Manager Client Tools for SLE 12 (noarch) * python2-spacewalk-check-4.3.25-52.117.1 * spacewalk-client-tools-4.3.25-52.117.1 * spacewalk-client-setup-4.3.25-52.117.1 * python2-spacewalk-client-setup-4.3.25-52.117.1 * python2-spacewalk-client-tools-4.3.25-52.117.1 * spacewalk-check-4.3.25-52.117.1 * mgr-daemon-4.3.14-1.62.1 ## References: * https://jira.suse.com/browse/MSQA-1052 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Thu Jun 4 08:31:00 2026 From: null at suse.de (SUSE-MANAGER-UPDATES) Date: Thu, 04 Jun 2026 08:31:00 -0000 Subject: SUSE-RU-2026:2262-1: moderate: Recommended update 4.3.18 for Multi-Linux Manager Client Tools Message-ID: <178056186051.660.11292655567774621895@b0da085613fb> # Recommended update 4.3.18 for Multi-Linux Manager Client Tools Announcement ID: SUSE-RU-2026:2262-1 Release Date: 2026-06-03T18:02:11Z Rating: moderate References: * jsc#MSQA-1052 Affected Products: * openSUSE Leap 15.3 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 * SUSE Linux Enterprise Desktop 15 SP1 * SUSE Linux Enterprise Desktop 15 SP2 * SUSE Linux Enterprise Desktop 15 SP3 * SUSE Linux Enterprise Desktop 15 SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 * SUSE Linux Enterprise High Performance Computing 15 SP1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP1 * SUSE Linux Enterprise Real Time 15 SP2 * SUSE Linux Enterprise Real Time 15 SP3 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 * SUSE Linux Enterprise Server 15 SP1 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 * SUSE Linux Enterprise Server for SAP Applications 15 SP1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Manager Client Tools for SLE 15 An update that contains one feature can now be installed. ## Description: This update fixes the following issues: mgr-daemon: * Version 4.3.14-0 * Update translation strings spacewalk-client-tools: * Version 4.3.25-0 * Update translation strings ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Client Tools for SLE 15 zypper in -t patch SUSE-SLE-Manager-Tools-15-2026-2262=1 ## Package List: * SUSE Manager Client Tools for SLE 15 (noarch) * spacewalk-client-setup-4.3.25-150000.3.109.1 * spacewalk-check-4.3.25-150000.3.109.1 * spacewalk-client-tools-4.3.25-150000.3.109.1 * python3-spacewalk-check-4.3.25-150000.3.109.1 * python3-spacewalk-client-tools-4.3.25-150000.3.109.1 * mgr-daemon-4.3.14-150000.1.62.1 * python3-spacewalk-client-setup-4.3.25-150000.3.109.1 ## References: * https://jira.suse.com/browse/MSQA-1052 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Mon Jun 8 16:30:41 2026 From: null at suse.de (SUSE-MANAGER-UPDATES) Date: Mon, 08 Jun 2026 16:30:41 -0000 Subject: SUSE-SU-2026:2293-1: important: Security update for memcached Message-ID: <178093624111.1066.11470465801338346289@54e978799e75> # Security update for memcached Announcement ID: SUSE-SU-2026:2293-1 Release Date: 2026-06-08T08:53:01Z Rating: important References: * bsc#1265873 * bsc#1265881 Cross-References: * CVE-2026-47783 * CVE-2026-47784 CVSS scores: * CVE-2026-47783 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-47783 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-47784 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-47784 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * Server Applications Module 15-SP7 * SUSE Linux Enterprise Desktop 15 * SUSE Linux Enterprise Desktop 15 SP1 * SUSE Linux Enterprise Desktop 15 SP2 * SUSE Linux Enterprise Desktop 15 SP3 * SUSE Linux Enterprise Desktop 15 SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 * SUSE Linux Enterprise High Performance Computing 15 SP1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Real Time 15 SP1 * SUSE Linux Enterprise Real Time 15 SP2 * SUSE Linux Enterprise Real Time 15 SP3 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 * SUSE Linux Enterprise Server 15 SP1 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 * SUSE Linux Enterprise Server for SAP Applications 15 SP1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Manager Client Tools for SLE 15 An update that solves two vulnerabilities can now be installed. ## Description: This update for memcached fixes the following issues * CVE-2026-47783: timing side-channel in SASL password database authentication (username) (bsc#1265873). * CVE-2026-47784: timing side-channel in SASL password database authentication (password) (bsc#1265881). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Client Tools for SLE 15 zypper in -t patch SUSE-SLE-Manager-Tools-15-2026-2293=1 * Server Applications Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP7-2026-2293=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2293=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2293=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2293=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2293=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2293=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2293=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2293=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2293=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2293=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2293=1 ## Package List: * SUSE Manager Client Tools for SLE 15 (aarch64 ppc64le s390x x86_64) * memcached-1.5.6-150000.4.10.1 * Server Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64) * memcached-debugsource-1.5.6-150000.4.10.1 * memcached-1.5.6-150000.4.10.1 * memcached-debuginfo-1.5.6-150000.4.10.1 * memcached-devel-1.5.6-150000.4.10.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * memcached-debugsource-1.5.6-150000.4.10.1 * memcached-1.5.6-150000.4.10.1 * memcached-debuginfo-1.5.6-150000.4.10.1 * memcached-devel-1.5.6-150000.4.10.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * memcached-debugsource-1.5.6-150000.4.10.1 * memcached-1.5.6-150000.4.10.1 * memcached-debuginfo-1.5.6-150000.4.10.1 * memcached-devel-1.5.6-150000.4.10.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * memcached-debugsource-1.5.6-150000.4.10.1 * memcached-1.5.6-150000.4.10.1 * memcached-debuginfo-1.5.6-150000.4.10.1 * memcached-devel-1.5.6-150000.4.10.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * memcached-debugsource-1.5.6-150000.4.10.1 * memcached-1.5.6-150000.4.10.1 * memcached-debuginfo-1.5.6-150000.4.10.1 * memcached-devel-1.5.6-150000.4.10.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * memcached-debugsource-1.5.6-150000.4.10.1 * memcached-1.5.6-150000.4.10.1 * memcached-debuginfo-1.5.6-150000.4.10.1 * memcached-devel-1.5.6-150000.4.10.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * memcached-debugsource-1.5.6-150000.4.10.1 * memcached-1.5.6-150000.4.10.1 * memcached-debuginfo-1.5.6-150000.4.10.1 * memcached-devel-1.5.6-150000.4.10.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * memcached-debugsource-1.5.6-150000.4.10.1 * memcached-1.5.6-150000.4.10.1 * memcached-debuginfo-1.5.6-150000.4.10.1 * memcached-devel-1.5.6-150000.4.10.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * memcached-debugsource-1.5.6-150000.4.10.1 * memcached-1.5.6-150000.4.10.1 * memcached-debuginfo-1.5.6-150000.4.10.1 * memcached-devel-1.5.6-150000.4.10.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * memcached-debugsource-1.5.6-150000.4.10.1 * memcached-1.5.6-150000.4.10.1 * memcached-debuginfo-1.5.6-150000.4.10.1 * memcached-devel-1.5.6-150000.4.10.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * memcached-debugsource-1.5.6-150000.4.10.1 * memcached-1.5.6-150000.4.10.1 * memcached-debuginfo-1.5.6-150000.4.10.1 * memcached-devel-1.5.6-150000.4.10.1 ## References: * https://www.suse.com/security/cve/CVE-2026-47783.html * https://www.suse.com/security/cve/CVE-2026-47784.html * https://bugzilla.suse.com/show_bug.cgi?id=1265873 * https://bugzilla.suse.com/show_bug.cgi?id=1265881 -------------- next part -------------- An HTML attachment was scrubbed... URL: From null at suse.de Fri Jun 12 12:30:03 2026 From: null at suse.de (SUSE-MANAGER-UPDATES) Date: Fri, 12 Jun 2026 12:30:03 -0000 Subject: SUSE-RU-2026:2382-1: moderate: Recommended update for hwdata Message-ID: <178126740308.944.5334342780740688201@72e00eddb364> # Recommended update for hwdata Announcement ID: SUSE-RU-2026:2382-1 Release Date: 2026-06-12T08:08:38Z Rating: moderate References: Affected Products: * Basesystem Module 15-SP7 * openSUSE Leap 15.3 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 * SUSE Linux Enterprise Desktop 15 SP1 * SUSE Linux Enterprise Desktop 15 SP2 * SUSE Linux Enterprise Desktop 15 SP3 * SUSE Linux Enterprise Desktop 15 SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 * SUSE Linux Enterprise High Performance Computing 15 SP1 * SUSE Linux Enterprise High Performance Computing 15 SP2 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP1 * SUSE Linux Enterprise Real Time 15 SP2 * SUSE Linux Enterprise Real Time 15 SP3 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 * SUSE Linux Enterprise Server 15 SP1 * SUSE Linux Enterprise Server 15 SP2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 * SUSE Linux Enterprise Server for SAP Applications 15 SP1 * SUSE Linux Enterprise Server for SAP Applications 15 SP2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Manager Client Tools for SLE 15 An update that can now be installed. ## Description: This update for hwdata fixes the following issues: * update to version 0.406: * Update pci and vendor ids * update to version 0.405: * Update pci and vendor ids * Update to version 0.397: * Update pci and vendor ids * Update to version 0.395: * Update pci and vendor ids ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Manager Client Tools for SLE 15 zypper in -t patch SUSE-SLE-Manager-Tools-15-2026-2382=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2382=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2382=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2382=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2382=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2026-2382=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-2382=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2382=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2382=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2382=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2382=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2382=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2382=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2382=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2382=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2382=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2382=1 ## Package List: * SUSE Manager Client Tools for SLE 15 (noarch) * hwdata-0.406-150000.3.80.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (noarch) * hwdata-0.406-150000.3.80.1 * SUSE Linux Enterprise Micro 5.3 (noarch) * hwdata-0.406-150000.3.80.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (noarch) * hwdata-0.406-150000.3.80.1 * SUSE Linux Enterprise Micro 5.4 (noarch) * hwdata-0.406-150000.3.80.1 * SUSE Linux Enterprise Micro 5.5 (noarch) * hwdata-0.406-150000.3.80.1 * Basesystem Module 15-SP7 (noarch) * hwdata-0.406-150000.3.80.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * hwdata-0.406-150000.3.80.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * hwdata-0.406-150000.3.80.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * hwdata-0.406-150000.3.80.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * hwdata-0.406-150000.3.80.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * hwdata-0.406-150000.3.80.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * hwdata-0.406-150000.3.80.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (noarch) * hwdata-0.406-150000.3.80.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * hwdata-0.406-150000.3.80.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) * hwdata-0.406-150000.3.80.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch) * hwdata-0.406-150000.3.80.1 -------------- next part -------------- An HTML attachment was scrubbed... URL: