drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Ausführen beliebiger Kommandos in SUSE Manager Proxy 4.1
Name: |
Ausführen beliebiger Kommandos in SUSE Manager Proxy 4.1 |
|
ID: |
SUSE-SU-2021:0906-1 |
|
Distribution: |
SUSE |
|
Plattformen: |
SUSE Linux Enterprise Module for SUSE Manager Proxy 4.1 |
|
Datum: |
Fr, 19. März 2021, 23:17 |
|
Referenzen: |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28477 |
|
Applikationen: |
SUSE Manager Proxy 4.1 |
|
Originalnachricht |
SUSE Security Update: Security update for SUSE Manager Proxy 4.1 ______________________________________________________________________________
Announcement ID: SUSE-SU-2021:0906-1 Rating: moderate References: #1173893 #1177508 #1180558 #1181807 #1182006 #1182685 Cross-References: CVE-2020-28477 CVSS scores: CVE-2020-28477 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products: SUSE Linux Enterprise Module for SUSE Manager Proxy 4.1 ______________________________________________________________________________
An update that solves one vulnerability and has 5 fixes is now available.
Description:
This update fixes the following issues:
mgr-osad:
- Adapt to new SSL implementation of rhnlib (bsc#1181807)
rhnlib:
- Change SSL implementation to python ssl for better SAN and hostname matching support (bsc#1181807)
spacewalk-backend:
- Open repomd files as binary (bsc#1173893) - Fix requesting Release file in debian repos (bsc#1182006) - Reposync: Fixed Kickstart functionality. - Reposync: Fixed URLGrabber error handling. - Reposync: Fix modular data handling for cloned channels (bsc#1177508)
spacewalk-client-tools:
- Adapt to new SSL implementation of rhnlib (bsc#1181807)
spacewalk-proxy:
- Adapt to new SSL implementation of rhnlib (bsc#1181807)
spacewalk-proxy-installer:
- Adapt to new SSL implementation of rhnlib (bsc#1181807)
spacewalk-web:
- Replace CRLF in ssh priv key when bootstrapping (bsc#1182685) - Upgrade immer to fix CVE-2020-28477 - Default to preferred items per page in content lifecycle lists (bsc#1180558) - Fix sorting in content lifecycle projects and cluster tables (bsc#1180558)
How to apply this update: 1. Log in as root user to the SUSE Manager proxy. 2. Stop the proxy service: spacewalk-proxy stop 3. Apply the patch using either zypper patch or YaST Online Update. 4. Start the Spacewalk service: spacewalk-proxy start
Patch Instructions:
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- SUSE Linux Enterprise Module for SUSE Manager Proxy 4.1:
zypper in -t patch SUSE-SLE-Module-SUSE-Manager-Proxy-4.1-2021-906=1
Package List:
- SUSE Linux Enterprise Module for SUSE Manager Proxy 4.1 (noarch):
mgr-osad-4.1.5-2.9.4 python3-mgr-osa-common-4.1.5-2.9.4 python3-mgr-osad-4.1.5-2.9.4 python3-rhnlib-4.1.3-4.3.2 python3-spacewalk-check-4.1.9-4.12.4 python3-spacewalk-client-setup-4.1.9-4.12.4 python3-spacewalk-client-tools-4.1.9-4.12.4 spacewalk-backend-4.1.21-4.22.7 spacewalk-base-minimal-4.1.23-3.18.6 spacewalk-base-minimal-config-4.1.23-3.18.6 spacewalk-check-4.1.9-4.12.4 spacewalk-client-setup-4.1.9-4.12.4 spacewalk-client-tools-4.1.9-4.12.4 spacewalk-proxy-broker-4.1.4-3.9.4 spacewalk-proxy-common-4.1.4-3.9.4 spacewalk-proxy-installer-4.1.6-3.3.2 spacewalk-proxy-management-4.1.4-3.9.4 spacewalk-proxy-package-manager-4.1.4-3.9.4 spacewalk-proxy-redirect-4.1.4-3.9.4 spacewalk-proxy-salt-4.1.4-3.9.4
References:
https://www.suse.com/security/cve/CVE-2020-28477.html https://bugzilla.suse.com/1173893 https://bugzilla.suse.com/1177508 https://bugzilla.suse.com/1180558 https://bugzilla.suse.com/1181807 https://bugzilla.suse.com/1182006 https://bugzilla.suse.com/1182685
|
|
|
|