Overview

File _patchinfo of Package patchinfo.43105

<patchinfo incident="43105">
  <category>security</category>
  <rating>important</rating>
  <packager>PSuarezHernandez</packager>
  <summary>Maintenance update for Multi-Linux Manager 4.3 Release Notes Release Notes</summary>
  <description>Maintenance update for Multi-Linux Manager 4.3 Release Notes Release Notes:

This is a codestream only update
</description>
  <releasetarget project="SUSE:SLE-15-SP4:Update"/>
  <issue tracker="ijsc" id="MSQA-1046"/>
  <issue tracker="bnc" id="1213308">[doc] PTF channels needs to be requested per account being able to sync</issue>
  <issue tracker="bnc" id="1214568">migrating minor version for proxy instructions need a bit clarification</issue>
  <issue tracker="bnc" id="1214569">server migration documentation about postgres needs removing old version</issue>
  <issue tracker="bnc" id="1216711">[doc] 1. Activate the public cloud module</issue>
  <issue tracker="bnc" id="1217755">Auto-installation profiles page refers specifically to RHEL</issue>
  <issue tracker="bnc" id="1220899">ISSv2 not syncing cobbler distribution information for containerized branch server</issue>
  <issue tracker="bnc" id="1221950">Archive Log Settings part refers to pg_xlog which seems to not exist in 4.3.11</issue>
  <issue tracker="bnc" id="1223368">SP upgrade - add more details what dry run does</issue>
  <issue tracker="bnc" id="1227577">VUL-0: spacecmd, susemanager, rhnlib and spacewalk-backend: usage of unsafe third party library for XML</issue>
  <issue tracker="bnc" id="1227579">AUDIT-FIND: spacecmd: get rid of pickle to read and parse configuration files</issue>
  <issue tracker="bnc" id="1228577">Channel removal documentation suggests that mgr-sync be run against a channel after it is removed</issue>
  <issue tracker="bnc" id="1230876">CLM filter templates for Live Patching do not account for udev, systemd, and other reboot-required packages</issue>
  <issue tracker="bnc" id="1232125">api call system.provisionSystem is missing option for SUSE Manager Proxy</issue>
  <issue tracker="bnc" id="1233496">Important/Warning inconsistency</issue>
  <issue tracker="bnc" id="1236066">Requirement to have PAYG system used for PAYG connection in the same location/region as the SUSE Manager is</issue>
  <issue tracker="bnc" id="1236799">Confirmation message missing when assigning channel to minion</issue>
  <issue tracker="bnc" id="1237536">Unable to remove certain system profiles</issue>
  <issue tracker="bnc" id="1238481">Ubuntu 20.04 is still mentioned as supported in the doc when it's EoL</issue>
  <issue tracker="bnc" id="1239636">VUL-0: spacewalk-java: log pollution in class TraceBackEvent</issue>
  <issue tracker="bnc" id="1240565">Change of tasks order being triggered when the system is bootstrapped</issue>
  <issue tracker="bnc" id="1241013">mgr-create-bootstrap-repo does not list OES24.4</issue>
  <issue tracker="bnc" id="1243241">Product sync over RHEL added for PAYG connection</issue>
  <issue tracker="bnc" id="1243679">VUL-0: susemanager-tftpsync: Insecure communication in TFTP proxy sync</issue>
  <issue tracker="bnc" id="1243768">VUL-0: susemanager-tftpsync: Potential Command Injection Pattern in check_push Function</issue>
  <issue tracker="bnc" id="1243808">Vendor Advisory URL in SUSE Manager directing to error 404 not found</issue>
  <issue tracker="bnc" id="1243876">An error is received when I highstate a Prometheus Exporter formula in a red hat like minion</issue>
  <issue tracker="bnc" id="1243881">System fails to onboard, not creating packages or custom sls files</issue>
  <issue tracker="bnc" id="1244177">Broken URL in API docs for Lucene. This should be fixed for 4.3, 5.0 and 5.1</issue>
  <issue tracker="bnc" id="1244542">SL Micro 6 formulas Monitoring &gt; Prometheus Exporters failing</issue>
  <issue tracker="bnc" id="1244648">SUMA Hub Environment - Peripherl unable to run 'mgr-create-boostrap' repo without including --force -c &lt;channel-name&gt; flags</issue>
  <issue tracker="bnc" id="1244724">mgr-inter-sync: fails from peripheral to hub</issue>
  <issue tracker="bnc" id="1245241">Storage administration details are sparse</issue>
  <issue tracker="bnc" id="1245307">inter-server-sync import failing on SLES12 SP5 channels</issue>
  <issue tracker="bnc" id="1245405">Client system shows reboot required even though it has been rebooted</issue>
  <issue tracker="bnc" id="1245766">Missing instructions for directly connected clients after server rename</issue>
  <issue tracker="bnc" id="1246421">Request to add third party (IBM) repository GPG keys to default key store</issue>
  <issue tracker="bnc" id="1246981">Liberating a RES 7 LTSS Server results in a rpmdb issue</issue>
  <issue tracker="bnc" id="1247038">Step 3 LTS instructions box</issue>
  <issue tracker="bnc" id="1248741">Salt formulas link redirection 404 status</issue>
  <issue tracker="bnc" id="1248804">Product Migration to Liberty fail</issue>
  <issue tracker="bnc" id="1249502">Unable to set proxy values via the WebUI: "Proxy settings are not valid".</issue>
  <issue tracker="bnc" id="1251864">Build OS image on containerized build host: relax-ng validation fails on &lt;repository type="rpm-dir"</issue>
  <issue tracker="bnc" id="1251995">A system_schedulepackagerefresh can't be trigered trough the spacecmd command in minions managed through ssh. Error: com.redhat.rhn.common.translation.TranslationException: Could not find translator for class java.lang.String to class java.lang.Integer</issue>
  <issue tracker="bnc" id="1252937">dnf updateinfo shows 'Unknown' severity for security updates on SUSE LL8</issue>
  <issue tracker="bnc" id="1253024">Installing kiwi tools for build host on sles15sp7 is failing</issue>
  <issue tracker="bnc" id="1253068">Traditional clients fail to fetch repository metadata with libcurl4 8.14</issue>
  <issue tracker="bnc" id="1253158">REACTIVATION-KEY typo in instructions for converting traditional clients to salt</issue>
  <issue tracker="bnc" id="1253322">inter-server-sync sets the FQDN of the peripheral server from cobbler.host which is localhost on images pillars URLs</issue>
  <issue tracker="bnc" id="1253501">Setup wizard "HTTP Proxy" always fails with "Proxy settings are not valid"</issue>
  <issue tracker="bnc" id="1255298">VUL-0: CVE-2024-29371: jose4j: a malicious JWE token with an exceptionally high compression ratio can cause a Denial-of-Service</issue>
  <issue tracker="bnc" id="1253773">squid and LRU vs LFUDA</issue>
  <issue tracker="cve" id="2024-29371"/>
  <issue tracker="cve" id="2026-27727"/>
  <issue tracker="cve" id="2026-27830"/>
  <issue tracker="cve" id="2025-12816"/>
  <issue tracker="cve" id="2025-13465"/>
  <issue tracker="cve" id="2025-61140"/>
  <issue tracker="cve" id="2026-1615"/>
  <issue tracker="cve" id="2026-25547"/>
</patchinfo>
openSUSE Build Service is sponsored by
Places