Overview

File _patchinfo of Package patchinfo.13913

<patchinfo incident="13913">
  <issue tracker="cve" id="2019-18904"/>
  <issue tracker="bnc" id="1157119">[RMT] There are some errors when sync from SCC</issue>
  <issue tracker="bnc" id="1141122">`rmt-cli systems list` dies with traceback</issue>
  <issue tracker="bnc" id="1160673">systemd unit dependencies are too strict</issue>
  <issue tracker="bnc" id="1160922">VUL-0: CVE-2019-18904: rmt: Offline migrations endpoint eats up all of the CPU</issue>
  <packager>jmammen</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for rmt-server</summary>
  <description>This update for rmt-server to version 2.5.2 fixes the following issues:

Security issue fixed:

- CVE-2019-18904: Fixed a denial of service in the offline migration (bsc#1160922).

Non-security issue fixed:

- Relaxed systemd units dependencies (bsc#1160673)
- Added more verbose error reporting for SCC API errors (bsc#1157119)
- Fixed system listing when architecture is not well referenced (bsc#1141122)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places