Bugzilla – Bug 1181550
VUL-0: salt: February 2021 release
Last modified: 2023-03-01 10:17:10 UTC
CRD: 2021-02-04 time currently not known, likely US business hours
I've send an email to enterprisesupport@saltstack.com and asked for the patches and the exact end of the embargo. Setting the needinfo on me for now.
From RC conversation with Julio: "Pau approved delaying 4.1.5 and Uyuni 2021.01 to include the salt fixes."
Created attachment 845694 [details] CVE patches 2016.11.10
Created attachment 845695 [details] CVE patches 3000.6
Created attachment 845696 [details] CVE patches 3002.2
Quick update: The patch for 3000 is applying cleanly - only some changes in the lines numbers. Unit tests are looking good, no difference from the version we are currently shipping. I've started to create the IBS repos we'll need for running the cucumber tests and ultimately for submitting. Already done: RES7 Ubuntu16.04 Ubuntu18.04 Ubuntu20.04 Debian9 Debian10 SLE15SP1 SLE15SP2 … and I'm finishing those now: RES6 RES8 SLE11 SLE12 SLE15
I think we still don't have the exact time for the end of the embargo. I have reached out to Ken Crowell from VMware and he promised to come back to me with the answer.
Got this from Ken Crowell from VMware: > Hi Jochen, thanks for your patience. Unfortunately, it looks like we've found > a critical regression in the patches, so the patches we supplied should not be > released. There will be a new patch set available which addresses the > regression in the next 10-14 days. Very sorry about the inconvenience.
Is this is for all of them? THis would mean full rollback of the current staged updaes
(In reply to Marcus Meissner from comment #18) > Is this is for all of them? > > THis would mean full rollback of the current staged updaes Yes, there won't be an update today. Julio was already made aware.
We also got this mail: From: SaltStack | Now part of VMware <security@saltstack.com> We’d like to share an important update with you regarding the CVEs and security patch/update you received from us on January 28, 2021. An issue has been found affecting the functionality of runners. At this time, we are working to correct the issue. Additional packages and patches will be made available, and time to apply these, prior to the General Public release. Another communication will be announced publicly via the Security RSS Feed on Thursday, February 4th announcing the public delay. The issue found will give an Authentication error stating: Authentication failure of type “user” occurred All Salt runners will give this error and cease to run. A few things to note: - If you have already applied the patch/upgrade that was provided from January 28, 2021 and have experienced issues with runners not functioning properly, you will need to rollback the patch by downgrading your Salt version to the previous stable release, or reversing the patch to restore functionality. (Click here <https://em.saltstack.com/thQN1a0oPo09y00fHa0002B> to access the patch and instructions provided from January 28.) - We will release a patch fixing the runner issue in the next 10 to 14 days. The public CVE release will follow about a week later. - Again, we are postponing the public release and giving you advanced notice to provide time to apply the patch and secure your Salt environment before the public is aware of the vulnerabilities. If you have any questions or need any help with the CVE patches/package already released, please contact us at enterprisesupport@saltstack.com <https://em.saltstack.com/DPCa00z0QHo00o029f1N0ha> or visit our support portal at help.saltstack.com <https://em.saltstack.com/WP02AfHa90D1QhN00a0oo00> to submit a support ticket. Once again, until our public announcement of these vulnerabilities, please keep all information about the CVEs and the security updates confidential and do not post or respond to any posts about these confidential CVEs on any public forums, including the Salt Open community. Thank you for your continued support. Sincerely, Your SaltStack Team
We just noticed that there are two more packages affected that we will need to fix: py26-compat-salt, for 4.0, 4.1 (and 4.2 alpha/beta) py27-compat-salt, for 4.2 alpha/beta Pablo/Jochan, remember to send fixes as well when the new patches from saltstack are ready.
The public release was postponed. https://saltproject.io/security_announcements/salt-feb-4th-cve-release-delayed/ New release date: CRD: 2021-02-25 19:00 UTC
Created attachment 846073 [details] patches_2021_01_28_2016.11.10.patch
Created attachment 846074 [details] patches_2021_01_28_3000.6.patch
Created attachment 846076 [details] patches_2021_01_28_3002.2.patch
Created attachment 846077 [details] patches_2021_02_05_2016.11.10.patch
Created attachment 846078 [details] patches_2021_02_05_3000.6.patch
Created attachment 846079 [details] patches_2021_02_05_3002.2.patch
We've just received a new set of patches from Sage (VMware). This consists of the patches that are already known to us (I've uploaded them anyway and deprecated the other old ones) and the fixes for those. So we've got 2 patches for each of the Salt versions.
FYI we're running testsuite on top of the candidate package to release in order to validate it and we're currently seeing some issues with SUSE Manager 4.1. We'll let you know as soon as we have more information about this.
I got the green light from Pablo for the submissions, so here they are: SLE11 salt: 236483 SLE12 salt: 236484 SLE15SP0 salt: 236485 SLE15SP1 salt: 236486 SLE15SP2 salt: 236493 RES6 salt: 236494 RES7 salt: 236495 RES8 salt: 236496 Ubuntu16.04 salt: 236487 Ubuntu18.04 salt: 236488 Ubuntu20.04 salt: 236489 Debian9 salt: 236490 Debian10 salt: 236497 SUMA 4.1 py26-compat-salt: 236491 SUMA 4.1 py26-compat-salt: 236492
Thanks folks, all the incidents have been released! request 236764 is accepted. Update SUSE:Maintenance:18378 is released request 236756 is accepted. Update SUSE:Maintenance:18371 is released request 236757 is accepted. Update SUSE:Maintenance:18372 is released request 236754 is accepted. Update SUSE:Maintenance:18369 is released request 236747 is accepted. Update SUSE:Maintenance:18374 is released request 236755 is accepted. Update SUSE:Maintenance:18370 is released request 236759 is accepted. Update SUSE:Maintenance:18375 is released request 236763 is accepted. Update SUSE:Maintenance:18377 is released request 236758 is accepted. Update SUSE:Maintenance:18373 is released request 236750 is accepted. Update SUSE:Maintenance:18379 is released request 236740 is accepted. Update SUSE:Maintenance:18364 is released request 236753 is accepted. Update SUSE:Maintenance:18365 is released request 236735 is accepted. Update SUSE:Maintenance:18366 is released request 236751 is accepted. Update SUSE:Maintenance:18368 is released request 236761 is accepted. Update SUSE:Maintenance:18376 is released request 236636 is accepted. Update SUSE:Maintenance:18398 is released request 236637 is accepted. Update SUSE:Maintenance:18401 is released
SUSE-RU-2021:0632-1: An update that solves 10 vulnerabilities and has one errata is now available. Category: recommended (moderate) Bug References: 1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: SUSE Manager Server 4.0 (src): release-notes-susemanager-4.0.12.1-3.68.1 SUSE Manager Retail Branch Server 4.0 (src): release-notes-susemanager-proxy-4.0.12.1-0.16.52.1 SUSE Manager Proxy 4.0 (src): release-notes-susemanager-proxy-4.0.12.1-0.16.52.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:0624-1: An update that solves 10 vulnerabilities and has two fixes is now available. Category: security (critical) Bug References: 1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182740 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: SUSE Linux Enterprise Module for SUSE Manager Server 4.1 (src): py26-compat-salt-2016.11.10-6.8.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:14650-1: An update that solves 10 vulnerabilities and has two fixes is now available. Category: security (critical) Bug References: 1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182740 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: SUSE Linux Enterprise Server 11-SP4-CLIENT-TOOLS (src): salt-2016.11.10-43.69.1 SUSE Linux Enterprise Server 11-SP3-CLIENT-TOOLS (src): salt-2016.11.10-43.69.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:0626-1: An update that solves 10 vulnerabilities and has two fixes is now available. Category: security (critical) Bug References: 1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182740 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: SUSE Linux Enterprise Module for SUSE Manager Server 4.0 (src): py26-compat-salt-2016.11.10-10.22.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-RU-2021:0633-1: An update that solves 10 vulnerabilities and has one errata is now available. Category: recommended (moderate) Bug References: 1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: SUSE Manager Server 4.1 (src): release-notes-susemanager-4.1.5.1-3.38.1 SUSE Manager Retail Branch Server 4.1 (src): release-notes-susemanager-proxy-4.1.5.1-3.26.1 SUSE Manager Proxy 4.1 (src): release-notes-susemanager-proxy-4.1.5.1-3.26.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:0619-1: An update that solves 10 vulnerabilities and has two fixes is now available. Category: security (critical) Bug References: 1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182740 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:0628-1: An update that solves 10 vulnerabilities and has two fixes is now available. Category: security (critical) Bug References: 1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182740 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: SUSE Linux Enterprise Server for SAP 15 (src): salt-3000-5.106.1 SUSE Linux Enterprise Server 15-LTSS (src): salt-3000-5.106.1 SUSE Linux Enterprise High Performance Computing 15-LTSS (src): salt-3000-5.106.1 SUSE Linux Enterprise High Performance Computing 15-ESPOS (src): salt-3000-5.106.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:0625-1: An update that solves 10 vulnerabilities and has two fixes is now available. Category: security (critical) Bug References: 1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182740 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:0630-1: An update that solves 10 vulnerabilities and has two fixes is now available. Category: security (critical) Bug References: 1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182740 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: SUSE Linux Enterprise Module for Server Applications 15-SP2 (src): salt-3000-24.1 SUSE Linux Enterprise Module for Python2 15-SP2 (src): salt-3000-24.1 SUSE Linux Enterprise Module for Basesystem 15-SP2 (src): salt-3000-24.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:14647-1: An update that solves 10 vulnerabilities and has two fixes is now available. Category: security (critical) Bug References: 1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182740 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:14649-1: An update that solves 10 vulnerabilities and has two fixes is now available. Category: security (critical) Bug References: 1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182740 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:0631-1: An update that solves 10 vulnerabilities and has two fixes is now available. Category: security (critical) Bug References: 1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182740 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: SUSE Manager Server 4.0 (src): salt-3000-24.1 SUSE Manager Retail Branch Server 4.0 (src): salt-3000-24.1 SUSE Manager Proxy 4.0 (src): salt-3000-24.1 SUSE Linux Enterprise Server for SAP 15-SP1 (src): salt-3000-24.1 SUSE Linux Enterprise Server 15-SP1-LTSS (src): salt-3000-24.1 SUSE Linux Enterprise Server 15-SP1-BCL (src): salt-3000-24.1 SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS (src): salt-3000-24.1 SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS (src): salt-3000-24.1 SUSE Enterprise Storage 6 (src): salt-3000-24.1 SUSE CaaS Platform 4.0 (src): salt-3000-24.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:14646-1: An update that solves 10 vulnerabilities and has two fixes is now available. Category: security (critical) Bug References: 1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182740 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:0627-1: An update that solves 10 vulnerabilities and has two fixes is now available. Category: security (critical) Bug References: 1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182740 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: SUSE Manager Tools 12 (src): salt-3000-46.129.1 SUSE Linux Enterprise Point of Sale 12-SP2 (src): salt-3000-46.129.1 SUSE Linux Enterprise Module for Advanced Systems Management 12 (src): salt-3000-46.129.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
openSUSE-SU-2021:0347-1: An update that solves 10 vulnerabilities and has two fixes is now available. Category: security (critical) Bug References: 1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182740 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: openSUSE Leap 15.2 (src): salt-3000-lp152.3.27.1
SUSE-SU-2021:0913-1: An update that solves 11 vulnerabilities and has 8 fixes is now available. Category: security (moderate) Bug References: 1099976,1172110,1174855,1177474,1179696,1181347,1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182382,1182740 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-25315,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:14679-1: An update that solves 11 vulnerabilities and has 7 fixes is now available. Category: security (moderate) Bug References: 1099976,1172110,1174855,1179696,1181347,1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182382,1182740 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-25315,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:0914-1: An update that solves 11 vulnerabilities and has 8 fixes is now available. Category: security (moderate) Bug References: 1099976,1172110,1174855,1177474,1179696,1181347,1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182382,1182740 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-25315,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: SUSE Manager Tools 15-BETA (src): salt-3002.2-8.33.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:14677-1: An update that solves 10 vulnerabilities and has 10 fixes is now available. Category: security (moderate) Bug References: 1099976,1172110,1174855,1179696,1180101,1180818,1181290,1181347,1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182740 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:14682-1: An update that solves 10 vulnerabilities and has 6 fixes is now available. Category: security (moderate) Bug References: 1181290,1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1181807,1182339,1182603,1182740 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: SUSE Linux Enterprise Server 11-SP4-CLIENT-TOOLS-BETA (src): mgr-osad-4.2.3-8.12.1, rhnlib-4.2.2-15.12.1, salt-2016.11.10-46.15.1, spacewalk-client-tools-4.2.7-30.24.1 SUSE Linux Enterprise Server 11-SP3-CLIENT-TOOLS-BETA (src): mgr-osad-4.2.3-8.12.1, rhnlib-4.2.2-15.12.1, salt-2016.11.10-46.15.1, spacewalk-client-tools-4.2.7-30.24.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:0910-1: An update that solves 10 vulnerabilities and has 10 fixes is now available. Category: security (moderate) Bug References: 1099976,1172110,1174855,1179696,1180101,1180818,1181290,1181347,1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182740 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:14678-1: An update that solves 11 vulnerabilities and has 8 fixes is now available. Category: security (moderate) Bug References: 1099976,1172110,1174855,1177474,1179696,1181347,1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182382,1182740 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-25315,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:0915-1: An update that solves 10 vulnerabilities and has 10 fixes is now available. Category: security (moderate) Bug References: 1099976,1172110,1174855,1179696,1180101,1180818,1181290,1181347,1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182740 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-3197 JIRA References: Sources used: SUSE Manager Tools 12-BETA (src): salt-3000-49.29.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:14733-1: An update that solves 11 vulnerabilities, contains one feature and has 17 fixes is now available. Category: security (moderate) Bug References: 1099976,1171257,1172110,1174855,1176293,1177474,1179831,1180101,1180818,1181290,1181347,1181368,1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182281,1182293,1182740,1185092,1185281 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-31607,CVE-2021-3197 JIRA References: ECO-3212 Sources used: NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:14734-1: An update that solves 11 vulnerabilities, contains one feature and has 17 fixes is now available. Category: security (moderate) Bug References: 1099976,1171257,1172110,1174855,1176293,1177474,1179831,1180101,1180818,1181290,1181347,1181368,1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182281,1182293,1182740,1185092,1185281 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-31607,CVE-2021-3197 JIRA References: ECO-3212 Sources used: NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:1690-1: An update that solves 11 vulnerabilities, contains one feature and has 17 fixes is now available. Category: security (moderate) Bug References: 1099976,1171257,1172110,1174855,1176293,1177474,1179831,1180101,1180818,1181290,1181347,1181368,1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182281,1182293,1182740,1185092,1185281 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-31607,CVE-2021-3197 JIRA References: ECO-3212 Sources used: SUSE Manager Tools 15-BETA (src): salt-3002.2-8.41.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2021:1694-1: An update that solves 11 vulnerabilities, contains one feature and has 17 fixes is now available. Category: security (moderate) Bug References: 1099976,1171257,1172110,1174855,1176293,1177474,1179831,1180101,1180818,1181290,1181347,1181368,1181550,1181556,1181557,1181558,1181559,1181560,1181561,1181562,1181563,1181564,1181565,1182281,1182293,1182740,1185092,1185281 CVE References: CVE-2020-28243,CVE-2020-28972,CVE-2020-35662,CVE-2021-25281,CVE-2021-25282,CVE-2021-25283,CVE-2021-25284,CVE-2021-3144,CVE-2021-3148,CVE-2021-31607,CVE-2021-3197 JIRA References: ECO-3212 Sources used: NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
done