Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2019-5427 (GCVE-0-2019-5427)
Vulnerability from cvelistv5 – Published: 2019-04-22 20:52 – Updated: 2024-08-04 19:54
VLAI
EPSS
Summary
c3p0 version < 0.9.5.4 may be exploited by a billion laughs attack when loading XML configuration due to missing protections against recursive entity expansion when loading configuration.
Severity
7.5 (High)
CWE
- CWE-776 - XML Entity Expansion (CWE-776)
Assigner
References
8 references
| URL | Tags |
|---|---|
| https://lists.fedoraproject.org/archives/list/pac… | vendor-advisoryx_refsource_FEDORA |
| https://lists.fedoraproject.org/archives/list/pac… | vendor-advisoryx_refsource_FEDORA |
| https://www.oracle.com/security-alerts/cpuapr2020.html | x_refsource_MISC |
| https://www.oracle.com/security-alerts/cpujul2020.html | x_refsource_MISC |
| https://hackerone.com/reports/509315 | x_refsource_MISC |
| https://www.oracle.com/security-alerts/cpuoct2020.html | x_refsource_MISC |
| https://www.oracle.com/security-alerts/cpujan2021.html | x_refsource_MISC |
| https://www.oracle.com/security-alerts/cpuoct2021.html | x_refsource_MISC |
Date Public
2019-04-16 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T19:54:53.546Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "FEDORA-2019-cb14e234fc",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFIVX6HOVNLAM7W3SUAMHYRNLCVQSAWR/"
},
{
"name": "FEDORA-2019-063672154a",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MQ47OFV57Y2DAHMGA5H3JOL4WHRWRFN4/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://hackerone.com/reports/509315"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpuoct2020.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpujan2021.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "c3p0",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "before 0.9.5.4"
}
]
}
],
"datePublic": "2019-04-16T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "c3p0 version \u003c 0.9.5.4 may be exploited by a billion laughs attack when loading XML configuration due to missing protections against recursive entity expansion when loading configuration."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-776",
"description": "XML Entity Expansion (CWE-776)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-10-20T10:38:35.000Z",
"orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
"shortName": "hackerone"
},
"references": [
{
"name": "FEDORA-2019-cb14e234fc",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFIVX6HOVNLAM7W3SUAMHYRNLCVQSAWR/"
},
{
"name": "FEDORA-2019-063672154a",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MQ47OFV57Y2DAHMGA5H3JOL4WHRWRFN4/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://hackerone.com/reports/509315"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.oracle.com/security-alerts/cpuoct2020.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.oracle.com/security-alerts/cpujan2021.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "support@hackerone.com",
"ID": "CVE-2019-5427",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "c3p0",
"version": {
"version_data": [
{
"version_value": "before 0.9.5.4"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "c3p0 version \u003c 0.9.5.4 may be exploited by a billion laughs attack when loading XML configuration due to missing protections against recursive entity expansion when loading configuration."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "XML Entity Expansion (CWE-776)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "FEDORA-2019-cb14e234fc",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BFIVX6HOVNLAM7W3SUAMHYRNLCVQSAWR/"
},
{
"name": "FEDORA-2019-063672154a",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MQ47OFV57Y2DAHMGA5H3JOL4WHRWRFN4/"
},
{
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"name": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"name": "https://hackerone.com/reports/509315",
"refsource": "MISC",
"url": "https://hackerone.com/reports/509315"
},
{
"name": "https://www.oracle.com/security-alerts/cpuoct2020.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpuoct2020.html"
},
{
"name": "https://www.oracle.com/security-alerts/cpujan2021.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpujan2021.html"
},
{
"name": "https://www.oracle.com/security-alerts/cpuoct2021.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
"assignerShortName": "hackerone",
"cveId": "CVE-2019-5427",
"datePublished": "2019-04-22T20:52:56.000Z",
"dateReserved": "2019-01-04T00:00:00.000Z",
"dateUpdated": "2024-08-04T19:54:53.546Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2019-5427",
"date": "2026-06-02",
"epss": "0.05651",
"percentile": "0.90516"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mchange:c3p0:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"0.9.5.2\", \"matchCriteriaId\": \"2A18C00D-54D8-4B73-89B7-24E7DDF017E7\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D100F7CE-FC64-4CC6-852A-6136D72DA419\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"97A4B8DF-58DA-4AB6-A1F9-331B36409BA3\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:communications_ip_service_activator:7.3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DE48E0FE-5931-441C-B4FF-253BD9C48186\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:communications_ip_service_activator:7.4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DE7A60DB-A287-4E61-8131-B6314007191B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:communications_session_route_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"8.2.0\", \"versionEndIncluding\": \"8.2.2\", \"matchCriteriaId\": \"11B0C37E-D7C7-45F2-A8D8-5A3B1B191430\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:documaker:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"12.6.0\", \"versionEndIncluding\": \"12.6.6\", \"matchCriteriaId\": \"0A3136AE-8744-4B13-BCA3-9FDD9E71DF02\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:enterprise_manager_base_platform:13.2.1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"66916DEB-ACE1-44E0-9535-10B3E03347AC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B095CC03-7077-4A58-AB25-CC5380CDCE5A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:flexcube_private_banking:12.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6762F207-93C7-4363-B2F9-7A7C6F8AF993\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:flexcube_private_banking:12.1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1B74B912-152D-4F38-9FC1-741D6D0B27FC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:hyperion_infrastructure_technology:11.1.2.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DED59B62-C9BF-4C0E-B351-3884E8441655\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:retail_xstore_point_of_service:15.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"11DA6839-849D-4CEF-85F3-38FE75E07183\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:retail_xstore_point_of_service:16.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BCE78490-A4BE-40BD-8C72-0A4526BBD4A4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:retail_xstore_point_of_service:17.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"55AE3629-4A66-49E4-A33D-6D81CC94962F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:retail_xstore_point_of_service:18.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4CB39A1A-AD29-45DD-9EB5-5E2053A01B9A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:retail_xstore_point_of_service:19.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"27C26705-6D1F-4D5E-B64D-B479108154FF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:webcenter_sites:12.2.1.3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D551CAB1-4312-44AA-BDA8-A030817E153A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:webcenter_sites:12.2.1.4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"174A6D2E-E42E-4C92-A194-C6A820CD7EF4\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"c3p0 version \u003c 0.9.5.4 may be exploited by a billion laughs attack when loading XML configuration due to missing protections against recursive entity expansion when loading configuration.\"}, {\"lang\": \"es\", \"value\": \"En c3p0 versiones \u003c0.9.5.4, puede ser explotada por un ataque de tipo a billion laughs al cargar la configuraci\\u00f3n XML producto de la falta de protecciones faltantes contra la expansi\\u00f3n recursiva de la entidad al cargar la configuraci\\u00f3n.\"}]",
"id": "CVE-2019-5427",
"lastModified": "2024-11-21T04:44:54.943",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:N/A:P\", \"baseScore\": 5.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2019-04-22T21:29:00.523",
"references": "[{\"url\": \"https://hackerone.com/reports/509315\", \"source\": \"support@hackerone.com\", \"tags\": [\"Exploit\", \"Issue Tracking\", \"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFIVX6HOVNLAM7W3SUAMHYRNLCVQSAWR/\", \"source\": \"support@hackerone.com\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MQ47OFV57Y2DAHMGA5H3JOL4WHRWRFN4/\", \"source\": \"support@hackerone.com\"}, {\"url\": \"https://www.oracle.com/security-alerts/cpuapr2020.html\", \"source\": \"support@hackerone.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpujan2021.html\", \"source\": \"support@hackerone.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpujul2020.html\", \"source\": \"support@hackerone.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpuoct2020.html\", \"source\": \"support@hackerone.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpuoct2021.html\", \"source\": \"support@hackerone.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://hackerone.com/reports/509315\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Issue Tracking\", \"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFIVX6HOVNLAM7W3SUAMHYRNLCVQSAWR/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MQ47OFV57Y2DAHMGA5H3JOL4WHRWRFN4/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.oracle.com/security-alerts/cpuapr2020.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpujan2021.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpujul2020.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpuoct2020.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpuoct2021.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
"sourceIdentifier": "support@hackerone.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"support@hackerone.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-776\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-776\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2019-5427\",\"sourceIdentifier\":\"support@hackerone.com\",\"published\":\"2019-04-22T21:29:00.523\",\"lastModified\":\"2025-09-05T17:23:58.510\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"c3p0 version \u003c 0.9.5.4 may be exploited by a billion laughs attack when loading XML configuration due to missing protections against recursive entity expansion when loading configuration.\"},{\"lang\":\"es\",\"value\":\"En c3p0 versiones \u003c0.9.5.4, puede ser explotada por un ataque de tipo a billion laughs al cargar la configuraci\u00f3n XML producto de la falta de protecciones faltantes contra la expansi\u00f3n recursiva de la entidad al cargar la configuraci\u00f3n.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"support@hackerone.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-776\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-776\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mchange:c3p0:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"0.9.5.4\",\"matchCriteriaId\":\"FECD9981-2017-4DA4-951A-55C01C749FCF\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D100F7CE-FC64-4CC6-852A-6136D72DA419\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"97A4B8DF-58DA-4AB6-A1F9-331B36409BA3\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_ip_service_activator:7.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE48E0FE-5931-441C-B4FF-253BD9C48186\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_ip_service_activator:7.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE7A60DB-A287-4E61-8131-B6314007191B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_session_route_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"8.2.0\",\"versionEndIncluding\":\"8.2.2\",\"matchCriteriaId\":\"11B0C37E-D7C7-45F2-A8D8-5A3B1B191430\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:documaker:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.6.0\",\"versionEndIncluding\":\"12.6.6\",\"matchCriteriaId\":\"0A3136AE-8744-4B13-BCA3-9FDD9E71DF02\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:enterprise_manager_base_platform:13.2.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"66916DEB-ACE1-44E0-9535-10B3E03347AC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:enterprise_manager_ops_center:12.4.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B095CC03-7077-4A58-AB25-CC5380CDCE5A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:flexcube_private_banking:12.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6762F207-93C7-4363-B2F9-7A7C6F8AF993\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:flexcube_private_banking:12.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1B74B912-152D-4F38-9FC1-741D6D0B27FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:hyperion_infrastructure_technology:11.1.2.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DED59B62-C9BF-4C0E-B351-3884E8441655\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:retail_xstore_point_of_service:15.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"11DA6839-849D-4CEF-85F3-38FE75E07183\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:retail_xstore_point_of_service:16.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BCE78490-A4BE-40BD-8C72-0A4526BBD4A4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:retail_xstore_point_of_service:17.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"55AE3629-4A66-49E4-A33D-6D81CC94962F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:retail_xstore_point_of_service:18.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4CB39A1A-AD29-45DD-9EB5-5E2053A01B9A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:retail_xstore_point_of_service:19.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"27C26705-6D1F-4D5E-B64D-B479108154FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:webcenter_sites:12.2.1.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D551CAB1-4312-44AA-BDA8-A030817E153A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:webcenter_sites:12.2.1.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"174A6D2E-E42E-4C92-A194-C6A820CD7EF4\"}]}]}],\"references\":[{\"url\":\"https://hackerone.com/reports/509315\",\"source\":\"support@hackerone.com\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFIVX6HOVNLAM7W3SUAMHYRNLCVQSAWR/\",\"source\":\"support@hackerone.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MQ47OFV57Y2DAHMGA5H3JOL4WHRWRFN4/\",\"source\":\"support@hackerone.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuapr2020.html\",\"source\":\"support@hackerone.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujan2021.html\",\"source\":\"support@hackerone.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2020.html\",\"source\":\"support@hackerone.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuoct2020.html\",\"source\":\"support@hackerone.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuoct2021.html\",\"source\":\"support@hackerone.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://hackerone.com/reports/509315\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFIVX6HOVNLAM7W3SUAMHYRNLCVQSAWR/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MQ47OFV57Y2DAHMGA5H3JOL4WHRWRFN4/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuapr2020.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujan2021.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2020.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuoct2020.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuoct2021.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
SUSE-SU-2022:1397-1
Vulnerability from csaf_suse - Published: 2022-04-25 14:43 - Updated: 2022-04-25 14:43Summary
Security update for SUSE Manager Server 4.2
Severity
Moderate
Notes
Title of the patch: Security update for SUSE Manager Server 4.2
Description of the patch: This update fixes the following issues:
c3p0:
- Update to version c3p0 0.9.5.5 and
mchange-commons-java 0.2.19
* Address CVE-2018-20433
* Address CVE-2019-5427 - XML-config parsing related attacks (bsc#1133198)
* Properly implement the JDBC 4.1 abort method
grafana-formula:
- Version 0.7.0
* Add SLES 15 SP4 and openSUSE Leap 15.4 to supported versions
hub-xmlrpc-api:
- Updated to build on Enterprise Linux 8.
inter-server-sync:
- Version 0.1.0
* Allow export and import of configuration channels
* Clean lookup cache after processing a channel (bsc#1195750)
* Improve lookup method for generate foreign key export
- Adapted for build on Enterprise Linux 8.
mgr-osad:
- Version 4.2.8-1
* Fix the condition for preventing building python 2 subpackage for SLE15
mgr-push:
- Version 4.2.5-1
* Fix the condition for preventing building python 2 subpackage for SLE15
patterns-suse-manager:
- golang-github-wrouesnel-postgres_exporter was renamed to prometheus-postgres_exporter
prometheus-exporters-formula:
- Version 1.2.0
* Postres exporter package was renamed for RedHat
- Version 1.1.0
* Postgres exporter package was renamed for SLES/openSUSE
py26-compat-msgpack-python:
- Adapted to build on OBS for Enterprise Linux.
rhnlib:
- Version 4.2.6-1
* Fix the condition for preventing building python 2 subpackage for SLE15
saltboot-formula:
- Update to version 0.1.1645440615.7f1328c
* skip device lookup for correctly provided devices
* improve image url modifications - preparation for ftp/http changes
- Skip device lookup if correct path to device is already provided (bsc#1195757)
- Improve image url modifications
smdba:
- Version 1.7.10
* adapt pgtune using new defaults for new postgres versions
* support special configuration for SSD storage
* make argument '--backup-dir' symlink aware
- Version 1.7.9
- Allow different standard configuration file location for other OSes
spacecmd:
- Version 4.2.16-1
* implement system.bootstrap (bsc#1194909)
* Fix interactive mode for 'system_applyerrata' and 'errata_apply' (bsc#1194363)
spacewalk-admin:
- Version 4.2.10-1
* wait after copying the CA to give systemd time to finish automation
spacewalk-backend:
- Version 4.2.20-1
* Fix reposync update notice formatting and date parsing (bsc#1194447)
* implement more decompression algorithms for reposync (bsc#1196704)
* enable check for client certificates in reposync
* remove auto inherit of host entitlements for virtual guests
spacewalk-branding:
- Version 4.2.13-1
* Fix modal footer misalignment
spacewalk-certs-tools:
- Version 4.2.15-1
* Add dynamic version for bootstrap script header (bsc#1186336)
spacewalk-client-tools:
- Version 4.2.18-1
* Fix the condition for preventing building python 2 subpackage for SLE15
- Version 4.2.17-1
* Update translation strings
spacewalk-config:
- Version 4.2.6-1
* Upgrade build tooling, and corresponding cache configuration
spacewalk-java:
- Version 4.2.34-1
* Added new XML-RPC mathod: configchannel.syncSaltFilesOnDisk
* update last checkin only if job is successful (bsc#1197007)
* Fix NPE when accessing cancelled action via system history (bsc#1195762)
* CVE Audit: Show patch as available in the currently installed product even if successor
patch affects additional packages (bsc#1196455)
* send notifications for new or changed ubuntu errata (bsc#1196977)
* change directory owner and permissions only when needed
* Fixed broken help link for system overview
* Provide link to Sync page when unsynced patches message show up (bsc#1196094)
* fix class cast exception during action chains (bsc#1195772)
* Finding empty profiles by mac address must be case insensitive (bsc#1196407)
* prepare to use new postgresql-jdbc driver with stringprep and saslprep support (bsc#1196693)
* allow SCC to display the last check-in time for registered systems
* generate the system ssh key when bootstrapping a salt-ssh client (bsc#1194909)
* Provide link for CVEs
* Fix lock/unlock scheduling on page Software Packages Lock (bsc#1195271)
* When adding a product, check if the new vendor channels conflicts
with any of the existing custom channel (bsc#1193448)
* Fix disappearing metadata key files after channel change (bsc#1192822)
* Suggest Product Migration when patch for CVE is in a successor Product (bsc#1191360)
* Add store info to Equals and hash methods to fix CVE audit process (bsc#1195282)
* Fix virtualization list rendering for foreign systems (bsc#1195712)
* FIX errors when an image profile / store is deleted during build / inspect action (bsc#1191597, bsc#1192150)
* Remove verbose token log (bsc#1195666)
* fix ClassCastException during action processing (bsc#1195043)
spacewalk-web:
- Version 4.2.26-1
* Provide link to Sync page when unsynced patches message show up (bsc#1196094)
* Provide a search box on section name for Formulas content
* Add expand/collapse all button for formula sections
* Improved large data support in channel selection
* Provide link for CVEs
* Improved error handling in the product setup page
* Suggest Product Migration when patch for CVE is in a successor Product (bsc#1191360)
* susemanager-web-libs is now packaged as a part of spacewalk-html
subscription-matcher:
- Version 0.29
* Migration to log4j 2
- Version 0.28
* Support both antlr3-java and antlr3-runtime as dependencies
* Make it obvious that log4j12 is used
supportutils-plugin-susemanager:
- Version 4.2.4-1
* Get version of bootstrap scripts for supportconfig (bsc#1186336)
suseRegisterInfo:
- Version 4.2.6-1
* Fix the condition for preventing building python 2 subpackage for SLE15
susemanager:
- Version 4.2.28-1
* set default for registration batch size
susemanager-doc-indexes:
- Renamed golang-github-wrouesnel-postgres_exporter to
prometheus-postgres_exporter in the Administration Guide
- Clarified in Client Configuration Guide and Retail Guide that
mandatory channels are automatically checked. Also recommended
channels as long as they are not deactivated (bsc#1173527)
- In Custom Channels chapter of the Administration Guide, provide
information about creating metadata (bsc#1195294)
- In the Client Configuration Guide, mark Yomi as unsupported on
SUSE Linux Enterprise Server 11 and 12
- Documented GPG encrypted Salt Pillars in the Salt book
- In Client Configuration Guide, fixed channel configuration and
registration of Expanded Support clients
- Clarified channel label name in Registering Clients with RHUI
section of the Client Configuration Guide (bsc#1196067)
- In Throubleshooting Synchronization chapter in the Administration
Guide added instructions for GPG removal
- In Client Configuration Guide, integrated SUSE Linux Enterprise
Micro Client documentation next to SUSE Linux Enterprise Client
documentation and other related documentation improvements (bsc#1195145)
- Added a warning about the origin of the salt-minion package in the
Register on the Command Line (Salt) section of the Client
Configuration Guide
- Add troubleshooting section about avoiding package conflicts
with custom channels
susemanager-docs_en:
- Renamed golang-github-wrouesnel-postgres_exporter to
prometheus-postgres_exporter in the Administration Guide
- Clarified in Client Configuration Guide and Retail Guide that
mandatory channels are automatically checked. Also recommended
channels as long as they are not deactivated (bsc#1173527)
- In Custom Channels chapter of the Administration Guide, provide
information about creating metadata (bsc#1195294)
- In the Client Configuration Guide, mark Yomi as unsupported on
SUSE Linux Enterprise Server 11 and 12
- Documented GPG encrypted Salt Pillars in the Salt book
- In Client Configuration Guide, fixed channel configuration and
registration of Expanded Support clients
- Clarified channel label name in Registering Clients with RHUI
section of the Client Configuration Guide (bsc#1196067)
- In Throubleshooting Synchronization chapter in the Administration
Guide added instructions for GPG removal
- In Client Configuration Guide, integrated SUSE Linux Enterprise
Micro Client documentation next to SUSE Linux Enterprise Client
documentation and other related documentation improvements (bsc#1195145)
- Added a warning about the origin of the salt-minion package in the
Register on the Command Line (Salt) section of the Client
Configuration Guide
- Add troubleshooting section about avoiding package conflicts
with custom channels
susemanager-schema:
- Version 4.2.21-1
* fix check on allowVendorChange
* fix advisory status migration (bsc#1195765)
* FIX error when an image profile / store is deleted
during build / inspect action (bsc#1191597, bsc#1192150)
susemanager-sls:
- Version 4.2.21-1
* Improve `pkgset` beacon with using `salt.cache`
to notify about the changes made while the minion was stopped
* Align the code of pkgset beacon to prevent warnings (bsc#1194464)
* fixing how the return code is returned in mgrutil runner (bsc#1194909)
* Fix errors on calling sed -E ... by force_restart_minion
with action chains
* Avoid using lscpu -J option in grains (bsc#1195920)
* Postgres exporter package was renamed
* fix deprecation warnings
virtualization-formulas:
- Update to version 0.6.2
* Ensure qemu-ksm is installed on host
How to apply this update:
1. Log in as root user to the SUSE Manager server.
2. Stop the Spacewalk service:
`spacewalk-service stop`
3. Apply the patch using either zypper patch or YaST Online Update.
4. Start the Spacewalk service:
`spacewalk-service start`
Patchnames: SUSE-2022-1397,SUSE-SLE-Module-SUSE-Manager-Server-4.2-2022-1397
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.8 (Medium)
Affected products
Recommended
79 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Manager Server Module 4.2:c3p0-0.9.5.5-150300.4.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:grafana-formula-0.7.0-150300.3.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:mgr-push-4.2.5-150300.2.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:prometheus-exporters-formula-1.2.0-150300.3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:python3-mgr-osa-common-4.2.8-150300.2.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:python3-mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:python3-mgr-push-4.2.5-150300.2.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:python3-rhnlib-4.2.6-150300.4.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:python3-spacewalk-client-tools-4.2.18-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:python3-suseRegisterInfo-4.2.6-150300.4.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:saltboot-formula-0.1.1645440615.7f1328c-150300.3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacecmd-4.2.16-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-admin-4.2.10-150300.3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-base-4.2.26-150300.3.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.26-150300.3.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.26-150300.3.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-client-tools-4.2.18-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-config-4.2.6-150300.3.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-html-4.2.26-150300.3.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-java-4.2.34-150300.3.26.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.34-150300.3.26.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.34-150300.3.26.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.34-150300.3.26.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.34-150300.3.26.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:subscription-matcher-0.29-150300.6.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:supportutils-plugin-susemanager-4.2.4-150300.3.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:suseRegisterInfo-4.2.6-150300.4.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.22.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.22.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.22.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-schema-4.2.21-150300.3.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-sls-4.2.21-150300.3.20.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.21-150300.3.20.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:virtualization-formulas-0.6.2-150300.8.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
low
5.7 (Medium)
Affected products
Recommended
79 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Manager Server Module 4.2:c3p0-0.9.5.5-150300.4.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:grafana-formula-0.7.0-150300.3.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:mgr-push-4.2.5-150300.2.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:prometheus-exporters-formula-1.2.0-150300.3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:python3-mgr-osa-common-4.2.8-150300.2.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:python3-mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:python3-mgr-push-4.2.5-150300.2.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:python3-rhnlib-4.2.6-150300.4.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:python3-spacewalk-client-tools-4.2.18-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:python3-suseRegisterInfo-4.2.6-150300.4.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:saltboot-formula-0.1.1645440615.7f1328c-150300.3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacecmd-4.2.16-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-admin-4.2.10-150300.3.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.20-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-base-4.2.26-150300.3.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.26-150300.3.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.26-150300.3.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-client-tools-4.2.18-150300.4.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-config-4.2.6-150300.3.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-html-4.2.26-150300.3.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-java-4.2.34-150300.3.26.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.34-150300.3.26.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.34-150300.3.26.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.34-150300.3.26.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.34-150300.3.26.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:subscription-matcher-0.29-150300.6.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:supportutils-plugin-susemanager-4.2.4-150300.3.6.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:suseRegisterInfo-4.2.6-150300.4.9.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.22.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.22.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.22.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-schema-4.2.21-150300.3.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-sls-4.2.21-150300.3.20.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.21-150300.3.20.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Server Module 4.2:virtualization-formulas-0.6.2-150300.8.6.1.noarch | — |
Vendor Fix
|
Threats
Impact
low
References
43 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for SUSE Manager Server 4.2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update fixes the following issues:\n\nc3p0:\n\n- Update to version c3p0 0.9.5.5 and\n mchange-commons-java 0.2.19\n * Address CVE-2018-20433\n * Address CVE-2019-5427 - XML-config parsing related attacks (bsc#1133198)\n * Properly implement the JDBC 4.1 abort method\n\ngrafana-formula:\n\n- Version 0.7.0\n * Add SLES 15 SP4 and openSUSE Leap 15.4 to supported versions\n\nhub-xmlrpc-api:\n\n- Updated to build on Enterprise Linux 8.\n\ninter-server-sync:\n\n- Version 0.1.0\n * Allow export and import of configuration channels\n * Clean lookup cache after processing a channel (bsc#1195750)\n * Improve lookup method for generate foreign key export\n- Adapted for build on Enterprise Linux 8.\n\nmgr-osad:\n\n- Version 4.2.8-1\n * Fix the condition for preventing building python 2 subpackage for SLE15\n\nmgr-push:\n\n- Version 4.2.5-1\n * Fix the condition for preventing building python 2 subpackage for SLE15\n\npatterns-suse-manager:\n\n- golang-github-wrouesnel-postgres_exporter was renamed to prometheus-postgres_exporter\n\nprometheus-exporters-formula:\n\n- Version 1.2.0\n * Postres exporter package was renamed for RedHat\n- Version 1.1.0\n * Postgres exporter package was renamed for SLES/openSUSE\n\npy26-compat-msgpack-python:\n\n- Adapted to build on OBS for Enterprise Linux.\n\nrhnlib:\n\n- Version 4.2.6-1\n * Fix the condition for preventing building python 2 subpackage for SLE15\n\nsaltboot-formula:\n\n- Update to version 0.1.1645440615.7f1328c\n * skip device lookup for correctly provided devices\n * improve image url modifications - preparation for ftp/http changes \n- Skip device lookup if correct path to device is already provided (bsc#1195757)\n- Improve image url modifications\n\nsmdba:\n\n- Version 1.7.10\n * adapt pgtune using new defaults for new postgres versions\n * support special configuration for SSD storage\n * make argument \u0027--backup-dir\u0027 symlink aware \n- Version 1.7.9\n- Allow different standard configuration file location for other OSes\n\nspacecmd:\n\n- Version 4.2.16-1\n * implement system.bootstrap (bsc#1194909)\n * Fix interactive mode for \u0027system_applyerrata\u0027 and \u0027errata_apply\u0027 (bsc#1194363)\n\nspacewalk-admin:\n\n- Version 4.2.10-1\n * wait after copying the CA to give systemd time to finish automation\n\nspacewalk-backend:\n\n- Version 4.2.20-1\n * Fix reposync update notice formatting and date parsing (bsc#1194447)\n * implement more decompression algorithms for reposync (bsc#1196704)\n * enable check for client certificates in reposync\n * remove auto inherit of host entitlements for virtual guests\n\nspacewalk-branding:\n\n- Version 4.2.13-1\n * Fix modal footer misalignment\n\nspacewalk-certs-tools:\n\n- Version 4.2.15-1\n * Add dynamic version for bootstrap script header (bsc#1186336)\n\nspacewalk-client-tools:\n\n- Version 4.2.18-1\n * Fix the condition for preventing building python 2 subpackage for SLE15\n- Version 4.2.17-1\n * Update translation strings\n\nspacewalk-config:\n\n- Version 4.2.6-1\n * Upgrade build tooling, and corresponding cache configuration\n\nspacewalk-java:\n\n- Version 4.2.34-1\n * Added new XML-RPC mathod: configchannel.syncSaltFilesOnDisk\n * update last checkin only if job is successful (bsc#1197007)\n * Fix NPE when accessing cancelled action via system history (bsc#1195762)\n * CVE Audit: Show patch as available in the currently installed product even if successor\n patch affects additional packages (bsc#1196455)\n * send notifications for new or changed ubuntu errata (bsc#1196977)\n * change directory owner and permissions only when needed\n * Fixed broken help link for system overview\n * Provide link to Sync page when unsynced patches message show up (bsc#1196094)\n * fix class cast exception during action chains (bsc#1195772)\n * Finding empty profiles by mac address must be case insensitive (bsc#1196407)\n * prepare to use new postgresql-jdbc driver with stringprep and saslprep support (bsc#1196693)\n * allow SCC to display the last check-in time for registered systems\n * generate the system ssh key when bootstrapping a salt-ssh client (bsc#1194909)\n * Provide link for CVEs\n * Fix lock/unlock scheduling on page Software Packages Lock (bsc#1195271)\n * When adding a product, check if the new vendor channels conflicts\n with any of the existing custom channel (bsc#1193448)\n * Fix disappearing metadata key files after channel change (bsc#1192822)\n * Suggest Product Migration when patch for CVE is in a successor Product (bsc#1191360)\n * Add store info to Equals and hash methods to fix CVE audit process (bsc#1195282)\n * Fix virtualization list rendering for foreign systems (bsc#1195712)\n * FIX errors when an image profile / store is deleted during build / inspect action (bsc#1191597, bsc#1192150)\n * Remove verbose token log (bsc#1195666)\n * fix ClassCastException during action processing (bsc#1195043)\n\nspacewalk-web:\n\n- Version 4.2.26-1\n * Provide link to Sync page when unsynced patches message show up (bsc#1196094)\n * Provide a search box on section name for Formulas content\n * Add expand/collapse all button for formula sections\n * Improved large data support in channel selection\n * Provide link for CVEs\n * Improved error handling in the product setup page\n * Suggest Product Migration when patch for CVE is in a successor Product (bsc#1191360)\n * susemanager-web-libs is now packaged as a part of spacewalk-html\n\nsubscription-matcher:\n\n- Version 0.29\n * Migration to log4j 2 \n- Version 0.28\n * Support both antlr3-java and antlr3-runtime as dependencies\n * Make it obvious that log4j12 is used\n\nsupportutils-plugin-susemanager:\n\n- Version 4.2.4-1\n * Get version of bootstrap scripts for supportconfig (bsc#1186336)\n\nsuseRegisterInfo:\n\n- Version 4.2.6-1\n * Fix the condition for preventing building python 2 subpackage for SLE15\n\nsusemanager:\n\n- Version 4.2.28-1\n * set default for registration batch size\n\nsusemanager-doc-indexes:\n\n- Renamed golang-github-wrouesnel-postgres_exporter to\n prometheus-postgres_exporter in the Administration Guide\n- Clarified in Client Configuration Guide and Retail Guide that\n mandatory channels are automatically checked. Also recommended \n channels as long as they are not deactivated (bsc#1173527)\n- In Custom Channels chapter of the Administration Guide, provide\n information about creating metadata (bsc#1195294)\n- In the Client Configuration Guide, mark Yomi as unsupported on\n SUSE Linux Enterprise Server 11 and 12\n- Documented GPG encrypted Salt Pillars in the Salt book\n- In Client Configuration Guide, fixed channel configuration and\n registration of Expanded Support clients\n- Clarified channel label name in Registering Clients with RHUI\n section of the Client Configuration Guide (bsc#1196067)\n- In Throubleshooting Synchronization chapter in the Administration\n Guide added instructions for GPG removal\n- In Client Configuration Guide, integrated SUSE Linux Enterprise \n Micro Client documentation next to SUSE Linux Enterprise Client \n documentation and other related documentation improvements (bsc#1195145)\n- Added a warning about the origin of the salt-minion package in the\n Register on the Command Line (Salt) section of the Client\n Configuration Guide\n- Add troubleshooting section about avoiding package conflicts\n with custom channels\n\nsusemanager-docs_en:\n\n- Renamed golang-github-wrouesnel-postgres_exporter to \n prometheus-postgres_exporter in the Administration Guide\n- Clarified in Client Configuration Guide and Retail Guide that \n mandatory channels are automatically checked. Also recommended \n channels as long as they are not deactivated (bsc#1173527)\n- In Custom Channels chapter of the Administration Guide, provide\n information about creating metadata (bsc#1195294)\n- In the Client Configuration Guide, mark Yomi as unsupported on \n SUSE Linux Enterprise Server 11 and 12\n- Documented GPG encrypted Salt Pillars in the Salt book\n- In Client Configuration Guide, fixed channel configuration and \n registration of Expanded Support clients\n- Clarified channel label name in Registering Clients with RHUI \n section of the Client Configuration Guide (bsc#1196067)\n- In Throubleshooting Synchronization chapter in the Administration \n Guide added instructions for GPG removal\n- In Client Configuration Guide, integrated SUSE Linux Enterprise\n Micro Client documentation next to SUSE Linux Enterprise Client \n documentation and other related documentation improvements (bsc#1195145)\n- Added a warning about the origin of the salt-minion package in the\n Register on the Command Line (Salt) section of the Client \n Configuration Guide\n- Add troubleshooting section about avoiding package conflicts \n with custom channels\n\nsusemanager-schema:\n\n- Version 4.2.21-1\n * fix check on allowVendorChange\n * fix advisory status migration (bsc#1195765)\n * FIX error when an image profile / store is deleted\n during build / inspect action (bsc#1191597, bsc#1192150)\n\nsusemanager-sls:\n\n- Version 4.2.21-1\n * Improve `pkgset` beacon with using `salt.cache`\n to notify about the changes made while the minion was stopped\n * Align the code of pkgset beacon to prevent warnings (bsc#1194464)\n * fixing how the return code is returned in mgrutil runner (bsc#1194909)\n * Fix errors on calling sed -E ... by force_restart_minion\n with action chains\n * Avoid using lscpu -J option in grains (bsc#1195920)\n * Postgres exporter package was renamed\n * fix deprecation warnings\n\nvirtualization-formulas:\n\n- Update to version 0.6.2\n * Ensure qemu-ksm is installed on host\n\nHow to apply this update:\n\n1. Log in as root user to the SUSE Manager server.\n2. Stop the Spacewalk service:\n`spacewalk-service stop`\n3. Apply the patch using either zypper patch or YaST Online Update.\n4. Start the Spacewalk service:\n`spacewalk-service start`\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2022-1397,SUSE-SLE-Module-SUSE-Manager-Server-4.2-2022-1397",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_1397-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2022:1397-1",
"url": "https://www.suse.com/support/update/announcement/2022/suse-su-20221397-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2022:1397-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010819.html"
},
{
"category": "self",
"summary": "SUSE Bug 1133198",
"url": "https://bugzilla.suse.com/1133198"
},
{
"category": "self",
"summary": "SUSE Bug 1173527",
"url": "https://bugzilla.suse.com/1173527"
},
{
"category": "self",
"summary": "SUSE Bug 1186336",
"url": "https://bugzilla.suse.com/1186336"
},
{
"category": "self",
"summary": "SUSE Bug 1191360",
"url": "https://bugzilla.suse.com/1191360"
},
{
"category": "self",
"summary": "SUSE Bug 1191597",
"url": "https://bugzilla.suse.com/1191597"
},
{
"category": "self",
"summary": "SUSE Bug 1192150",
"url": "https://bugzilla.suse.com/1192150"
},
{
"category": "self",
"summary": "SUSE Bug 1192822",
"url": "https://bugzilla.suse.com/1192822"
},
{
"category": "self",
"summary": "SUSE Bug 1193448",
"url": "https://bugzilla.suse.com/1193448"
},
{
"category": "self",
"summary": "SUSE Bug 1194363",
"url": "https://bugzilla.suse.com/1194363"
},
{
"category": "self",
"summary": "SUSE Bug 1194447",
"url": "https://bugzilla.suse.com/1194447"
},
{
"category": "self",
"summary": "SUSE Bug 1194464",
"url": "https://bugzilla.suse.com/1194464"
},
{
"category": "self",
"summary": "SUSE Bug 1194909",
"url": "https://bugzilla.suse.com/1194909"
},
{
"category": "self",
"summary": "SUSE Bug 1195043",
"url": "https://bugzilla.suse.com/1195043"
},
{
"category": "self",
"summary": "SUSE Bug 1195145",
"url": "https://bugzilla.suse.com/1195145"
},
{
"category": "self",
"summary": "SUSE Bug 1195271",
"url": "https://bugzilla.suse.com/1195271"
},
{
"category": "self",
"summary": "SUSE Bug 1195282",
"url": "https://bugzilla.suse.com/1195282"
},
{
"category": "self",
"summary": "SUSE Bug 1195294",
"url": "https://bugzilla.suse.com/1195294"
},
{
"category": "self",
"summary": "SUSE Bug 1195666",
"url": "https://bugzilla.suse.com/1195666"
},
{
"category": "self",
"summary": "SUSE Bug 1195712",
"url": "https://bugzilla.suse.com/1195712"
},
{
"category": "self",
"summary": "SUSE Bug 1195750",
"url": "https://bugzilla.suse.com/1195750"
},
{
"category": "self",
"summary": "SUSE Bug 1195757",
"url": "https://bugzilla.suse.com/1195757"
},
{
"category": "self",
"summary": "SUSE Bug 1195762",
"url": "https://bugzilla.suse.com/1195762"
},
{
"category": "self",
"summary": "SUSE Bug 1195765",
"url": "https://bugzilla.suse.com/1195765"
},
{
"category": "self",
"summary": "SUSE Bug 1195772",
"url": "https://bugzilla.suse.com/1195772"
},
{
"category": "self",
"summary": "SUSE Bug 1195920",
"url": "https://bugzilla.suse.com/1195920"
},
{
"category": "self",
"summary": "SUSE Bug 1196067",
"url": "https://bugzilla.suse.com/1196067"
},
{
"category": "self",
"summary": "SUSE Bug 1196094",
"url": "https://bugzilla.suse.com/1196094"
},
{
"category": "self",
"summary": "SUSE Bug 1196407",
"url": "https://bugzilla.suse.com/1196407"
},
{
"category": "self",
"summary": "SUSE Bug 1196455",
"url": "https://bugzilla.suse.com/1196455"
},
{
"category": "self",
"summary": "SUSE Bug 1196693",
"url": "https://bugzilla.suse.com/1196693"
},
{
"category": "self",
"summary": "SUSE Bug 1196704",
"url": "https://bugzilla.suse.com/1196704"
},
{
"category": "self",
"summary": "SUSE Bug 1196977",
"url": "https://bugzilla.suse.com/1196977"
},
{
"category": "self",
"summary": "SUSE Bug 1197007",
"url": "https://bugzilla.suse.com/1197007"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-20433 page",
"url": "https://www.suse.com/security/cve/CVE-2018-20433/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-5427 page",
"url": "https://www.suse.com/security/cve/CVE-2019-5427/"
}
],
"title": "Security update for SUSE Manager Server 4.2",
"tracking": {
"current_release_date": "2022-04-25T14:43:53Z",
"generator": {
"date": "2022-04-25T14:43:53Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2022:1397-1",
"initial_release_date": "2022-04-25T14:43:53Z",
"revision_history": [
{
"date": "2022-04-25T14:43:53Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "hub-xmlrpc-api-0.7-150300.3.6.1.aarch64",
"product": {
"name": "hub-xmlrpc-api-0.7-150300.3.6.1.aarch64",
"product_id": "hub-xmlrpc-api-0.7-150300.3.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "inter-server-sync-0.1.0-150300.8.12.1.aarch64",
"product": {
"name": "inter-server-sync-0.1.0-150300.8.12.1.aarch64",
"product_id": "inter-server-sync-0.1.0-150300.8.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "patterns-suma_proxy-4.2-150300.4.9.1.aarch64",
"product": {
"name": "patterns-suma_proxy-4.2-150300.4.9.1.aarch64",
"product_id": "patterns-suma_proxy-4.2-150300.4.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "patterns-suma_retail-4.2-150300.4.9.1.aarch64",
"product": {
"name": "patterns-suma_retail-4.2-150300.4.9.1.aarch64",
"product_id": "patterns-suma_retail-4.2-150300.4.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "patterns-suma_server-4.2-150300.4.9.1.aarch64",
"product": {
"name": "patterns-suma_server-4.2-150300.4.9.1.aarch64",
"product_id": "patterns-suma_server-4.2-150300.4.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "py26-compat-msgpack-python-0.4.6-150300.4.3.1.aarch64",
"product": {
"name": "py26-compat-msgpack-python-0.4.6-150300.4.3.1.aarch64",
"product_id": "py26-compat-msgpack-python-0.4.6-150300.4.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "smdba-1.7.10-0.150300.3.3.1.aarch64",
"product": {
"name": "smdba-1.7.10-0.150300.3.3.1.aarch64",
"product_id": "smdba-1.7.10-0.150300.3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "spacewalk-branding-4.2.13-150300.3.9.1.aarch64",
"product": {
"name": "spacewalk-branding-4.2.13-150300.3.9.1.aarch64",
"product_id": "spacewalk-branding-4.2.13-150300.3.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "spacewalk-branding-devel-4.2.13-150300.3.9.1.aarch64",
"product": {
"name": "spacewalk-branding-devel-4.2.13-150300.3.9.1.aarch64",
"product_id": "spacewalk-branding-devel-4.2.13-150300.3.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "susemanager-4.2.28-150300.3.22.1.aarch64",
"product": {
"name": "susemanager-4.2.28-150300.3.22.1.aarch64",
"product_id": "susemanager-4.2.28-150300.3.22.1.aarch64"
}
},
{
"category": "product_version",
"name": "susemanager-nodejs-sdk-devel-4.2.18-150300.3.18.1.aarch64",
"product": {
"name": "susemanager-nodejs-sdk-devel-4.2.18-150300.3.18.1.aarch64",
"product_id": "susemanager-nodejs-sdk-devel-4.2.18-150300.3.18.1.aarch64"
}
},
{
"category": "product_version",
"name": "susemanager-tools-4.2.28-150300.3.22.1.aarch64",
"product": {
"name": "susemanager-tools-4.2.28-150300.3.22.1.aarch64",
"product_id": "susemanager-tools-4.2.28-150300.3.22.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "c3p0-0.9.5.5-150300.4.6.1.noarch",
"product": {
"name": "c3p0-0.9.5.5-150300.4.6.1.noarch",
"product_id": "c3p0-0.9.5.5-150300.4.6.1.noarch"
}
},
{
"category": "product_version",
"name": "containment-rpm-pxe-0.2.7-150300.3.3.1.noarch",
"product": {
"name": "containment-rpm-pxe-0.2.7-150300.3.3.1.noarch",
"product_id": "containment-rpm-pxe-0.2.7-150300.3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "grafana-formula-0.7.0-150300.3.6.1.noarch",
"product": {
"name": "grafana-formula-0.7.0-150300.3.6.1.noarch",
"product_id": "grafana-formula-0.7.0-150300.3.6.1.noarch"
}
},
{
"category": "product_version",
"name": "mgr-cfg-4.2.8-150300.2.9.1.noarch",
"product": {
"name": "mgr-cfg-4.2.8-150300.2.9.1.noarch",
"product_id": "mgr-cfg-4.2.8-150300.2.9.1.noarch"
}
},
{
"category": "product_version",
"name": "mgr-cfg-actions-4.2.8-150300.2.9.1.noarch",
"product": {
"name": "mgr-cfg-actions-4.2.8-150300.2.9.1.noarch",
"product_id": "mgr-cfg-actions-4.2.8-150300.2.9.1.noarch"
}
},
{
"category": "product_version",
"name": "mgr-cfg-client-4.2.8-150300.2.9.1.noarch",
"product": {
"name": "mgr-cfg-client-4.2.8-150300.2.9.1.noarch",
"product_id": "mgr-cfg-client-4.2.8-150300.2.9.1.noarch"
}
},
{
"category": "product_version",
"name": "mgr-cfg-management-4.2.8-150300.2.9.1.noarch",
"product": {
"name": "mgr-cfg-management-4.2.8-150300.2.9.1.noarch",
"product_id": "mgr-cfg-management-4.2.8-150300.2.9.1.noarch"
}
},
{
"category": "product_version",
"name": "mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch",
"product": {
"name": "mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch",
"product_id": "mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch"
}
},
{
"category": "product_version",
"name": "mgr-osad-4.2.8-150300.2.9.1.noarch",
"product": {
"name": "mgr-osad-4.2.8-150300.2.9.1.noarch",
"product_id": "mgr-osad-4.2.8-150300.2.9.1.noarch"
}
},
{
"category": "product_version",
"name": "mgr-push-4.2.5-150300.2.9.1.noarch",
"product": {
"name": "mgr-push-4.2.5-150300.2.9.1.noarch",
"product_id": "mgr-push-4.2.5-150300.2.9.1.noarch"
}
},
{
"category": "product_version",
"name": "prometheus-exporters-formula-1.2.0-150300.3.9.1.noarch",
"product": {
"name": "prometheus-exporters-formula-1.2.0-150300.3.9.1.noarch",
"product_id": "prometheus-exporters-formula-1.2.0-150300.3.9.1.noarch"
}
},
{
"category": "product_version",
"name": "python2-spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch",
"product": {
"name": "python2-spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch",
"product_id": "python2-spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-mgr-cfg-4.2.8-150300.2.9.1.noarch",
"product": {
"name": "python3-mgr-cfg-4.2.8-150300.2.9.1.noarch",
"product_id": "python3-mgr-cfg-4.2.8-150300.2.9.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-mgr-cfg-actions-4.2.8-150300.2.9.1.noarch",
"product": {
"name": "python3-mgr-cfg-actions-4.2.8-150300.2.9.1.noarch",
"product_id": "python3-mgr-cfg-actions-4.2.8-150300.2.9.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-mgr-cfg-client-4.2.8-150300.2.9.1.noarch",
"product": {
"name": "python3-mgr-cfg-client-4.2.8-150300.2.9.1.noarch",
"product_id": "python3-mgr-cfg-client-4.2.8-150300.2.9.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-mgr-cfg-management-4.2.8-150300.2.9.1.noarch",
"product": {
"name": "python3-mgr-cfg-management-4.2.8-150300.2.9.1.noarch",
"product_id": "python3-mgr-cfg-management-4.2.8-150300.2.9.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-mgr-osa-common-4.2.8-150300.2.9.1.noarch",
"product": {
"name": "python3-mgr-osa-common-4.2.8-150300.2.9.1.noarch",
"product_id": "python3-mgr-osa-common-4.2.8-150300.2.9.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch",
"product": {
"name": "python3-mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch",
"product_id": "python3-mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-mgr-osad-4.2.8-150300.2.9.1.noarch",
"product": {
"name": "python3-mgr-osad-4.2.8-150300.2.9.1.noarch",
"product_id": "python3-mgr-osad-4.2.8-150300.2.9.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-mgr-push-4.2.5-150300.2.9.1.noarch",
"product": {
"name": "python3-mgr-push-4.2.5-150300.2.9.1.noarch",
"product_id": "python3-mgr-push-4.2.5-150300.2.9.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-rhnlib-4.2.6-150300.4.9.1.noarch",
"product": {
"name": "python3-rhnlib-4.2.6-150300.4.9.1.noarch",
"product_id": "python3-rhnlib-4.2.6-150300.4.9.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch",
"product": {
"name": "python3-spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch",
"product_id": "python3-spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-spacewalk-check-4.2.18-150300.4.18.1.noarch",
"product": {
"name": "python3-spacewalk-check-4.2.18-150300.4.18.1.noarch",
"product_id": "python3-spacewalk-check-4.2.18-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-spacewalk-client-setup-4.2.18-150300.4.18.1.noarch",
"product": {
"name": "python3-spacewalk-client-setup-4.2.18-150300.4.18.1.noarch",
"product_id": "python3-spacewalk-client-setup-4.2.18-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-spacewalk-client-tools-4.2.18-150300.4.18.1.noarch",
"product": {
"name": "python3-spacewalk-client-tools-4.2.18-150300.4.18.1.noarch",
"product_id": "python3-spacewalk-client-tools-4.2.18-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-spacewalk-oscap-4.2.4-150300.4.9.1.noarch",
"product": {
"name": "python3-spacewalk-oscap-4.2.4-150300.4.9.1.noarch",
"product_id": "python3-spacewalk-oscap-4.2.4-150300.4.9.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-suseRegisterInfo-4.2.6-150300.4.9.1.noarch",
"product": {
"name": "python3-suseRegisterInfo-4.2.6-150300.4.9.1.noarch",
"product_id": "python3-suseRegisterInfo-4.2.6-150300.4.9.1.noarch"
}
},
{
"category": "product_version",
"name": "saltboot-formula-0.1.1645440615.7f1328c-150300.3.9.1.noarch",
"product": {
"name": "saltboot-formula-0.1.1645440615.7f1328c-150300.3.9.1.noarch",
"product_id": "saltboot-formula-0.1.1645440615.7f1328c-150300.3.9.1.noarch"
}
},
{
"category": "product_version",
"name": "spacecmd-4.2.16-150300.4.18.1.noarch",
"product": {
"name": "spacecmd-4.2.16-150300.4.18.1.noarch",
"product_id": "spacecmd-4.2.16-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-admin-4.2.10-150300.3.9.1.noarch",
"product": {
"name": "spacewalk-admin-4.2.10-150300.3.9.1.noarch",
"product_id": "spacewalk-admin-4.2.10-150300.3.9.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-4.2.20-150300.4.18.1.noarch",
"product": {
"name": "spacewalk-backend-4.2.20-150300.4.18.1.noarch",
"product_id": "spacewalk-backend-4.2.20-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-app-4.2.20-150300.4.18.1.noarch",
"product": {
"name": "spacewalk-backend-app-4.2.20-150300.4.18.1.noarch",
"product_id": "spacewalk-backend-app-4.2.20-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-applet-4.2.20-150300.4.18.1.noarch",
"product": {
"name": "spacewalk-backend-applet-4.2.20-150300.4.18.1.noarch",
"product_id": "spacewalk-backend-applet-4.2.20-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-cdn-4.2.20-150300.4.18.1.noarch",
"product": {
"name": "spacewalk-backend-cdn-4.2.20-150300.4.18.1.noarch",
"product_id": "spacewalk-backend-cdn-4.2.20-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-4.2.20-150300.4.18.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-4.2.20-150300.4.18.1.noarch",
"product_id": "spacewalk-backend-config-files-4.2.20-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-common-4.2.20-150300.4.18.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-common-4.2.20-150300.4.18.1.noarch",
"product_id": "spacewalk-backend-config-files-common-4.2.20-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-tool-4.2.20-150300.4.18.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-tool-4.2.20-150300.4.18.1.noarch",
"product_id": "spacewalk-backend-config-files-tool-4.2.20-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-4.2.20-150300.4.18.1.noarch",
"product": {
"name": "spacewalk-backend-iss-4.2.20-150300.4.18.1.noarch",
"product_id": "spacewalk-backend-iss-4.2.20-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-export-4.2.20-150300.4.18.1.noarch",
"product": {
"name": "spacewalk-backend-iss-export-4.2.20-150300.4.18.1.noarch",
"product_id": "spacewalk-backend-iss-export-4.2.20-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-package-push-server-4.2.20-150300.4.18.1.noarch",
"product": {
"name": "spacewalk-backend-package-push-server-4.2.20-150300.4.18.1.noarch",
"product_id": "spacewalk-backend-package-push-server-4.2.20-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-server-4.2.20-150300.4.18.1.noarch",
"product": {
"name": "spacewalk-backend-server-4.2.20-150300.4.18.1.noarch",
"product_id": "spacewalk-backend-server-4.2.20-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-4.2.20-150300.4.18.1.noarch",
"product": {
"name": "spacewalk-backend-sql-4.2.20-150300.4.18.1.noarch",
"product_id": "spacewalk-backend-sql-4.2.20-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-postgresql-4.2.20-150300.4.18.1.noarch",
"product": {
"name": "spacewalk-backend-sql-postgresql-4.2.20-150300.4.18.1.noarch",
"product_id": "spacewalk-backend-sql-postgresql-4.2.20-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-tools-4.2.20-150300.4.18.1.noarch",
"product": {
"name": "spacewalk-backend-tools-4.2.20-150300.4.18.1.noarch",
"product_id": "spacewalk-backend-tools-4.2.20-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xml-export-libs-4.2.20-150300.4.18.1.noarch",
"product": {
"name": "spacewalk-backend-xml-export-libs-4.2.20-150300.4.18.1.noarch",
"product_id": "spacewalk-backend-xml-export-libs-4.2.20-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xmlrpc-4.2.20-150300.4.18.1.noarch",
"product": {
"name": "spacewalk-backend-xmlrpc-4.2.20-150300.4.18.1.noarch",
"product_id": "spacewalk-backend-xmlrpc-4.2.20-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-4.2.26-150300.3.18.2.noarch",
"product": {
"name": "spacewalk-base-4.2.26-150300.3.18.2.noarch",
"product_id": "spacewalk-base-4.2.26-150300.3.18.2.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-minimal-4.2.26-150300.3.18.2.noarch",
"product": {
"name": "spacewalk-base-minimal-4.2.26-150300.3.18.2.noarch",
"product_id": "spacewalk-base-minimal-4.2.26-150300.3.18.2.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-minimal-config-4.2.26-150300.3.18.2.noarch",
"product": {
"name": "spacewalk-base-minimal-config-4.2.26-150300.3.18.2.noarch",
"product_id": "spacewalk-base-minimal-config-4.2.26-150300.3.18.2.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch",
"product": {
"name": "spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch",
"product_id": "spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-check-4.2.18-150300.4.18.1.noarch",
"product": {
"name": "spacewalk-check-4.2.18-150300.4.18.1.noarch",
"product_id": "spacewalk-check-4.2.18-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-client-setup-4.2.18-150300.4.18.1.noarch",
"product": {
"name": "spacewalk-client-setup-4.2.18-150300.4.18.1.noarch",
"product_id": "spacewalk-client-setup-4.2.18-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-client-tools-4.2.18-150300.4.18.1.noarch",
"product": {
"name": "spacewalk-client-tools-4.2.18-150300.4.18.1.noarch",
"product_id": "spacewalk-client-tools-4.2.18-150300.4.18.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-config-4.2.6-150300.3.6.1.noarch",
"product": {
"name": "spacewalk-config-4.2.6-150300.3.6.1.noarch",
"product_id": "spacewalk-config-4.2.6-150300.3.6.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-dobby-4.2.26-150300.3.18.2.noarch",
"product": {
"name": "spacewalk-dobby-4.2.26-150300.3.18.2.noarch",
"product_id": "spacewalk-dobby-4.2.26-150300.3.18.2.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-html-4.2.26-150300.3.18.2.noarch",
"product": {
"name": "spacewalk-html-4.2.26-150300.3.18.2.noarch",
"product_id": "spacewalk-html-4.2.26-150300.3.18.2.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-html-debug-4.2.26-150300.3.18.2.noarch",
"product": {
"name": "spacewalk-html-debug-4.2.26-150300.3.18.2.noarch",
"product_id": "spacewalk-html-debug-4.2.26-150300.3.18.2.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-4.2.34-150300.3.26.2.noarch",
"product": {
"name": "spacewalk-java-4.2.34-150300.3.26.2.noarch",
"product_id": "spacewalk-java-4.2.34-150300.3.26.2.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-apidoc-sources-4.2.34-150300.3.26.2.noarch",
"product": {
"name": "spacewalk-java-apidoc-sources-4.2.34-150300.3.26.2.noarch",
"product_id": "spacewalk-java-apidoc-sources-4.2.34-150300.3.26.2.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-config-4.2.34-150300.3.26.2.noarch",
"product": {
"name": "spacewalk-java-config-4.2.34-150300.3.26.2.noarch",
"product_id": "spacewalk-java-config-4.2.34-150300.3.26.2.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-lib-4.2.34-150300.3.26.2.noarch",
"product": {
"name": "spacewalk-java-lib-4.2.34-150300.3.26.2.noarch",
"product_id": "spacewalk-java-lib-4.2.34-150300.3.26.2.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-postgresql-4.2.34-150300.3.26.2.noarch",
"product": {
"name": "spacewalk-java-postgresql-4.2.34-150300.3.26.2.noarch",
"product_id": "spacewalk-java-postgresql-4.2.34-150300.3.26.2.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-oscap-4.2.4-150300.4.9.1.noarch",
"product": {
"name": "spacewalk-oscap-4.2.4-150300.4.9.1.noarch",
"product_id": "spacewalk-oscap-4.2.4-150300.4.9.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-broker-4.2.10-150300.3.15.1.noarch",
"product": {
"name": "spacewalk-proxy-broker-4.2.10-150300.3.15.1.noarch",
"product_id": "spacewalk-proxy-broker-4.2.10-150300.3.15.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-common-4.2.10-150300.3.15.1.noarch",
"product": {
"name": "spacewalk-proxy-common-4.2.10-150300.3.15.1.noarch",
"product_id": "spacewalk-proxy-common-4.2.10-150300.3.15.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-html-4.2.3-150300.3.3.1.noarch",
"product": {
"name": "spacewalk-proxy-html-4.2.3-150300.3.3.1.noarch",
"product_id": "spacewalk-proxy-html-4.2.3-150300.3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-management-4.2.10-150300.3.15.1.noarch",
"product": {
"name": "spacewalk-proxy-management-4.2.10-150300.3.15.1.noarch",
"product_id": "spacewalk-proxy-management-4.2.10-150300.3.15.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-package-manager-4.2.10-150300.3.15.1.noarch",
"product": {
"name": "spacewalk-proxy-package-manager-4.2.10-150300.3.15.1.noarch",
"product_id": "spacewalk-proxy-package-manager-4.2.10-150300.3.15.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-redirect-4.2.10-150300.3.15.1.noarch",
"product": {
"name": "spacewalk-proxy-redirect-4.2.10-150300.3.15.1.noarch",
"product_id": "spacewalk-proxy-redirect-4.2.10-150300.3.15.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-salt-4.2.10-150300.3.15.1.noarch",
"product": {
"name": "spacewalk-proxy-salt-4.2.10-150300.3.15.1.noarch",
"product_id": "spacewalk-proxy-salt-4.2.10-150300.3.15.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-taskomatic-4.2.34-150300.3.26.2.noarch",
"product": {
"name": "spacewalk-taskomatic-4.2.34-150300.3.26.2.noarch",
"product_id": "spacewalk-taskomatic-4.2.34-150300.3.26.2.noarch"
}
},
{
"category": "product_version",
"name": "subscription-matcher-0.29-150300.6.6.1.noarch",
"product": {
"name": "subscription-matcher-0.29-150300.6.6.1.noarch",
"product_id": "subscription-matcher-0.29-150300.6.6.1.noarch"
}
},
{
"category": "product_version",
"name": "subscription-matcher-kit-34e778ace4c89badcb2418c2570c0715799dc8c7-150300.3.6.1.noarch",
"product": {
"name": "subscription-matcher-kit-34e778ace4c89badcb2418c2570c0715799dc8c7-150300.3.6.1.noarch",
"product_id": "subscription-matcher-kit-34e778ace4c89badcb2418c2570c0715799dc8c7-150300.3.6.1.noarch"
}
},
{
"category": "product_version",
"name": "supportutils-plugin-susemanager-4.2.4-150300.3.6.1.noarch",
"product": {
"name": "supportutils-plugin-susemanager-4.2.4-150300.3.6.1.noarch",
"product_id": "supportutils-plugin-susemanager-4.2.4-150300.3.6.1.noarch"
}
},
{
"category": "product_version",
"name": "suseRegisterInfo-4.2.6-150300.4.9.1.noarch",
"product": {
"name": "suseRegisterInfo-4.2.6-150300.4.9.1.noarch",
"product_id": "suseRegisterInfo-4.2.6-150300.4.9.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-doc-indexes-4.2-150300.12.22.1.noarch",
"product": {
"name": "susemanager-doc-indexes-4.2-150300.12.22.1.noarch",
"product_id": "susemanager-doc-indexes-4.2-150300.12.22.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-docs_en-4.2-150300.12.22.1.noarch",
"product": {
"name": "susemanager-docs_en-4.2-150300.12.22.1.noarch",
"product_id": "susemanager-docs_en-4.2-150300.12.22.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-docs_en-pdf-4.2-150300.12.22.1.noarch",
"product": {
"name": "susemanager-docs_en-pdf-4.2-150300.12.22.1.noarch",
"product_id": "susemanager-docs_en-pdf-4.2-150300.12.22.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-schema-4.2.21-150300.3.18.1.noarch",
"product": {
"name": "susemanager-schema-4.2.21-150300.3.18.1.noarch",
"product_id": "susemanager-schema-4.2.21-150300.3.18.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-schema-sanity-4.2.21-150300.3.18.1.noarch",
"product": {
"name": "susemanager-schema-sanity-4.2.21-150300.3.18.1.noarch",
"product_id": "susemanager-schema-sanity-4.2.21-150300.3.18.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-sls-4.2.21-150300.3.20.1.noarch",
"product": {
"name": "susemanager-sls-4.2.21-150300.3.20.1.noarch",
"product_id": "susemanager-sls-4.2.21-150300.3.20.1.noarch"
}
},
{
"category": "product_version",
"name": "uyuni-config-modules-4.2.21-150300.3.20.1.noarch",
"product": {
"name": "uyuni-config-modules-4.2.21-150300.3.20.1.noarch",
"product_id": "uyuni-config-modules-4.2.21-150300.3.20.1.noarch"
}
},
{
"category": "product_version",
"name": "virtualization-formulas-0.6.2-150300.8.6.1.noarch",
"product": {
"name": "virtualization-formulas-0.6.2-150300.8.6.1.noarch",
"product_id": "virtualization-formulas-0.6.2-150300.8.6.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "hub-xmlrpc-api-0.7-150300.3.6.1.ppc64le",
"product": {
"name": "hub-xmlrpc-api-0.7-150300.3.6.1.ppc64le",
"product_id": "hub-xmlrpc-api-0.7-150300.3.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "inter-server-sync-0.1.0-150300.8.12.1.ppc64le",
"product": {
"name": "inter-server-sync-0.1.0-150300.8.12.1.ppc64le",
"product_id": "inter-server-sync-0.1.0-150300.8.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "patterns-suma_proxy-4.2-150300.4.9.1.ppc64le",
"product": {
"name": "patterns-suma_proxy-4.2-150300.4.9.1.ppc64le",
"product_id": "patterns-suma_proxy-4.2-150300.4.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "patterns-suma_retail-4.2-150300.4.9.1.ppc64le",
"product": {
"name": "patterns-suma_retail-4.2-150300.4.9.1.ppc64le",
"product_id": "patterns-suma_retail-4.2-150300.4.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "patterns-suma_server-4.2-150300.4.9.1.ppc64le",
"product": {
"name": "patterns-suma_server-4.2-150300.4.9.1.ppc64le",
"product_id": "patterns-suma_server-4.2-150300.4.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "py26-compat-msgpack-python-0.4.6-150300.4.3.1.ppc64le",
"product": {
"name": "py26-compat-msgpack-python-0.4.6-150300.4.3.1.ppc64le",
"product_id": "py26-compat-msgpack-python-0.4.6-150300.4.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "smdba-1.7.10-0.150300.3.3.1.ppc64le",
"product": {
"name": "smdba-1.7.10-0.150300.3.3.1.ppc64le",
"product_id": "smdba-1.7.10-0.150300.3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "spacewalk-branding-4.2.13-150300.3.9.1.ppc64le",
"product": {
"name": "spacewalk-branding-4.2.13-150300.3.9.1.ppc64le",
"product_id": "spacewalk-branding-4.2.13-150300.3.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "spacewalk-branding-devel-4.2.13-150300.3.9.1.ppc64le",
"product": {
"name": "spacewalk-branding-devel-4.2.13-150300.3.9.1.ppc64le",
"product_id": "spacewalk-branding-devel-4.2.13-150300.3.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "susemanager-4.2.28-150300.3.22.1.ppc64le",
"product": {
"name": "susemanager-4.2.28-150300.3.22.1.ppc64le",
"product_id": "susemanager-4.2.28-150300.3.22.1.ppc64le"
}
},
{
"category": "product_version",
"name": "susemanager-nodejs-sdk-devel-4.2.18-150300.3.18.1.ppc64le",
"product": {
"name": "susemanager-nodejs-sdk-devel-4.2.18-150300.3.18.1.ppc64le",
"product_id": "susemanager-nodejs-sdk-devel-4.2.18-150300.3.18.1.ppc64le"
}
},
{
"category": "product_version",
"name": "susemanager-tools-4.2.28-150300.3.22.1.ppc64le",
"product": {
"name": "susemanager-tools-4.2.28-150300.3.22.1.ppc64le",
"product_id": "susemanager-tools-4.2.28-150300.3.22.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "hub-xmlrpc-api-0.7-150300.3.6.1.s390x",
"product": {
"name": "hub-xmlrpc-api-0.7-150300.3.6.1.s390x",
"product_id": "hub-xmlrpc-api-0.7-150300.3.6.1.s390x"
}
},
{
"category": "product_version",
"name": "inter-server-sync-0.1.0-150300.8.12.1.s390x",
"product": {
"name": "inter-server-sync-0.1.0-150300.8.12.1.s390x",
"product_id": "inter-server-sync-0.1.0-150300.8.12.1.s390x"
}
},
{
"category": "product_version",
"name": "patterns-suma_proxy-4.2-150300.4.9.1.s390x",
"product": {
"name": "patterns-suma_proxy-4.2-150300.4.9.1.s390x",
"product_id": "patterns-suma_proxy-4.2-150300.4.9.1.s390x"
}
},
{
"category": "product_version",
"name": "patterns-suma_retail-4.2-150300.4.9.1.s390x",
"product": {
"name": "patterns-suma_retail-4.2-150300.4.9.1.s390x",
"product_id": "patterns-suma_retail-4.2-150300.4.9.1.s390x"
}
},
{
"category": "product_version",
"name": "patterns-suma_server-4.2-150300.4.9.1.s390x",
"product": {
"name": "patterns-suma_server-4.2-150300.4.9.1.s390x",
"product_id": "patterns-suma_server-4.2-150300.4.9.1.s390x"
}
},
{
"category": "product_version",
"name": "py26-compat-msgpack-python-0.4.6-150300.4.3.1.s390x",
"product": {
"name": "py26-compat-msgpack-python-0.4.6-150300.4.3.1.s390x",
"product_id": "py26-compat-msgpack-python-0.4.6-150300.4.3.1.s390x"
}
},
{
"category": "product_version",
"name": "smdba-1.7.10-0.150300.3.3.1.s390x",
"product": {
"name": "smdba-1.7.10-0.150300.3.3.1.s390x",
"product_id": "smdba-1.7.10-0.150300.3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "spacewalk-branding-4.2.13-150300.3.9.1.s390x",
"product": {
"name": "spacewalk-branding-4.2.13-150300.3.9.1.s390x",
"product_id": "spacewalk-branding-4.2.13-150300.3.9.1.s390x"
}
},
{
"category": "product_version",
"name": "spacewalk-branding-devel-4.2.13-150300.3.9.1.s390x",
"product": {
"name": "spacewalk-branding-devel-4.2.13-150300.3.9.1.s390x",
"product_id": "spacewalk-branding-devel-4.2.13-150300.3.9.1.s390x"
}
},
{
"category": "product_version",
"name": "susemanager-4.2.28-150300.3.22.1.s390x",
"product": {
"name": "susemanager-4.2.28-150300.3.22.1.s390x",
"product_id": "susemanager-4.2.28-150300.3.22.1.s390x"
}
},
{
"category": "product_version",
"name": "susemanager-nodejs-sdk-devel-4.2.18-150300.3.18.1.s390x",
"product": {
"name": "susemanager-nodejs-sdk-devel-4.2.18-150300.3.18.1.s390x",
"product_id": "susemanager-nodejs-sdk-devel-4.2.18-150300.3.18.1.s390x"
}
},
{
"category": "product_version",
"name": "susemanager-tools-4.2.28-150300.3.22.1.s390x",
"product": {
"name": "susemanager-tools-4.2.28-150300.3.22.1.s390x",
"product_id": "susemanager-tools-4.2.28-150300.3.22.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "hub-xmlrpc-api-0.7-150300.3.6.1.x86_64",
"product": {
"name": "hub-xmlrpc-api-0.7-150300.3.6.1.x86_64",
"product_id": "hub-xmlrpc-api-0.7-150300.3.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "inter-server-sync-0.1.0-150300.8.12.1.x86_64",
"product": {
"name": "inter-server-sync-0.1.0-150300.8.12.1.x86_64",
"product_id": "inter-server-sync-0.1.0-150300.8.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "patterns-suma_proxy-4.2-150300.4.9.1.x86_64",
"product": {
"name": "patterns-suma_proxy-4.2-150300.4.9.1.x86_64",
"product_id": "patterns-suma_proxy-4.2-150300.4.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "patterns-suma_retail-4.2-150300.4.9.1.x86_64",
"product": {
"name": "patterns-suma_retail-4.2-150300.4.9.1.x86_64",
"product_id": "patterns-suma_retail-4.2-150300.4.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "patterns-suma_server-4.2-150300.4.9.1.x86_64",
"product": {
"name": "patterns-suma_server-4.2-150300.4.9.1.x86_64",
"product_id": "patterns-suma_server-4.2-150300.4.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "py26-compat-msgpack-python-0.4.6-150300.4.3.1.x86_64",
"product": {
"name": "py26-compat-msgpack-python-0.4.6-150300.4.3.1.x86_64",
"product_id": "py26-compat-msgpack-python-0.4.6-150300.4.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "smdba-1.7.10-0.150300.3.3.1.x86_64",
"product": {
"name": "smdba-1.7.10-0.150300.3.3.1.x86_64",
"product_id": "smdba-1.7.10-0.150300.3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "spacewalk-branding-4.2.13-150300.3.9.1.x86_64",
"product": {
"name": "spacewalk-branding-4.2.13-150300.3.9.1.x86_64",
"product_id": "spacewalk-branding-4.2.13-150300.3.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "spacewalk-branding-devel-4.2.13-150300.3.9.1.x86_64",
"product": {
"name": "spacewalk-branding-devel-4.2.13-150300.3.9.1.x86_64",
"product_id": "spacewalk-branding-devel-4.2.13-150300.3.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "susemanager-4.2.28-150300.3.22.1.x86_64",
"product": {
"name": "susemanager-4.2.28-150300.3.22.1.x86_64",
"product_id": "susemanager-4.2.28-150300.3.22.1.x86_64"
}
},
{
"category": "product_version",
"name": "susemanager-nodejs-sdk-devel-4.2.18-150300.3.18.1.x86_64",
"product": {
"name": "susemanager-nodejs-sdk-devel-4.2.18-150300.3.18.1.x86_64",
"product_id": "susemanager-nodejs-sdk-devel-4.2.18-150300.3.18.1.x86_64"
}
},
{
"category": "product_version",
"name": "susemanager-tools-4.2.28-150300.3.22.1.x86_64",
"product": {
"name": "susemanager-tools-4.2.28-150300.3.22.1.x86_64",
"product_id": "susemanager-tools-4.2.28-150300.3.22.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Manager Server Module 4.2",
"product": {
"name": "SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-suse-manager-server:4.2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "c3p0-0.9.5.5-150300.4.6.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:c3p0-0.9.5.5-150300.4.6.1.noarch"
},
"product_reference": "c3p0-0.9.5.5-150300.4.6.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-formula-0.7.0-150300.3.6.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:grafana-formula-0.7.0-150300.3.6.1.noarch"
},
"product_reference": "grafana-formula-0.7.0-150300.3.6.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hub-xmlrpc-api-0.7-150300.3.6.1.ppc64le as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.ppc64le"
},
"product_reference": "hub-xmlrpc-api-0.7-150300.3.6.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hub-xmlrpc-api-0.7-150300.3.6.1.s390x as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.s390x"
},
"product_reference": "hub-xmlrpc-api-0.7-150300.3.6.1.s390x",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hub-xmlrpc-api-0.7-150300.3.6.1.x86_64 as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.x86_64"
},
"product_reference": "hub-xmlrpc-api-0.7-150300.3.6.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "inter-server-sync-0.1.0-150300.8.12.1.ppc64le as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.ppc64le"
},
"product_reference": "inter-server-sync-0.1.0-150300.8.12.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "inter-server-sync-0.1.0-150300.8.12.1.s390x as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.s390x"
},
"product_reference": "inter-server-sync-0.1.0-150300.8.12.1.s390x",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "inter-server-sync-0.1.0-150300.8.12.1.x86_64 as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.x86_64"
},
"product_reference": "inter-server-sync-0.1.0-150300.8.12.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch"
},
"product_reference": "mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-push-4.2.5-150300.2.9.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:mgr-push-4.2.5-150300.2.9.1.noarch"
},
"product_reference": "mgr-push-4.2.5-150300.2.9.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "patterns-suma_retail-4.2-150300.4.9.1.ppc64le as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.ppc64le"
},
"product_reference": "patterns-suma_retail-4.2-150300.4.9.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "patterns-suma_retail-4.2-150300.4.9.1.s390x as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.s390x"
},
"product_reference": "patterns-suma_retail-4.2-150300.4.9.1.s390x",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "patterns-suma_retail-4.2-150300.4.9.1.x86_64 as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.x86_64"
},
"product_reference": "patterns-suma_retail-4.2-150300.4.9.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "patterns-suma_server-4.2-150300.4.9.1.ppc64le as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.ppc64le"
},
"product_reference": "patterns-suma_server-4.2-150300.4.9.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "patterns-suma_server-4.2-150300.4.9.1.s390x as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.s390x"
},
"product_reference": "patterns-suma_server-4.2-150300.4.9.1.s390x",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "patterns-suma_server-4.2-150300.4.9.1.x86_64 as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.x86_64"
},
"product_reference": "patterns-suma_server-4.2-150300.4.9.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-exporters-formula-1.2.0-150300.3.9.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:prometheus-exporters-formula-1.2.0-150300.3.9.1.noarch"
},
"product_reference": "prometheus-exporters-formula-1.2.0-150300.3.9.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "py26-compat-msgpack-python-0.4.6-150300.4.3.1.ppc64le as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.ppc64le"
},
"product_reference": "py26-compat-msgpack-python-0.4.6-150300.4.3.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "py26-compat-msgpack-python-0.4.6-150300.4.3.1.s390x as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.s390x"
},
"product_reference": "py26-compat-msgpack-python-0.4.6-150300.4.3.1.s390x",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "py26-compat-msgpack-python-0.4.6-150300.4.3.1.x86_64 as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.x86_64"
},
"product_reference": "py26-compat-msgpack-python-0.4.6-150300.4.3.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-mgr-osa-common-4.2.8-150300.2.9.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:python3-mgr-osa-common-4.2.8-150300.2.9.1.noarch"
},
"product_reference": "python3-mgr-osa-common-4.2.8-150300.2.9.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:python3-mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch"
},
"product_reference": "python3-mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-mgr-push-4.2.5-150300.2.9.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:python3-mgr-push-4.2.5-150300.2.9.1.noarch"
},
"product_reference": "python3-mgr-push-4.2.5-150300.2.9.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-rhnlib-4.2.6-150300.4.9.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:python3-rhnlib-4.2.6-150300.4.9.1.noarch"
},
"product_reference": "python3-rhnlib-4.2.6-150300.4.9.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch"
},
"product_reference": "python3-spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-spacewalk-client-tools-4.2.18-150300.4.18.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:python3-spacewalk-client-tools-4.2.18-150300.4.18.1.noarch"
},
"product_reference": "python3-spacewalk-client-tools-4.2.18-150300.4.18.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-suseRegisterInfo-4.2.6-150300.4.9.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:python3-suseRegisterInfo-4.2.6-150300.4.9.1.noarch"
},
"product_reference": "python3-suseRegisterInfo-4.2.6-150300.4.9.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "saltboot-formula-0.1.1645440615.7f1328c-150300.3.9.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:saltboot-formula-0.1.1645440615.7f1328c-150300.3.9.1.noarch"
},
"product_reference": "saltboot-formula-0.1.1645440615.7f1328c-150300.3.9.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "smdba-1.7.10-0.150300.3.3.1.ppc64le as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.ppc64le"
},
"product_reference": "smdba-1.7.10-0.150300.3.3.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "smdba-1.7.10-0.150300.3.3.1.s390x as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.s390x"
},
"product_reference": "smdba-1.7.10-0.150300.3.3.1.s390x",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "smdba-1.7.10-0.150300.3.3.1.x86_64 as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.x86_64"
},
"product_reference": "smdba-1.7.10-0.150300.3.3.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-4.2.16-150300.4.18.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacecmd-4.2.16-150300.4.18.1.noarch"
},
"product_reference": "spacecmd-4.2.16-150300.4.18.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-admin-4.2.10-150300.3.9.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-admin-4.2.10-150300.3.9.1.noarch"
},
"product_reference": "spacewalk-admin-4.2.10-150300.3.9.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-4.2.20-150300.4.18.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-4.2.20-150300.4.18.1.noarch"
},
"product_reference": "spacewalk-backend-4.2.20-150300.4.18.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-app-4.2.20-150300.4.18.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.20-150300.4.18.1.noarch"
},
"product_reference": "spacewalk-backend-app-4.2.20-150300.4.18.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-applet-4.2.20-150300.4.18.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.20-150300.4.18.1.noarch"
},
"product_reference": "spacewalk-backend-applet-4.2.20-150300.4.18.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-4.2.20-150300.4.18.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.20-150300.4.18.1.noarch"
},
"product_reference": "spacewalk-backend-config-files-4.2.20-150300.4.18.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-common-4.2.20-150300.4.18.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.20-150300.4.18.1.noarch"
},
"product_reference": "spacewalk-backend-config-files-common-4.2.20-150300.4.18.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-tool-4.2.20-150300.4.18.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.20-150300.4.18.1.noarch"
},
"product_reference": "spacewalk-backend-config-files-tool-4.2.20-150300.4.18.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-4.2.20-150300.4.18.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.20-150300.4.18.1.noarch"
},
"product_reference": "spacewalk-backend-iss-4.2.20-150300.4.18.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-export-4.2.20-150300.4.18.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.20-150300.4.18.1.noarch"
},
"product_reference": "spacewalk-backend-iss-export-4.2.20-150300.4.18.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-package-push-server-4.2.20-150300.4.18.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.20-150300.4.18.1.noarch"
},
"product_reference": "spacewalk-backend-package-push-server-4.2.20-150300.4.18.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-server-4.2.20-150300.4.18.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.20-150300.4.18.1.noarch"
},
"product_reference": "spacewalk-backend-server-4.2.20-150300.4.18.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-4.2.20-150300.4.18.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.20-150300.4.18.1.noarch"
},
"product_reference": "spacewalk-backend-sql-4.2.20-150300.4.18.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-postgresql-4.2.20-150300.4.18.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.20-150300.4.18.1.noarch"
},
"product_reference": "spacewalk-backend-sql-postgresql-4.2.20-150300.4.18.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-tools-4.2.20-150300.4.18.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.20-150300.4.18.1.noarch"
},
"product_reference": "spacewalk-backend-tools-4.2.20-150300.4.18.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xml-export-libs-4.2.20-150300.4.18.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.20-150300.4.18.1.noarch"
},
"product_reference": "spacewalk-backend-xml-export-libs-4.2.20-150300.4.18.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xmlrpc-4.2.20-150300.4.18.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.20-150300.4.18.1.noarch"
},
"product_reference": "spacewalk-backend-xmlrpc-4.2.20-150300.4.18.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-4.2.26-150300.3.18.2.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-base-4.2.26-150300.3.18.2.noarch"
},
"product_reference": "spacewalk-base-4.2.26-150300.3.18.2.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-4.2.26-150300.3.18.2.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.26-150300.3.18.2.noarch"
},
"product_reference": "spacewalk-base-minimal-4.2.26-150300.3.18.2.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-config-4.2.26-150300.3.18.2.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.26-150300.3.18.2.noarch"
},
"product_reference": "spacewalk-base-minimal-config-4.2.26-150300.3.18.2.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-branding-4.2.13-150300.3.9.1.ppc64le as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.ppc64le"
},
"product_reference": "spacewalk-branding-4.2.13-150300.3.9.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-branding-4.2.13-150300.3.9.1.s390x as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.s390x"
},
"product_reference": "spacewalk-branding-4.2.13-150300.3.9.1.s390x",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-branding-4.2.13-150300.3.9.1.x86_64 as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.x86_64"
},
"product_reference": "spacewalk-branding-4.2.13-150300.3.9.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch"
},
"product_reference": "spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-client-tools-4.2.18-150300.4.18.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-client-tools-4.2.18-150300.4.18.1.noarch"
},
"product_reference": "spacewalk-client-tools-4.2.18-150300.4.18.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-config-4.2.6-150300.3.6.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-config-4.2.6-150300.3.6.1.noarch"
},
"product_reference": "spacewalk-config-4.2.6-150300.3.6.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-html-4.2.26-150300.3.18.2.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-html-4.2.26-150300.3.18.2.noarch"
},
"product_reference": "spacewalk-html-4.2.26-150300.3.18.2.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-4.2.34-150300.3.26.2.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-java-4.2.34-150300.3.26.2.noarch"
},
"product_reference": "spacewalk-java-4.2.34-150300.3.26.2.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-config-4.2.34-150300.3.26.2.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.34-150300.3.26.2.noarch"
},
"product_reference": "spacewalk-java-config-4.2.34-150300.3.26.2.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-lib-4.2.34-150300.3.26.2.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.34-150300.3.26.2.noarch"
},
"product_reference": "spacewalk-java-lib-4.2.34-150300.3.26.2.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-postgresql-4.2.34-150300.3.26.2.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.34-150300.3.26.2.noarch"
},
"product_reference": "spacewalk-java-postgresql-4.2.34-150300.3.26.2.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-taskomatic-4.2.34-150300.3.26.2.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.34-150300.3.26.2.noarch"
},
"product_reference": "spacewalk-taskomatic-4.2.34-150300.3.26.2.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subscription-matcher-0.29-150300.6.6.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:subscription-matcher-0.29-150300.6.6.1.noarch"
},
"product_reference": "subscription-matcher-0.29-150300.6.6.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "supportutils-plugin-susemanager-4.2.4-150300.3.6.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:supportutils-plugin-susemanager-4.2.4-150300.3.6.1.noarch"
},
"product_reference": "supportutils-plugin-susemanager-4.2.4-150300.3.6.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "suseRegisterInfo-4.2.6-150300.4.9.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:suseRegisterInfo-4.2.6-150300.4.9.1.noarch"
},
"product_reference": "suseRegisterInfo-4.2.6-150300.4.9.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-4.2.28-150300.3.22.1.ppc64le as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.ppc64le"
},
"product_reference": "susemanager-4.2.28-150300.3.22.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-4.2.28-150300.3.22.1.s390x as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.s390x"
},
"product_reference": "susemanager-4.2.28-150300.3.22.1.s390x",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-4.2.28-150300.3.22.1.x86_64 as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.x86_64"
},
"product_reference": "susemanager-4.2.28-150300.3.22.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-doc-indexes-4.2-150300.12.22.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.22.1.noarch"
},
"product_reference": "susemanager-doc-indexes-4.2-150300.12.22.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-docs_en-4.2-150300.12.22.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.22.1.noarch"
},
"product_reference": "susemanager-docs_en-4.2-150300.12.22.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-docs_en-pdf-4.2-150300.12.22.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.22.1.noarch"
},
"product_reference": "susemanager-docs_en-pdf-4.2-150300.12.22.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-schema-4.2.21-150300.3.18.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:susemanager-schema-4.2.21-150300.3.18.1.noarch"
},
"product_reference": "susemanager-schema-4.2.21-150300.3.18.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-sls-4.2.21-150300.3.20.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:susemanager-sls-4.2.21-150300.3.20.1.noarch"
},
"product_reference": "susemanager-sls-4.2.21-150300.3.20.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-tools-4.2.28-150300.3.22.1.ppc64le as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.ppc64le"
},
"product_reference": "susemanager-tools-4.2.28-150300.3.22.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-tools-4.2.28-150300.3.22.1.s390x as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.s390x"
},
"product_reference": "susemanager-tools-4.2.28-150300.3.22.1.s390x",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-tools-4.2.28-150300.3.22.1.x86_64 as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.x86_64"
},
"product_reference": "susemanager-tools-4.2.28-150300.3.22.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "uyuni-config-modules-4.2.21-150300.3.20.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.21-150300.3.20.1.noarch"
},
"product_reference": "uyuni-config-modules-4.2.21-150300.3.20.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "virtualization-formulas-0.6.2-150300.8.6.1.noarch as component of SUSE Manager Server Module 4.2",
"product_id": "SUSE Manager Server Module 4.2:virtualization-formulas-0.6.2-150300.8.6.1.noarch"
},
"product_reference": "virtualization-formulas-0.6.2-150300.8.6.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-20433",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-20433"
}
],
"notes": [
{
"category": "general",
"text": "c3p0 0.9.5.2 allows XXE in extractXmlConfigFromInputStream in com/mchange/v2/c3p0/cfg/C3P0ConfigXmlUtils.java during initialization.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Manager Server Module 4.2:c3p0-0.9.5.5-150300.4.6.1.noarch",
"SUSE Manager Server Module 4.2:grafana-formula-0.7.0-150300.3.6.1.noarch",
"SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.ppc64le",
"SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.s390x",
"SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.x86_64",
"SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.ppc64le",
"SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.s390x",
"SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.x86_64",
"SUSE Manager Server Module 4.2:mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:mgr-push-4.2.5-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.ppc64le",
"SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.s390x",
"SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.x86_64",
"SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.ppc64le",
"SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.s390x",
"SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.x86_64",
"SUSE Manager Server Module 4.2:prometheus-exporters-formula-1.2.0-150300.3.9.1.noarch",
"SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.ppc64le",
"SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.s390x",
"SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.x86_64",
"SUSE Manager Server Module 4.2:python3-mgr-osa-common-4.2.8-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-mgr-push-4.2.5-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-rhnlib-4.2.6-150300.4.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch",
"SUSE Manager Server Module 4.2:python3-spacewalk-client-tools-4.2.18-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:python3-suseRegisterInfo-4.2.6-150300.4.9.1.noarch",
"SUSE Manager Server Module 4.2:saltboot-formula-0.1.1645440615.7f1328c-150300.3.9.1.noarch",
"SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.ppc64le",
"SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.s390x",
"SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.x86_64",
"SUSE Manager Server Module 4.2:spacecmd-4.2.16-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-admin-4.2.10-150300.3.9.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-base-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.ppc64le",
"SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.s390x",
"SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.x86_64",
"SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-client-tools-4.2.18-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-config-4.2.6-150300.3.6.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-html-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:subscription-matcher-0.29-150300.6.6.1.noarch",
"SUSE Manager Server Module 4.2:supportutils-plugin-susemanager-4.2.4-150300.3.6.1.noarch",
"SUSE Manager Server Module 4.2:suseRegisterInfo-4.2.6-150300.4.9.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.ppc64le",
"SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.s390x",
"SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.x86_64",
"SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.22.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.22.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.22.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-schema-4.2.21-150300.3.18.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-sls-4.2.21-150300.3.20.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.ppc64le",
"SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.s390x",
"SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.x86_64",
"SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.21-150300.3.20.1.noarch",
"SUSE Manager Server Module 4.2:virtualization-formulas-0.6.2-150300.8.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-20433",
"url": "https://www.suse.com/security/cve/CVE-2018-20433"
},
{
"category": "external",
"summary": "SUSE Bug 1120648 for CVE-2018-20433",
"url": "https://bugzilla.suse.com/1120648"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Manager Server Module 4.2:c3p0-0.9.5.5-150300.4.6.1.noarch",
"SUSE Manager Server Module 4.2:grafana-formula-0.7.0-150300.3.6.1.noarch",
"SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.ppc64le",
"SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.s390x",
"SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.x86_64",
"SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.ppc64le",
"SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.s390x",
"SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.x86_64",
"SUSE Manager Server Module 4.2:mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:mgr-push-4.2.5-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.ppc64le",
"SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.s390x",
"SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.x86_64",
"SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.ppc64le",
"SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.s390x",
"SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.x86_64",
"SUSE Manager Server Module 4.2:prometheus-exporters-formula-1.2.0-150300.3.9.1.noarch",
"SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.ppc64le",
"SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.s390x",
"SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.x86_64",
"SUSE Manager Server Module 4.2:python3-mgr-osa-common-4.2.8-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-mgr-push-4.2.5-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-rhnlib-4.2.6-150300.4.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch",
"SUSE Manager Server Module 4.2:python3-spacewalk-client-tools-4.2.18-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:python3-suseRegisterInfo-4.2.6-150300.4.9.1.noarch",
"SUSE Manager Server Module 4.2:saltboot-formula-0.1.1645440615.7f1328c-150300.3.9.1.noarch",
"SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.ppc64le",
"SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.s390x",
"SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.x86_64",
"SUSE Manager Server Module 4.2:spacecmd-4.2.16-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-admin-4.2.10-150300.3.9.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-base-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.ppc64le",
"SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.s390x",
"SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.x86_64",
"SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-client-tools-4.2.18-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-config-4.2.6-150300.3.6.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-html-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:subscription-matcher-0.29-150300.6.6.1.noarch",
"SUSE Manager Server Module 4.2:supportutils-plugin-susemanager-4.2.4-150300.3.6.1.noarch",
"SUSE Manager Server Module 4.2:suseRegisterInfo-4.2.6-150300.4.9.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.ppc64le",
"SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.s390x",
"SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.x86_64",
"SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.22.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.22.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.22.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-schema-4.2.21-150300.3.18.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-sls-4.2.21-150300.3.20.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.ppc64le",
"SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.s390x",
"SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.x86_64",
"SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.21-150300.3.20.1.noarch",
"SUSE Manager Server Module 4.2:virtualization-formulas-0.6.2-150300.8.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"SUSE Manager Server Module 4.2:c3p0-0.9.5.5-150300.4.6.1.noarch",
"SUSE Manager Server Module 4.2:grafana-formula-0.7.0-150300.3.6.1.noarch",
"SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.ppc64le",
"SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.s390x",
"SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.x86_64",
"SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.ppc64le",
"SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.s390x",
"SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.x86_64",
"SUSE Manager Server Module 4.2:mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:mgr-push-4.2.5-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.ppc64le",
"SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.s390x",
"SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.x86_64",
"SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.ppc64le",
"SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.s390x",
"SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.x86_64",
"SUSE Manager Server Module 4.2:prometheus-exporters-formula-1.2.0-150300.3.9.1.noarch",
"SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.ppc64le",
"SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.s390x",
"SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.x86_64",
"SUSE Manager Server Module 4.2:python3-mgr-osa-common-4.2.8-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-mgr-push-4.2.5-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-rhnlib-4.2.6-150300.4.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch",
"SUSE Manager Server Module 4.2:python3-spacewalk-client-tools-4.2.18-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:python3-suseRegisterInfo-4.2.6-150300.4.9.1.noarch",
"SUSE Manager Server Module 4.2:saltboot-formula-0.1.1645440615.7f1328c-150300.3.9.1.noarch",
"SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.ppc64le",
"SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.s390x",
"SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.x86_64",
"SUSE Manager Server Module 4.2:spacecmd-4.2.16-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-admin-4.2.10-150300.3.9.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-base-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.ppc64le",
"SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.s390x",
"SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.x86_64",
"SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-client-tools-4.2.18-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-config-4.2.6-150300.3.6.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-html-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:subscription-matcher-0.29-150300.6.6.1.noarch",
"SUSE Manager Server Module 4.2:supportutils-plugin-susemanager-4.2.4-150300.3.6.1.noarch",
"SUSE Manager Server Module 4.2:suseRegisterInfo-4.2.6-150300.4.9.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.ppc64le",
"SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.s390x",
"SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.x86_64",
"SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.22.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.22.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.22.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-schema-4.2.21-150300.3.18.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-sls-4.2.21-150300.3.20.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.ppc64le",
"SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.s390x",
"SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.x86_64",
"SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.21-150300.3.20.1.noarch",
"SUSE Manager Server Module 4.2:virtualization-formulas-0.6.2-150300.8.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-04-25T14:43:53Z",
"details": "low"
}
],
"title": "CVE-2018-20433"
},
{
"cve": "CVE-2019-5427",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-5427"
}
],
"notes": [
{
"category": "general",
"text": "c3p0 version \u003c 0.9.5.4 may be exploited by a billion laughs attack when loading XML configuration due to missing protections against recursive entity expansion when loading configuration.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Manager Server Module 4.2:c3p0-0.9.5.5-150300.4.6.1.noarch",
"SUSE Manager Server Module 4.2:grafana-formula-0.7.0-150300.3.6.1.noarch",
"SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.ppc64le",
"SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.s390x",
"SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.x86_64",
"SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.ppc64le",
"SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.s390x",
"SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.x86_64",
"SUSE Manager Server Module 4.2:mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:mgr-push-4.2.5-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.ppc64le",
"SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.s390x",
"SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.x86_64",
"SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.ppc64le",
"SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.s390x",
"SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.x86_64",
"SUSE Manager Server Module 4.2:prometheus-exporters-formula-1.2.0-150300.3.9.1.noarch",
"SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.ppc64le",
"SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.s390x",
"SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.x86_64",
"SUSE Manager Server Module 4.2:python3-mgr-osa-common-4.2.8-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-mgr-push-4.2.5-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-rhnlib-4.2.6-150300.4.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch",
"SUSE Manager Server Module 4.2:python3-spacewalk-client-tools-4.2.18-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:python3-suseRegisterInfo-4.2.6-150300.4.9.1.noarch",
"SUSE Manager Server Module 4.2:saltboot-formula-0.1.1645440615.7f1328c-150300.3.9.1.noarch",
"SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.ppc64le",
"SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.s390x",
"SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.x86_64",
"SUSE Manager Server Module 4.2:spacecmd-4.2.16-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-admin-4.2.10-150300.3.9.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-base-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.ppc64le",
"SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.s390x",
"SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.x86_64",
"SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-client-tools-4.2.18-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-config-4.2.6-150300.3.6.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-html-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:subscription-matcher-0.29-150300.6.6.1.noarch",
"SUSE Manager Server Module 4.2:supportutils-plugin-susemanager-4.2.4-150300.3.6.1.noarch",
"SUSE Manager Server Module 4.2:suseRegisterInfo-4.2.6-150300.4.9.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.ppc64le",
"SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.s390x",
"SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.x86_64",
"SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.22.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.22.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.22.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-schema-4.2.21-150300.3.18.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-sls-4.2.21-150300.3.20.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.ppc64le",
"SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.s390x",
"SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.x86_64",
"SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.21-150300.3.20.1.noarch",
"SUSE Manager Server Module 4.2:virtualization-formulas-0.6.2-150300.8.6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-5427",
"url": "https://www.suse.com/security/cve/CVE-2019-5427"
},
{
"category": "external",
"summary": "SUSE Bug 1133198 for CVE-2019-5427",
"url": "https://bugzilla.suse.com/1133198"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Manager Server Module 4.2:c3p0-0.9.5.5-150300.4.6.1.noarch",
"SUSE Manager Server Module 4.2:grafana-formula-0.7.0-150300.3.6.1.noarch",
"SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.ppc64le",
"SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.s390x",
"SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.x86_64",
"SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.ppc64le",
"SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.s390x",
"SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.x86_64",
"SUSE Manager Server Module 4.2:mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:mgr-push-4.2.5-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.ppc64le",
"SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.s390x",
"SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.x86_64",
"SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.ppc64le",
"SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.s390x",
"SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.x86_64",
"SUSE Manager Server Module 4.2:prometheus-exporters-formula-1.2.0-150300.3.9.1.noarch",
"SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.ppc64le",
"SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.s390x",
"SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.x86_64",
"SUSE Manager Server Module 4.2:python3-mgr-osa-common-4.2.8-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-mgr-push-4.2.5-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-rhnlib-4.2.6-150300.4.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch",
"SUSE Manager Server Module 4.2:python3-spacewalk-client-tools-4.2.18-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:python3-suseRegisterInfo-4.2.6-150300.4.9.1.noarch",
"SUSE Manager Server Module 4.2:saltboot-formula-0.1.1645440615.7f1328c-150300.3.9.1.noarch",
"SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.ppc64le",
"SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.s390x",
"SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.x86_64",
"SUSE Manager Server Module 4.2:spacecmd-4.2.16-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-admin-4.2.10-150300.3.9.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-base-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.ppc64le",
"SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.s390x",
"SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.x86_64",
"SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-client-tools-4.2.18-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-config-4.2.6-150300.3.6.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-html-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:subscription-matcher-0.29-150300.6.6.1.noarch",
"SUSE Manager Server Module 4.2:supportutils-plugin-susemanager-4.2.4-150300.3.6.1.noarch",
"SUSE Manager Server Module 4.2:suseRegisterInfo-4.2.6-150300.4.9.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.ppc64le",
"SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.s390x",
"SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.x86_64",
"SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.22.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.22.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.22.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-schema-4.2.21-150300.3.18.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-sls-4.2.21-150300.3.20.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.ppc64le",
"SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.s390x",
"SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.x86_64",
"SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.21-150300.3.20.1.noarch",
"SUSE Manager Server Module 4.2:virtualization-formulas-0.6.2-150300.8.6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Manager Server Module 4.2:c3p0-0.9.5.5-150300.4.6.1.noarch",
"SUSE Manager Server Module 4.2:grafana-formula-0.7.0-150300.3.6.1.noarch",
"SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.ppc64le",
"SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.s390x",
"SUSE Manager Server Module 4.2:hub-xmlrpc-api-0.7-150300.3.6.1.x86_64",
"SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.ppc64le",
"SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.s390x",
"SUSE Manager Server Module 4.2:inter-server-sync-0.1.0-150300.8.12.1.x86_64",
"SUSE Manager Server Module 4.2:mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:mgr-push-4.2.5-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.ppc64le",
"SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.s390x",
"SUSE Manager Server Module 4.2:patterns-suma_retail-4.2-150300.4.9.1.x86_64",
"SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.ppc64le",
"SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.s390x",
"SUSE Manager Server Module 4.2:patterns-suma_server-4.2-150300.4.9.1.x86_64",
"SUSE Manager Server Module 4.2:prometheus-exporters-formula-1.2.0-150300.3.9.1.noarch",
"SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.ppc64le",
"SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.s390x",
"SUSE Manager Server Module 4.2:py26-compat-msgpack-python-0.4.6-150300.4.3.1.x86_64",
"SUSE Manager Server Module 4.2:python3-mgr-osa-common-4.2.8-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-mgr-osa-dispatcher-4.2.8-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-mgr-push-4.2.5-150300.2.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-rhnlib-4.2.6-150300.4.9.1.noarch",
"SUSE Manager Server Module 4.2:python3-spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch",
"SUSE Manager Server Module 4.2:python3-spacewalk-client-tools-4.2.18-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:python3-suseRegisterInfo-4.2.6-150300.4.9.1.noarch",
"SUSE Manager Server Module 4.2:saltboot-formula-0.1.1645440615.7f1328c-150300.3.9.1.noarch",
"SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.ppc64le",
"SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.s390x",
"SUSE Manager Server Module 4.2:smdba-1.7.10-0.150300.3.3.1.x86_64",
"SUSE Manager Server Module 4.2:spacecmd-4.2.16-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-admin-4.2.10-150300.3.9.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-app-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-applet-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-config-files-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-config-files-common-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-config-files-tool-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-iss-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-iss-export-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-package-push-server-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-server-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-sql-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-sql-postgresql-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-tools-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-xml-export-libs-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-backend-xmlrpc-4.2.20-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-base-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-base-minimal-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-base-minimal-config-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.ppc64le",
"SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.s390x",
"SUSE Manager Server Module 4.2:spacewalk-branding-4.2.13-150300.3.9.1.x86_64",
"SUSE Manager Server Module 4.2:spacewalk-certs-tools-4.2.15-150300.3.15.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-client-tools-4.2.18-150300.4.18.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-config-4.2.6-150300.3.6.1.noarch",
"SUSE Manager Server Module 4.2:spacewalk-html-4.2.26-150300.3.18.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-config-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-lib-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-java-postgresql-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:spacewalk-taskomatic-4.2.34-150300.3.26.2.noarch",
"SUSE Manager Server Module 4.2:subscription-matcher-0.29-150300.6.6.1.noarch",
"SUSE Manager Server Module 4.2:supportutils-plugin-susemanager-4.2.4-150300.3.6.1.noarch",
"SUSE Manager Server Module 4.2:suseRegisterInfo-4.2.6-150300.4.9.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.ppc64le",
"SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.s390x",
"SUSE Manager Server Module 4.2:susemanager-4.2.28-150300.3.22.1.x86_64",
"SUSE Manager Server Module 4.2:susemanager-doc-indexes-4.2-150300.12.22.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-docs_en-4.2-150300.12.22.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-docs_en-pdf-4.2-150300.12.22.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-schema-4.2.21-150300.3.18.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-sls-4.2.21-150300.3.20.1.noarch",
"SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.ppc64le",
"SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.s390x",
"SUSE Manager Server Module 4.2:susemanager-tools-4.2.28-150300.3.22.1.x86_64",
"SUSE Manager Server Module 4.2:uyuni-config-modules-4.2.21-150300.3.20.1.noarch",
"SUSE Manager Server Module 4.2:virtualization-formulas-0.6.2-150300.8.6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-04-25T14:43:53Z",
"details": "low"
}
],
"title": "CVE-2019-5427"
}
]
}
WID-SEC-W-2025-1905
Vulnerability from csaf_certbund - Published: 2025-08-25 22:00 - Updated: 2025-08-27 22:00Summary
IBM QRadar SIEM Komponente: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: IBM QRadar Security Information and Event Management (SIEM) bietet Unterstützung bei der Erkennung und Priorisierung von Sicherheitsbedrohungen im Unternehmen.
Angriff: Ein Angreifer kann mehrere Schwachstellen in IBM QRadar SIEM Komponenten ausnutzen, um Daten zu manipulieren, um einen Denial of Service Angriff durchzuführen, um beliebigen Programmcode auszuführen, um Sicherheitsvorkehrungen zu umgehen, und um Informationen offenzulegen.
Betroffene Betriebssysteme: - Linux
- UNIX
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
IBM QRadar SIEM <7.5.0 UP13 IF01
IBM / QRadar SIEM
|
<7.5.0 UP13 IF01 |
References
5 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "IBM QRadar Security Information and Event Management (SIEM) bietet Unterst\u00fctzung bei der Erkennung und Priorisierung von Sicherheitsbedrohungen im Unternehmen.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen in IBM QRadar SIEM Komponenten ausnutzen, um Daten zu manipulieren, um einen Denial of Service Angriff durchzuf\u00fchren, um beliebigen Programmcode auszuf\u00fchren, um Sicherheitsvorkehrungen zu umgehen, und um Informationen offenzulegen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- UNIX",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-1905 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1905.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-1905 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1905"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7243011 vom 2025-08-25",
"url": "https://www.ibm.com/support/pages/node/7243011"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:14746 vom 2025-08-27",
"url": "https://access.redhat.com/errata/RHSA-2025:14746"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:14748 vom 2025-08-27",
"url": "https://access.redhat.com/errata/RHSA-2025:14748"
}
],
"source_lang": "en-US",
"title": "IBM QRadar SIEM Komponente: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-08-27T22:00:00.000+00:00",
"generator": {
"date": "2025-08-28T05:52:03.530+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2025-1905",
"initial_release_date": "2025-08-25T22:00:00.000+00:00",
"revision_history": [
{
"date": "2025-08-25T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2025-08-27T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c7.5.0 UP13 IF01",
"product": {
"name": "IBM QRadar SIEM \u003c7.5.0 UP13 IF01",
"product_id": "T046492"
}
},
{
"category": "product_version",
"name": "7.5.0 UP13 IF01",
"product": {
"name": "IBM QRadar SIEM 7.5.0 UP13 IF01",
"product_id": "T046492-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:qradar_siem:7.5.0_up13_if01"
}
}
}
],
"category": "product_name",
"name": "QRadar SIEM"
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-17543",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2019-17543"
},
{
"cve": "CVE-2019-5427",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2019-5427"
},
{
"cve": "CVE-2020-5260",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2020-5260"
},
{
"cve": "CVE-2022-49058",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49058"
},
{
"cve": "CVE-2022-49111",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49111"
},
{
"cve": "CVE-2022-49136",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49136"
},
{
"cve": "CVE-2022-49788",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49788"
},
{
"cve": "CVE-2022-49846",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49846"
},
{
"cve": "CVE-2022-49977",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49977"
},
{
"cve": "CVE-2022-50020",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-50020"
},
{
"cve": "CVE-2024-23337",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-23337"
},
{
"cve": "CVE-2024-28956",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-28956"
},
{
"cve": "CVE-2024-34397",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-34397"
},
{
"cve": "CVE-2024-43420",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-43420"
},
{
"cve": "CVE-2024-45332",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-45332"
},
{
"cve": "CVE-2024-50154",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-50154"
},
{
"cve": "CVE-2024-50349",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-50349"
},
{
"cve": "CVE-2024-52006",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-52006"
},
{
"cve": "CVE-2024-52533",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-52533"
},
{
"cve": "CVE-2024-53920",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-53920"
},
{
"cve": "CVE-2024-54661",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-54661"
},
{
"cve": "CVE-2024-57980",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-57980"
},
{
"cve": "CVE-2024-58002",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-58002"
},
{
"cve": "CVE-2024-6531",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-6531"
},
{
"cve": "CVE-2025-20012",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-20012"
},
{
"cve": "CVE-2025-20623",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-20623"
},
{
"cve": "CVE-2025-21905",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-21905"
},
{
"cve": "CVE-2025-21919",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-21919"
},
{
"cve": "CVE-2025-21928",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-21928"
},
{
"cve": "CVE-2025-21991",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-21991"
},
{
"cve": "CVE-2025-22004",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-22004"
},
{
"cve": "CVE-2025-22020",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-22020"
},
{
"cve": "CVE-2025-23150",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-23150"
},
{
"cve": "CVE-2025-24495",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-24495"
},
{
"cve": "CVE-2025-27613",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-27613"
},
{
"cve": "CVE-2025-27614",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-27614"
},
{
"cve": "CVE-2025-32415",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-32415"
},
{
"cve": "CVE-2025-37738",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-37738"
},
{
"cve": "CVE-2025-37890",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-37890"
},
{
"cve": "CVE-2025-38052",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-38052"
},
{
"cve": "CVE-2025-38079",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-38079"
},
{
"cve": "CVE-2025-38086",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-38086"
},
{
"cve": "CVE-2025-4373",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-4373"
},
{
"cve": "CVE-2025-46835",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-46835"
},
{
"cve": "CVE-2025-47273",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-47273"
},
{
"cve": "CVE-2025-48060",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-48060"
},
{
"cve": "CVE-2025-48384",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-48384"
},
{
"cve": "CVE-2025-48385",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-48385"
},
{
"cve": "CVE-2025-49794",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-49794"
},
{
"cve": "CVE-2025-49796",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-49796"
},
{
"cve": "CVE-2025-52434",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-52434"
},
{
"cve": "CVE-2025-52520",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-52520"
},
{
"cve": "CVE-2025-53506",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-53506"
},
{
"cve": "CVE-2025-55668",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-55668"
},
{
"cve": "CVE-2025-6021",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-6021"
},
{
"cve": "CVE-2025-6965",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-6965"
},
{
"cve": "CVE-2025-7425",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-7425"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…