Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2017-7538 (GCVE-0-2017-7538)
Vulnerability from cvelistv5 – Published: 2018-07-26 15:00 – Updated: 2024-08-05 16:04
VLAI?
EPSS
Summary
A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5, before 5.8. A user able to change an organization's name could exploit this flaw to perform XSS attacks against other Satellite users.
Severity ?
CWE
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T16:04:11.974Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7538"
},
{
"name": "1039267",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1039267"
},
{
"name": "RHSA-2017:2645",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2645"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Satellite",
"vendor": "Red Hat",
"versions": [
{
"status": "affected",
"version": "5.8"
}
]
}
],
"datePublic": "2017-07-14T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5, before 5.8. A user able to change an organization\u0027s name could exploit this flaw to perform XSS attacks against other Satellite users."
}
],
"metrics": [
{
"cvssV3_0": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.5,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N",
"version": "3.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-79",
"description": "CWE-79",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-07-27T09:57:01",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7538"
},
{
"name": "1039267",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1039267"
},
{
"name": "RHSA-2017:2645",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2645"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2017-7538",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Satellite",
"version": {
"version_data": [
{
"version_value": "5.8"
}
]
}
}
]
},
"vendor_name": "Red Hat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5, before 5.8. A user able to change an organization\u0027s name could exploit this flaw to perform XSS attacks against other Satellite users."
}
]
},
"impact": {
"cvss": [
[
{
"vectorString": "3.5/CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N",
"version": "3.0"
}
]
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-79"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7538",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7538"
},
{
"name": "1039267",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1039267"
},
{
"name": "RHSA-2017:2645",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:2645"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2017-7538",
"datePublished": "2018-07-26T15:00:00",
"dateReserved": "2017-04-05T00:00:00",
"dateUpdated": "2024-08-05T16:04:11.974Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:satellite:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"5.8\", \"matchCriteriaId\": \"EAC7E694-84AE-4EBD-BCA6-5A1564FABD58\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5, before 5.8. A user able to change an organization\u0027s name could exploit this flaw to perform XSS attacks against other Satellite users.\"}, {\"lang\": \"es\", \"value\": \"Se ha detectado una vulnerabilidad Cross-Site Scripting (XSS) en la manera en la que se muestra un nombre de organizaci\\u00f3n en Satellite 5 en versiones anteriores a la 5.8. Un usuario capaz de cambiar el nombre de una organizaci\\u00f3n podr\\u00eda explotar esta vulnerabilidad para realizar ataques Cross-Site Scripting (XSS) contra otros usuarios de Satellite.\"}]",
"id": "CVE-2017-7538",
"lastModified": "2024-11-21T03:32:07.213",
"metrics": "{\"cvssMetricV30\": [{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N\", \"baseScore\": 3.5, \"baseSeverity\": \"LOW\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"REQUIRED\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.1, \"impactScore\": 1.4}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N\", \"baseScore\": 5.4, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"REQUIRED\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.3, \"impactScore\": 2.7}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:S/C:N/I:P/A:N\", \"baseScore\": 3.5, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"SINGLE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 6.8, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
"published": "2018-07-26T15:29:00.260",
"references": "[{\"url\": \"http://www.securitytracker.com/id/1039267\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:2645\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7538\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securitytracker.com/id/1039267\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2017:2645\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7538\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Vendor Advisory\"]}]",
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-79\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-79\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2017-7538\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2018-07-26T15:29:00.260\",\"lastModified\":\"2024-11-21T03:32:07.213\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5, before 5.8. A user able to change an organization\u0027s name could exploit this flaw to perform XSS attacks against other Satellite users.\"},{\"lang\":\"es\",\"value\":\"Se ha detectado una vulnerabilidad Cross-Site Scripting (XSS) en la manera en la que se muestra un nombre de organizaci\u00f3n en Satellite 5 en versiones anteriores a la 5.8. Un usuario capaz de cambiar el nombre de una organizaci\u00f3n podr\u00eda explotar esta vulnerabilidad para realizar ataques Cross-Site Scripting (XSS) contra otros usuarios de Satellite.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N\",\"baseScore\":3.5,\"baseSeverity\":\"LOW\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.1,\"impactScore\":1.4},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N\",\"baseScore\":5.4,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.3,\"impactScore\":2.7}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:S/C:N/I:P/A:N\",\"baseScore\":3.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":6.8,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:satellite:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.8\",\"matchCriteriaId\":\"EAC7E694-84AE-4EBD-BCA6-5A1564FABD58\"}]}]}],\"references\":[{\"url\":\"http://www.securitytracker.com/id/1039267\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:2645\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7538\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"http://www.securitytracker.com/id/1039267\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:2645\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7538\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]}]}}"
}
}
RHSA-2017:2645
Vulnerability from csaf_redhat - Published: 2017-09-06 12:26 - Updated: 2025-11-21 18:02Summary
Red Hat Security Advisory: satellite and spacewalk security and bug fix update
Notes
Topic
An update for satellite-schema, spacewalk-backend, spacewalk-java, and spacewalk-schema is now available for Red Hat Satellite 5.8 and Red Hat Satellite 5.8 ELS.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Spacewalk is an Open Source systems management solution that provides system provisioning, configuration and patching capabilities.
Red Hat Satellite is a system management tool for Linux-based infrastructures. It allows for provisioning, monitoring, and the remote management of multiple Linux deployments with a single, centralized tool.
Security Fix(es):
* A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5. A user able to change an organization's name could exploit this flaw to perform XSS attacks against other Satellite users. (CVE-2017-7538)
This issue was discovered by Ales Dujicek (Red Hat).
Bug Fix(es):
* Prior to this update, transferring content between Satellites using Inter-Satellite Synchronization or channel-dumps failed to transfer the product-name related to channels. This interfered with the process of moving a server between EUS channels. The 'satellite-export' tool now correctly provides associated product-names, fixing this behavior. (BZ#1446271)
* Prior to this update, the API call 'schedule.failSystemAction()' allowed overwriting a system's event history. This is undesirable from an auditing standpoint. The API now no longer allows affecting completed or failed events. (BZ#1455887)
* Prior to this update, organization administrators who were not allowed to change their organization's attributes could do so by modifying form elements. The associated form controller no longer allows this behavior. (BZ#1458722)
* Prior to this update, the 'download' tool's retry limit would be incorrect if there were more available mirrors than its retry count. It could also produce a harmless but unhelpful traceback in some situations. Both of these behaviors have been fixed. (BZ#1458765)
* Prior to this update, it was possible for parallel registrations using reactivation keys, that were creating snapshot entries, to occasionally deadlock. Both the reactivation-key registration and snapshot-creation paths have been updated to prevent these deadlocks. (BZ#1458880)
* Prior to this update, if there was some problem with a single erratum in a given repository, the 'reposync' command would complain and exit. The tool now logs such errors but continues to synchronize any remaining errata. (BZ#1466229)
* The Satellite 5.8 release failed to include an update to a registration-failure error message that had been released for Satellite 5.7. This restores the missing update. (BZ#1467632)
* Prior to this update, the list of systems in the System Set Manager failed to display the correct icons for a system's update status. This has been corrected. (BZ#1475067)
* Prior to this update, a timing window in the 'cdn-sync' command, when synchronizing multiple channels at once, could cause some of the synchronization attempts to be refused with a 403 error. This update fixes the timing window so that multiple syncs should now work reliably. (BZ#1476924)
* Prior to this update, attempting to view the systems in the System Set Manager that are affected by a given erratum would result in an internal server error. This has been fixed. (BZ#1477508)
* Prior to this update, using 'cdn-sync --no-packages' on a specific channel would disassociate all packages from that channel. This behavior has been fixed, so that '--no-packages' now just skips that step as intended. (BZ#1477667)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for satellite-schema, spacewalk-backend, spacewalk-java, and spacewalk-schema is now available for Red Hat Satellite 5.8 and Red Hat Satellite 5.8 ELS.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Spacewalk is an Open Source systems management solution that provides system provisioning, configuration and patching capabilities.\n\nRed Hat Satellite is a system management tool for Linux-based infrastructures. It allows for provisioning, monitoring, and the remote management of multiple Linux deployments with a single, centralized tool.\n\nSecurity Fix(es):\n\n* A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5. A user able to change an organization\u0027s name could exploit this flaw to perform XSS attacks against other Satellite users. (CVE-2017-7538)\n\nThis issue was discovered by Ales Dujicek (Red Hat).\n\nBug Fix(es):\n\n* Prior to this update, transferring content between Satellites using Inter-Satellite Synchronization or channel-dumps failed to transfer the product-name related to channels. This interfered with the process of moving a server between EUS channels. The \u0027satellite-export\u0027 tool now correctly provides associated product-names, fixing this behavior. (BZ#1446271)\n\n* Prior to this update, the API call \u0027schedule.failSystemAction()\u0027 allowed overwriting a system\u0027s event history. This is undesirable from an auditing standpoint. The API now no longer allows affecting completed or failed events. (BZ#1455887)\n\n* Prior to this update, organization administrators who were not allowed to change their organization\u0027s attributes could do so by modifying form elements. The associated form controller no longer allows this behavior. (BZ#1458722)\n\n* Prior to this update, the \u0027download\u0027 tool\u0027s retry limit would be incorrect if there were more available mirrors than its retry count. It could also produce a harmless but unhelpful traceback in some situations. Both of these behaviors have been fixed. (BZ#1458765)\n\n* Prior to this update, it was possible for parallel registrations using reactivation keys, that were creating snapshot entries, to occasionally deadlock. Both the reactivation-key registration and snapshot-creation paths have been updated to prevent these deadlocks. (BZ#1458880)\n\n* Prior to this update, if there was some problem with a single erratum in a given repository, the \u0027reposync\u0027 command would complain and exit. The tool now logs such errors but continues to synchronize any remaining errata. (BZ#1466229)\n\n* The Satellite 5.8 release failed to include an update to a registration-failure error message that had been released for Satellite 5.7. This restores the missing update. (BZ#1467632)\n\n* Prior to this update, the list of systems in the System Set Manager failed to display the correct icons for a system\u0027s update status. This has been corrected. (BZ#1475067)\n\n* Prior to this update, a timing window in the \u0027cdn-sync\u0027 command, when synchronizing multiple channels at once, could cause some of the synchronization attempts to be refused with a 403 error. This update fixes the timing window so that multiple syncs should now work reliably. (BZ#1476924)\n\n* Prior to this update, attempting to view the systems in the System Set Manager that are affected by a given erratum would result in an internal server error. This has been fixed. (BZ#1477508)\n\n* Prior to this update, using \u0027cdn-sync --no-packages\u0027 on a specific channel would disassociate all packages from that channel. This behavior has been fixed, so that \u0027--no-packages\u0027 now just skips that step as intended. (BZ#1477667)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:2645",
"url": "https://access.redhat.com/errata/RHSA-2017:2645"
},
{
"category": "external",
"summary": "1458880",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458880"
},
{
"category": "external",
"summary": "1460208",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1460208"
},
{
"category": "external",
"summary": "1466229",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1466229"
},
{
"category": "external",
"summary": "1467632",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1467632"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/site/articles/273633",
"url": "https://access.redhat.com/site/articles/273633"
},
{
"category": "external",
"summary": "https://access.redhat.com/site/articles/11258",
"url": "https://access.redhat.com/site/articles/11258"
},
{
"category": "external",
"summary": "1446271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1446271"
},
{
"category": "external",
"summary": "1455887",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1455887"
},
{
"category": "external",
"summary": "1458722",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458722"
},
{
"category": "external",
"summary": "1471262",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471262"
},
{
"category": "external",
"summary": "1475067",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1475067"
},
{
"category": "external",
"summary": "1458765",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458765"
},
{
"category": "external",
"summary": "1477667",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1477667"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_2645.json"
}
],
"title": "Red Hat Security Advisory: satellite and spacewalk security and bug fix update",
"tracking": {
"current_release_date": "2025-11-21T18:02:12+00:00",
"generator": {
"date": "2025-11-21T18:02:12+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2017:2645",
"initial_release_date": "2017-09-06T12:26:43+00:00",
"revision_history": [
{
"date": "2017-09-06T12:26:43+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-09-06T12:26:43+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:02:12+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Satellite 5.8 (RHEL v.6)",
"product": {
"name": "Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:network_satellite:5.8::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product": {
"name": "Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:network_satellite:5.8::el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Satellite"
},
{
"branches": [
{
"category": "product_version",
"name": "spacewalk-schema-0:2.5.1-50.el6sat.src",
"product": {
"name": "spacewalk-schema-0:2.5.1-50.el6sat.src",
"product_id": "spacewalk-schema-0:2.5.1-50.el6sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-schema@2.5.1-50.el6sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "satellite-schema-0:5.8.0.33-1.el6sat.src",
"product": {
"name": "satellite-schema-0:5.8.0.33-1.el6sat.src",
"product_id": "satellite-schema-0:5.8.0.33-1.el6sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-schema@5.8.0.33-1.el6sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-0:2.5.3-151.el6sat.src",
"product": {
"name": "spacewalk-backend-0:2.5.3-151.el6sat.src",
"product_id": "spacewalk-backend-0:2.5.3-151.el6sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend@2.5.3-151.el6sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "spacewalk-java-0:2.5.14-95.el6sat.src",
"product": {
"name": "spacewalk-java-0:2.5.14-95.el6sat.src",
"product_id": "spacewalk-java-0:2.5.14-95.el6sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-java@2.5.14-95.el6sat?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"product": {
"name": "spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"product_id": "spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-schema@2.5.1-50.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"product": {
"name": "satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"product_id": "satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-schema@5.8.0.33-1.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-package-push-server@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-cdn@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-xml-export-libs@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-config-files@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-sql-oracle@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-app@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-tools@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-libs@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-sql-postgresql@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-iss-export@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-server@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-config-files-common@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-config-files-tool@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-applet@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-sql@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-iss@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-xmlrpc@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"product": {
"name": "spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"product_id": "spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-java-postgresql@2.5.14-95.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"product": {
"name": "spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"product_id": "spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-java-oracle@2.5.14-95.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch",
"product": {
"name": "spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch",
"product_id": "spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-taskomatic@2.5.14-95.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-java-0:2.5.14-95.el6sat.noarch",
"product": {
"name": "spacewalk-java-0:2.5.14-95.el6sat.noarch",
"product_id": "spacewalk-java-0:2.5.14-95.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-java@2.5.14-95.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"product": {
"name": "spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"product_id": "spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-java-config@2.5.14-95.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"product": {
"name": "spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"product_id": "spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-java-lib@2.5.14-95.el6sat?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-schema-0:5.8.0.33-1.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:satellite-schema-0:5.8.0.33-1.el6sat.noarch"
},
"product_reference": "satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-schema-0:5.8.0.33-1.el6sat.src as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:satellite-schema-0:5.8.0.33-1.el6sat.src"
},
"product_reference": "satellite-schema-0:5.8.0.33-1.el6sat.src",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-0:2.5.3-151.el6sat.src as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-0:2.5.3-151.el6sat.src"
},
"product_reference": "spacewalk-backend-0:2.5.3-151.el6sat.src",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-app-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-app-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-server-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-server-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-java-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-java-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-0:2.5.14-95.el6sat.src as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-java-0:2.5.14-95.el6sat.src"
},
"product_reference": "spacewalk-java-0:2.5.14-95.el6sat.src",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-config-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-java-config-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-lib-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-java-lib-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-schema-0:2.5.1-50.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-schema-0:2.5.1-50.el6sat.noarch"
},
"product_reference": "spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-schema-0:2.5.1-50.el6sat.src as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-schema-0:2.5.1-50.el6sat.src"
},
"product_reference": "spacewalk-schema-0:2.5.1-50.el6sat.src",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-schema-0:5.8.0.33-1.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:satellite-schema-0:5.8.0.33-1.el6sat.noarch"
},
"product_reference": "satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-schema-0:5.8.0.33-1.el6sat.src as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:satellite-schema-0:5.8.0.33-1.el6sat.src"
},
"product_reference": "satellite-schema-0:5.8.0.33-1.el6sat.src",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-0:2.5.3-151.el6sat.src as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-0:2.5.3-151.el6sat.src"
},
"product_reference": "spacewalk-backend-0:2.5.3-151.el6sat.src",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-app-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-app-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-server-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-server-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-java-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-java-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-0:2.5.14-95.el6sat.src as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-java-0:2.5.14-95.el6sat.src"
},
"product_reference": "spacewalk-java-0:2.5.14-95.el6sat.src",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-config-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-java-config-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-lib-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-java-lib-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-schema-0:2.5.1-50.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-schema-0:2.5.1-50.el6sat.noarch"
},
"product_reference": "spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-schema-0:2.5.1-50.el6sat.src as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-schema-0:2.5.1-50.el6sat.src"
},
"product_reference": "spacewalk-schema-0:2.5.1-50.el6sat.src",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Ales Dujicek"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2017-7538",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2017-06-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1471262"
}
],
"notes": [
{
"category": "description",
"text": "A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5. A user able to change an organization\u0027s name could exploit this flaw to perform XSS attacks against other Satellite users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "5: organization name allows XSS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58-ELS:satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"6Server-Satellite58-ELS:satellite-schema-0:5.8.0.33-1.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-0:2.5.3-151.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-0:2.5.14-95.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-schema-0:2.5.1-50.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"6Server-Satellite58:satellite-schema-0:5.8.0.33-1.el6sat.src",
"6Server-Satellite58:spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-0:2.5.3-151.el6sat.src",
"6Server-Satellite58:spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-0:2.5.14-95.el6sat.src",
"6Server-Satellite58:spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"6Server-Satellite58:spacewalk-schema-0:2.5.1-50.el6sat.src",
"6Server-Satellite58:spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7538"
},
{
"category": "external",
"summary": "RHBZ#1471262",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471262"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7538",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7538"
}
],
"release_date": "2017-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-09-06T12:26:43+00:00",
"details": "Application of this errata involves updating the database schema.\n\nBefore applying this update, make sure all previously-released errata relevant to your system have been applied. To apply this erratum, take the following steps:\n\n* Shut down Red Hat Satellite by running the following command as root:\n\nrhn-satellite stop\n\n* Backup the database. For embedded or managed database variants, please consult Red Hat Satellite 5.8 documentation. For an external database, consult your database administrator.\n\n* Upgrade the errata packages. Details on how to apply this update are available at https://access.redhat.com/site/articles/11258\n\n* Update the database schema using the spacewalk-schema-upgrade command. To do so, run as root:\n\nspacewalk-schema-upgrade\n\nThis process will update your database schema to the latest version. The\nspacewalk-schema-upgrade command will inform you about the results of the\nupgrade and exact locations of schema upgrade log files.\n\n* Restart Red Hat Satellite by running the following as root:\n\nrhn-satellite start",
"product_ids": [
"6Server-Satellite58-ELS:satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"6Server-Satellite58-ELS:satellite-schema-0:5.8.0.33-1.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-0:2.5.3-151.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-0:2.5.14-95.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-schema-0:2.5.1-50.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"6Server-Satellite58:satellite-schema-0:5.8.0.33-1.el6sat.src",
"6Server-Satellite58:spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-0:2.5.3-151.el6sat.src",
"6Server-Satellite58:spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-0:2.5.14-95.el6sat.src",
"6Server-Satellite58:spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"6Server-Satellite58:spacewalk-schema-0:2.5.1-50.el6sat.src",
"6Server-Satellite58:spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:2645"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.5,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58-ELS:satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"6Server-Satellite58-ELS:satellite-schema-0:5.8.0.33-1.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-0:2.5.3-151.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-0:2.5.14-95.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-schema-0:2.5.1-50.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"6Server-Satellite58:satellite-schema-0:5.8.0.33-1.el6sat.src",
"6Server-Satellite58:spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-0:2.5.3-151.el6sat.src",
"6Server-Satellite58:spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-0:2.5.14-95.el6sat.src",
"6Server-Satellite58:spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"6Server-Satellite58:spacewalk-schema-0:2.5.1-50.el6sat.src",
"6Server-Satellite58:spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "5: organization name allows XSS"
}
]
}
RHSA-2017_2645
Vulnerability from csaf_redhat - Published: 2017-09-06 12:26 - Updated: 2024-11-22 11:19Summary
Red Hat Security Advisory: satellite and spacewalk security and bug fix update
Notes
Topic
An update for satellite-schema, spacewalk-backend, spacewalk-java, and spacewalk-schema is now available for Red Hat Satellite 5.8 and Red Hat Satellite 5.8 ELS.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Spacewalk is an Open Source systems management solution that provides system provisioning, configuration and patching capabilities.
Red Hat Satellite is a system management tool for Linux-based infrastructures. It allows for provisioning, monitoring, and the remote management of multiple Linux deployments with a single, centralized tool.
Security Fix(es):
* A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5. A user able to change an organization's name could exploit this flaw to perform XSS attacks against other Satellite users. (CVE-2017-7538)
This issue was discovered by Ales Dujicek (Red Hat).
Bug Fix(es):
* Prior to this update, transferring content between Satellites using Inter-Satellite Synchronization or channel-dumps failed to transfer the product-name related to channels. This interfered with the process of moving a server between EUS channels. The 'satellite-export' tool now correctly provides associated product-names, fixing this behavior. (BZ#1446271)
* Prior to this update, the API call 'schedule.failSystemAction()' allowed overwriting a system's event history. This is undesirable from an auditing standpoint. The API now no longer allows affecting completed or failed events. (BZ#1455887)
* Prior to this update, organization administrators who were not allowed to change their organization's attributes could do so by modifying form elements. The associated form controller no longer allows this behavior. (BZ#1458722)
* Prior to this update, the 'download' tool's retry limit would be incorrect if there were more available mirrors than its retry count. It could also produce a harmless but unhelpful traceback in some situations. Both of these behaviors have been fixed. (BZ#1458765)
* Prior to this update, it was possible for parallel registrations using reactivation keys, that were creating snapshot entries, to occasionally deadlock. Both the reactivation-key registration and snapshot-creation paths have been updated to prevent these deadlocks. (BZ#1458880)
* Prior to this update, if there was some problem with a single erratum in a given repository, the 'reposync' command would complain and exit. The tool now logs such errors but continues to synchronize any remaining errata. (BZ#1466229)
* The Satellite 5.8 release failed to include an update to a registration-failure error message that had been released for Satellite 5.7. This restores the missing update. (BZ#1467632)
* Prior to this update, the list of systems in the System Set Manager failed to display the correct icons for a system's update status. This has been corrected. (BZ#1475067)
* Prior to this update, a timing window in the 'cdn-sync' command, when synchronizing multiple channels at once, could cause some of the synchronization attempts to be refused with a 403 error. This update fixes the timing window so that multiple syncs should now work reliably. (BZ#1476924)
* Prior to this update, attempting to view the systems in the System Set Manager that are affected by a given erratum would result in an internal server error. This has been fixed. (BZ#1477508)
* Prior to this update, using 'cdn-sync --no-packages' on a specific channel would disassociate all packages from that channel. This behavior has been fixed, so that '--no-packages' now just skips that step as intended. (BZ#1477667)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for satellite-schema, spacewalk-backend, spacewalk-java, and spacewalk-schema is now available for Red Hat Satellite 5.8 and Red Hat Satellite 5.8 ELS.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Spacewalk is an Open Source systems management solution that provides system provisioning, configuration and patching capabilities.\n\nRed Hat Satellite is a system management tool for Linux-based infrastructures. It allows for provisioning, monitoring, and the remote management of multiple Linux deployments with a single, centralized tool.\n\nSecurity Fix(es):\n\n* A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5. A user able to change an organization\u0027s name could exploit this flaw to perform XSS attacks against other Satellite users. (CVE-2017-7538)\n\nThis issue was discovered by Ales Dujicek (Red Hat).\n\nBug Fix(es):\n\n* Prior to this update, transferring content between Satellites using Inter-Satellite Synchronization or channel-dumps failed to transfer the product-name related to channels. This interfered with the process of moving a server between EUS channels. The \u0027satellite-export\u0027 tool now correctly provides associated product-names, fixing this behavior. (BZ#1446271)\n\n* Prior to this update, the API call \u0027schedule.failSystemAction()\u0027 allowed overwriting a system\u0027s event history. This is undesirable from an auditing standpoint. The API now no longer allows affecting completed or failed events. (BZ#1455887)\n\n* Prior to this update, organization administrators who were not allowed to change their organization\u0027s attributes could do so by modifying form elements. The associated form controller no longer allows this behavior. (BZ#1458722)\n\n* Prior to this update, the \u0027download\u0027 tool\u0027s retry limit would be incorrect if there were more available mirrors than its retry count. It could also produce a harmless but unhelpful traceback in some situations. Both of these behaviors have been fixed. (BZ#1458765)\n\n* Prior to this update, it was possible for parallel registrations using reactivation keys, that were creating snapshot entries, to occasionally deadlock. Both the reactivation-key registration and snapshot-creation paths have been updated to prevent these deadlocks. (BZ#1458880)\n\n* Prior to this update, if there was some problem with a single erratum in a given repository, the \u0027reposync\u0027 command would complain and exit. The tool now logs such errors but continues to synchronize any remaining errata. (BZ#1466229)\n\n* The Satellite 5.8 release failed to include an update to a registration-failure error message that had been released for Satellite 5.7. This restores the missing update. (BZ#1467632)\n\n* Prior to this update, the list of systems in the System Set Manager failed to display the correct icons for a system\u0027s update status. This has been corrected. (BZ#1475067)\n\n* Prior to this update, a timing window in the \u0027cdn-sync\u0027 command, when synchronizing multiple channels at once, could cause some of the synchronization attempts to be refused with a 403 error. This update fixes the timing window so that multiple syncs should now work reliably. (BZ#1476924)\n\n* Prior to this update, attempting to view the systems in the System Set Manager that are affected by a given erratum would result in an internal server error. This has been fixed. (BZ#1477508)\n\n* Prior to this update, using \u0027cdn-sync --no-packages\u0027 on a specific channel would disassociate all packages from that channel. This behavior has been fixed, so that \u0027--no-packages\u0027 now just skips that step as intended. (BZ#1477667)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:2645",
"url": "https://access.redhat.com/errata/RHSA-2017:2645"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/site/articles/273633",
"url": "https://access.redhat.com/site/articles/273633"
},
{
"category": "external",
"summary": "https://access.redhat.com/site/articles/11258",
"url": "https://access.redhat.com/site/articles/11258"
},
{
"category": "external",
"summary": "1446271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1446271"
},
{
"category": "external",
"summary": "1455887",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1455887"
},
{
"category": "external",
"summary": "1458722",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458722"
},
{
"category": "external",
"summary": "1458765",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458765"
},
{
"category": "external",
"summary": "1458880",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458880"
},
{
"category": "external",
"summary": "1460208",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1460208"
},
{
"category": "external",
"summary": "1466229",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1466229"
},
{
"category": "external",
"summary": "1467632",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1467632"
},
{
"category": "external",
"summary": "1471262",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471262"
},
{
"category": "external",
"summary": "1475067",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1475067"
},
{
"category": "external",
"summary": "1477667",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1477667"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_2645.json"
}
],
"title": "Red Hat Security Advisory: satellite and spacewalk security and bug fix update",
"tracking": {
"current_release_date": "2024-11-22T11:19:22+00:00",
"generator": {
"date": "2024-11-22T11:19:22+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2017:2645",
"initial_release_date": "2017-09-06T12:26:43+00:00",
"revision_history": [
{
"date": "2017-09-06T12:26:43+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-09-06T12:26:43+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T11:19:22+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Satellite 5.8 (RHEL v.6)",
"product": {
"name": "Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:network_satellite:5.8::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product": {
"name": "Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:network_satellite:5.8::el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Satellite"
},
{
"branches": [
{
"category": "product_version",
"name": "spacewalk-schema-0:2.5.1-50.el6sat.src",
"product": {
"name": "spacewalk-schema-0:2.5.1-50.el6sat.src",
"product_id": "spacewalk-schema-0:2.5.1-50.el6sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-schema@2.5.1-50.el6sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "satellite-schema-0:5.8.0.33-1.el6sat.src",
"product": {
"name": "satellite-schema-0:5.8.0.33-1.el6sat.src",
"product_id": "satellite-schema-0:5.8.0.33-1.el6sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-schema@5.8.0.33-1.el6sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-0:2.5.3-151.el6sat.src",
"product": {
"name": "spacewalk-backend-0:2.5.3-151.el6sat.src",
"product_id": "spacewalk-backend-0:2.5.3-151.el6sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend@2.5.3-151.el6sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "spacewalk-java-0:2.5.14-95.el6sat.src",
"product": {
"name": "spacewalk-java-0:2.5.14-95.el6sat.src",
"product_id": "spacewalk-java-0:2.5.14-95.el6sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-java@2.5.14-95.el6sat?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"product": {
"name": "spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"product_id": "spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-schema@2.5.1-50.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"product": {
"name": "satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"product_id": "satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-schema@5.8.0.33-1.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-package-push-server@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-cdn@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-xml-export-libs@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-config-files@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-sql-oracle@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-app@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-tools@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-libs@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-sql-postgresql@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-iss-export@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-server@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-config-files-common@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-config-files-tool@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-applet@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-sql@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-iss@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"product": {
"name": "spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"product_id": "spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-xmlrpc@2.5.3-151.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"product": {
"name": "spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"product_id": "spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-java-postgresql@2.5.14-95.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"product": {
"name": "spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"product_id": "spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-java-oracle@2.5.14-95.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch",
"product": {
"name": "spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch",
"product_id": "spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-taskomatic@2.5.14-95.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-java-0:2.5.14-95.el6sat.noarch",
"product": {
"name": "spacewalk-java-0:2.5.14-95.el6sat.noarch",
"product_id": "spacewalk-java-0:2.5.14-95.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-java@2.5.14-95.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"product": {
"name": "spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"product_id": "spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-java-config@2.5.14-95.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"product": {
"name": "spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"product_id": "spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-java-lib@2.5.14-95.el6sat?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-schema-0:5.8.0.33-1.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:satellite-schema-0:5.8.0.33-1.el6sat.noarch"
},
"product_reference": "satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-schema-0:5.8.0.33-1.el6sat.src as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:satellite-schema-0:5.8.0.33-1.el6sat.src"
},
"product_reference": "satellite-schema-0:5.8.0.33-1.el6sat.src",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-0:2.5.3-151.el6sat.src as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-0:2.5.3-151.el6sat.src"
},
"product_reference": "spacewalk-backend-0:2.5.3-151.el6sat.src",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-app-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-app-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-server-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-server-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-java-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-java-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-0:2.5.14-95.el6sat.src as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-java-0:2.5.14-95.el6sat.src"
},
"product_reference": "spacewalk-java-0:2.5.14-95.el6sat.src",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-config-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-java-config-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-lib-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-java-lib-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-schema-0:2.5.1-50.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-schema-0:2.5.1-50.el6sat.noarch"
},
"product_reference": "spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-schema-0:2.5.1-50.el6sat.src as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-schema-0:2.5.1-50.el6sat.src"
},
"product_reference": "spacewalk-schema-0:2.5.1-50.el6sat.src",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 ELS (RHEL v.6)",
"product_id": "6Server-Satellite58-ELS:spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-schema-0:5.8.0.33-1.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:satellite-schema-0:5.8.0.33-1.el6sat.noarch"
},
"product_reference": "satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-schema-0:5.8.0.33-1.el6sat.src as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:satellite-schema-0:5.8.0.33-1.el6sat.src"
},
"product_reference": "satellite-schema-0:5.8.0.33-1.el6sat.src",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-0:2.5.3-151.el6sat.src as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-0:2.5.3-151.el6sat.src"
},
"product_reference": "spacewalk-backend-0:2.5.3-151.el6sat.src",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-app-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-app-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-server-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-server-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch"
},
"product_reference": "spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-java-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-java-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-0:2.5.14-95.el6sat.src as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-java-0:2.5.14-95.el6sat.src"
},
"product_reference": "spacewalk-java-0:2.5.14-95.el6sat.src",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-config-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-java-config-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-lib-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-java-lib-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-schema-0:2.5.1-50.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-schema-0:2.5.1-50.el6sat.noarch"
},
"product_reference": "spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-schema-0:2.5.1-50.el6sat.src as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-schema-0:2.5.1-50.el6sat.src"
},
"product_reference": "spacewalk-schema-0:2.5.1-50.el6sat.src",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch"
},
"product_reference": "spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Ales Dujicek"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2017-7538",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2017-06-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1471262"
}
],
"notes": [
{
"category": "description",
"text": "A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5. A user able to change an organization\u0027s name could exploit this flaw to perform XSS attacks against other Satellite users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "5: organization name allows XSS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58-ELS:satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"6Server-Satellite58-ELS:satellite-schema-0:5.8.0.33-1.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-0:2.5.3-151.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-0:2.5.14-95.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-schema-0:2.5.1-50.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"6Server-Satellite58:satellite-schema-0:5.8.0.33-1.el6sat.src",
"6Server-Satellite58:spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-0:2.5.3-151.el6sat.src",
"6Server-Satellite58:spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-0:2.5.14-95.el6sat.src",
"6Server-Satellite58:spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"6Server-Satellite58:spacewalk-schema-0:2.5.1-50.el6sat.src",
"6Server-Satellite58:spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7538"
},
{
"category": "external",
"summary": "RHBZ#1471262",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471262"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7538",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7538"
}
],
"release_date": "2017-07-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-09-06T12:26:43+00:00",
"details": "Application of this errata involves updating the database schema.\n\nBefore applying this update, make sure all previously-released errata relevant to your system have been applied. To apply this erratum, take the following steps:\n\n* Shut down Red Hat Satellite by running the following command as root:\n\nrhn-satellite stop\n\n* Backup the database. For embedded or managed database variants, please consult Red Hat Satellite 5.8 documentation. For an external database, consult your database administrator.\n\n* Upgrade the errata packages. Details on how to apply this update are available at https://access.redhat.com/site/articles/11258\n\n* Update the database schema using the spacewalk-schema-upgrade command. To do so, run as root:\n\nspacewalk-schema-upgrade\n\nThis process will update your database schema to the latest version. The\nspacewalk-schema-upgrade command will inform you about the results of the\nupgrade and exact locations of schema upgrade log files.\n\n* Restart Red Hat Satellite by running the following as root:\n\nrhn-satellite start",
"product_ids": [
"6Server-Satellite58-ELS:satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"6Server-Satellite58-ELS:satellite-schema-0:5.8.0.33-1.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-0:2.5.3-151.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-0:2.5.14-95.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-schema-0:2.5.1-50.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"6Server-Satellite58:satellite-schema-0:5.8.0.33-1.el6sat.src",
"6Server-Satellite58:spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-0:2.5.3-151.el6sat.src",
"6Server-Satellite58:spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-0:2.5.14-95.el6sat.src",
"6Server-Satellite58:spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"6Server-Satellite58:spacewalk-schema-0:2.5.1-50.el6sat.src",
"6Server-Satellite58:spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:2645"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.5,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58-ELS:satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"6Server-Satellite58-ELS:satellite-schema-0:5.8.0.33-1.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-0:2.5.3-151.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-0:2.5.14-95.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"6Server-Satellite58-ELS:spacewalk-schema-0:2.5.1-50.el6sat.src",
"6Server-Satellite58-ELS:spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:satellite-schema-0:5.8.0.33-1.el6sat.noarch",
"6Server-Satellite58:satellite-schema-0:5.8.0.33-1.el6sat.src",
"6Server-Satellite58:spacewalk-backend-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-0:2.5.3-151.el6sat.src",
"6Server-Satellite58:spacewalk-backend-app-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-applet-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-cdn-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-common-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-tool-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-iss-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-iss-export-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-package-push-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-server-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-oracle-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-postgresql-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-tools-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-xml-export-libs-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-xmlrpc-0:2.5.3-151.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-0:2.5.14-95.el6sat.src",
"6Server-Satellite58:spacewalk-java-config-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-lib-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-oracle-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-java-postgresql-0:2.5.14-95.el6sat.noarch",
"6Server-Satellite58:spacewalk-schema-0:2.5.1-50.el6sat.noarch",
"6Server-Satellite58:spacewalk-schema-0:2.5.1-50.el6sat.src",
"6Server-Satellite58:spacewalk-taskomatic-0:2.5.14-95.el6sat.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "5: organization name allows XSS"
}
]
}
FKIE_CVE-2017-7538
Vulnerability from fkie_nvd - Published: 2018-07-26 15:29 - Updated: 2024-11-21 03:32
Severity ?
3.5 (Low) - CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
5.4 (Medium) - CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
5.4 (Medium) - CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Summary
A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5, before 5.8. A user able to change an organization's name could exploit this flaw to perform XSS attacks against other Satellite users.
References
| URL | Tags | ||
|---|---|---|---|
| secalert@redhat.com | http://www.securitytracker.com/id/1039267 | Third Party Advisory, VDB Entry | |
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2017:2645 | Vendor Advisory | |
| secalert@redhat.com | https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7538 | Issue Tracking, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securitytracker.com/id/1039267 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2017:2645 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7538 | Issue Tracking, Vendor Advisory |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:redhat:satellite:*:*:*:*:*:*:*:*",
"matchCriteriaId": "EAC7E694-84AE-4EBD-BCA6-5A1564FABD58",
"versionEndExcluding": "5.8",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5, before 5.8. A user able to change an organization\u0027s name could exploit this flaw to perform XSS attacks against other Satellite users."
},
{
"lang": "es",
"value": "Se ha detectado una vulnerabilidad Cross-Site Scripting (XSS) en la manera en la que se muestra un nombre de organizaci\u00f3n en Satellite 5 en versiones anteriores a la 5.8. Un usuario capaz de cambiar el nombre de una organizaci\u00f3n podr\u00eda explotar esta vulnerabilidad para realizar ataques Cross-Site Scripting (XSS) contra otros usuarios de Satellite."
}
],
"id": "CVE-2017-7538",
"lastModified": "2024-11-21T03:32:07.213",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "LOW",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 3.5,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:S/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 6.8,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.5,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"exploitabilityScore": 2.1,
"impactScore": 1.4,
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"exploitabilityScore": 2.3,
"impactScore": 2.7,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2018-07-26T15:29:00.260",
"references": [
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id/1039267"
},
{
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2645"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Vendor Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7538"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id/1039267"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2645"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Vendor Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7538"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-79"
}
],
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-79"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GSD-2017-7538
Vulnerability from gsd - Updated: 2023-12-13 01:21Details
A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5, before 5.8. A user able to change an organization's name could exploit this flaw to perform XSS attacks against other Satellite users.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2017-7538",
"description": "A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5, before 5.8. A user able to change an organization\u0027s name could exploit this flaw to perform XSS attacks against other Satellite users.",
"id": "GSD-2017-7538",
"references": [
"https://www.suse.com/security/cve/CVE-2017-7538.html",
"https://access.redhat.com/errata/RHSA-2017:2645"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2017-7538"
],
"details": "A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5, before 5.8. A user able to change an organization\u0027s name could exploit this flaw to perform XSS attacks against other Satellite users.",
"id": "GSD-2017-7538",
"modified": "2023-12-13T01:21:06.556302Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2017-7538",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Satellite",
"version": {
"version_data": [
{
"version_value": "5.8"
}
]
}
}
]
},
"vendor_name": "Red Hat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5, before 5.8. A user able to change an organization\u0027s name could exploit this flaw to perform XSS attacks against other Satellite users."
}
]
},
"impact": {
"cvss": [
[
{
"vectorString": "3.5/CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N",
"version": "3.0"
}
]
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-79"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7538",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7538"
},
{
"name": "1039267",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1039267"
},
{
"name": "RHSA-2017:2645",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2017:2645"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:redhat:satellite:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "5.8",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2017-7538"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5, before 5.8. A user able to change an organization\u0027s name could exploit this flaw to perform XSS attacks against other Satellite users."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7538",
"refsource": "CONFIRM",
"tags": [
"Issue Tracking",
"Vendor Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7538"
},
{
"name": "RHSA-2017:2645",
"refsource": "REDHAT",
"tags": [
"Vendor Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:2645"
},
{
"name": "1039267",
"refsource": "SECTRACK",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id/1039267"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 3.5,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:S/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 6.8,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "LOW",
"userInteractionRequired": true
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"exploitabilityScore": 2.3,
"impactScore": 2.7
}
},
"lastModifiedDate": "2019-10-09T23:29Z",
"publishedDate": "2018-07-26T15:29Z"
}
}
}
GHSA-5V3C-P3H6-5654
Vulnerability from github – Published: 2022-05-13 01:36 – Updated: 2022-05-13 01:36
VLAI?
Details
A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5, before 5.8. A user able to change an organization's name could exploit this flaw to perform XSS attacks against other Satellite users.
Severity ?
5.4 (Medium)
{
"affected": [],
"aliases": [
"CVE-2017-7538"
],
"database_specific": {
"cwe_ids": [
"CWE-79"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2018-07-26T15:29:00Z",
"severity": "MODERATE"
},
"details": "A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5, before 5.8. A user able to change an organization\u0027s name could exploit this flaw to perform XSS attacks against other Satellite users.",
"id": "GHSA-5v3c-p3h6-5654",
"modified": "2022-05-13T01:36:17Z",
"published": "2022-05-13T01:36:17Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7538"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2017:2645"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7538"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1039267"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"type": "CVSS_V3"
}
]
}
SUSE-SU-2017:2453-1
Vulnerability from csaf_suse - Published: 2017-09-13 13:50 - Updated: 2017-09-13 13:50Summary
Security update for SUSE Manager Server 3.0
Notes
Title of the patch
Security update for SUSE Manager Server 3.0
Description of the patch
This update for the SUSE Manager Server 3.0 provides several fixes and improvements.
The following security issue has been fixed:
spacewalk-java:
- CVE-2017-7538: Do not allow HTML code injection via Cross Site Scripting (XSS) in the Organization Name. (bsc#1048968)
Additionally, the following non-security issues have been fixed:
salt-netapi-client:
- Fix date format for Schedule.
- Fix sending kwarg in payload in RunnerCall.
- Better error handling in Runner and Wheel calls.
- Increase the default SOCKET_TIMEOUT to 20 seconds
smdba:
- Do not set default_statistics_target. (bsc#1022286)
- Support postgresql96. (bsc#1045152)
- Prevent use of /var/lib/pgsql/data. (bsc#1024058)
- Remove copyright message every time shown.
- On systemd-enabled systems use it for start/stop PostgreSQL. (bsc#1024058)
spacewalk-backend:
- Increase rpclib timeout to 10 minutes. (bsc#1026930)
- Adapt for the new gpgcheck flag for the channels.
spacewalk-branding:
- Fix overlapping text narrow window. (bsc#1009118)
spacewalk-config:
- Resolve comps.xml file for repositories. (bsc#1048528)
spacewalk-java:
- Delete and create new ServerNetAddress if it already exists on Hardware refresh. (bsc#1054225)
- Fix enter key submit on ListTag filter input. (bsc#1048762)
- Create VirtpollerData object with JSON content instead null. (bsc#1049170)
- Prevent malformed XML if 'arch' is set to NULL. (bsc#1045575)
- Resolve comps.xml file for repositories. (bsc#1048528)
- Don't add default channel if AK is not valid. (bsc#1047656)
- Add 'Enable GPG check' function for channels.
- Regenerate pillar for the minions using the channel being modified.
- Remove executable bit from service files. (bsc#1051518)
- Fix wrong openscap xid. (bsc#1030898)
- Fix overlapping text narrow window. (bsc#1009118)
- Fix broken link. (bsc#1033999)
- Fix alignment on the org details. (bsc#1017513)
- Update channels.xml with OpenStack Cloud Continuous Delivery 6. (bsc#1039458)
- Handle possible wrong UUIDs on SLE 11 minions. (bsc#1046218)
- Allow blank key generation. (bsc#1032350)
spacewalk-search:
- Remove executable bit from service files. (bsc#1051518)
spacewalk-setup-jabberd:
- Change default backend for jabberd to sqlite. (bsc#1047155)
spacewalk-web:
- Fix enter key submit on ListTag filter input. (bsc#1048762)
susemanager:
- Do not use checkpoint_segments parameter during migrations.
- Enable migration from postgresql94 to postgresql96.
- Create bootstrap repository for SUSE Linux Enterprise Server for SAP 11 SP1. (bsc#1049471)
- Adjust the bootstrap repository with SUSE Linux Enterprise 12 SP3 repositories.
susemanager-docs_en:
- Update text and image files.
susemanager-schema:
- Adapt for the new gpgcheck flag for the channels.
susemanager-sync-data:
- Add SUSE Manager Proxy 3.0 channels for SUSE Linux Enterprise Server 12 SP3. (bsc#1053850)
- Support SUSE Enterprise Storage 5 and SUSE Linux Enterprise Server 12 SP3 for SAP Applications
on ppc64le. (bsc#1028098)
- Update channels.xml with OpenStack Cloud Continuous Delivery 6. (bsc#1039458)
- Add SUSE Linux Enterprise 12 SP3 related products. (bsc#1037609)
virtual-host-gatherer:
- Implement kubernetes gatherer module.
How to apply this update:
1. Log in as root user to the SUSE Manager server.
2. Stop the Spacewalk service:
spacewalk-service stop
3. Apply the patch using either zypper patch or YaST Online Update.
4. Upgrade the database schema:
spacewalk-schema-upgrade
5. Start the Spacewalk service:
spacewalk-service start
Patchnames
SUSE-SUSE-Manager-Server-3.0-2017-1520
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for SUSE Manager Server 3.0",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for the SUSE Manager Server 3.0 provides several fixes and improvements.\n\nThe following security issue has been fixed:\n\nspacewalk-java:\n\n- CVE-2017-7538: Do not allow HTML code injection via Cross Site Scripting (XSS) in the Organization Name. (bsc#1048968)\n\nAdditionally, the following non-security issues have been fixed:\n\nsalt-netapi-client:\n\n- Fix date format for Schedule.\n- Fix sending kwarg in payload in RunnerCall.\n- Better error handling in Runner and Wheel calls.\n- Increase the default SOCKET_TIMEOUT to 20 seconds\n\nsmdba:\n\n- Do not set default_statistics_target. (bsc#1022286)\n- Support postgresql96. (bsc#1045152)\n- Prevent use of /var/lib/pgsql/data. (bsc#1024058)\n- Remove copyright message every time shown.\n- On systemd-enabled systems use it for start/stop PostgreSQL. (bsc#1024058)\n\nspacewalk-backend:\n\n- Increase rpclib timeout to 10 minutes. (bsc#1026930)\n- Adapt for the new gpgcheck flag for the channels.\n\nspacewalk-branding:\n\n- Fix overlapping text narrow window. (bsc#1009118)\n\nspacewalk-config:\n\n- Resolve comps.xml file for repositories. (bsc#1048528)\n\nspacewalk-java:\n\n- Delete and create new ServerNetAddress if it already exists on Hardware refresh. (bsc#1054225)\n- Fix enter key submit on ListTag filter input. (bsc#1048762)\n- Create VirtpollerData object with JSON content instead null. (bsc#1049170)\n- Prevent malformed XML if \u0027arch\u0027 is set to NULL. (bsc#1045575)\n- Resolve comps.xml file for repositories. (bsc#1048528)\n- Don\u0027t add default channel if AK is not valid. (bsc#1047656)\n- Add \u0027Enable GPG check\u0027 function for channels.\n- Regenerate pillar for the minions using the channel being modified.\n- Remove executable bit from service files. (bsc#1051518)\n- Fix wrong openscap xid. (bsc#1030898)\n- Fix overlapping text narrow window. (bsc#1009118)\n- Fix broken link. (bsc#1033999)\n- Fix alignment on the org details. (bsc#1017513)\n- Update channels.xml with OpenStack Cloud Continuous Delivery 6. (bsc#1039458)\n- Handle possible wrong UUIDs on SLE 11 minions. (bsc#1046218)\n- Allow blank key generation. (bsc#1032350)\n\nspacewalk-search:\n\n- Remove executable bit from service files. (bsc#1051518)\n\nspacewalk-setup-jabberd:\n\n- Change default backend for jabberd to sqlite. (bsc#1047155)\n\nspacewalk-web:\n\n- Fix enter key submit on ListTag filter input. (bsc#1048762)\n\nsusemanager:\n\n- Do not use checkpoint_segments parameter during migrations.\n- Enable migration from postgresql94 to postgresql96.\n- Create bootstrap repository for SUSE Linux Enterprise Server for SAP 11 SP1. (bsc#1049471)\n- Adjust the bootstrap repository with SUSE Linux Enterprise 12 SP3 repositories.\n\nsusemanager-docs_en:\n\n- Update text and image files.\n\nsusemanager-schema:\n\n- Adapt for the new gpgcheck flag for the channels.\n\nsusemanager-sync-data:\n\n- Add SUSE Manager Proxy 3.0 channels for SUSE Linux Enterprise Server 12 SP3. (bsc#1053850)\n- Support SUSE Enterprise Storage 5 and SUSE Linux Enterprise Server 12 SP3 for SAP Applications\n on ppc64le. (bsc#1028098)\n- Update channels.xml with OpenStack Cloud Continuous Delivery 6. (bsc#1039458)\n- Add SUSE Linux Enterprise 12 SP3 related products. (bsc#1037609)\n\nvirtual-host-gatherer:\n\n- Implement kubernetes gatherer module.\n\nHow to apply this update:\n1. Log in as root user to the SUSE Manager server.\n2. Stop the Spacewalk service:\nspacewalk-service stop\n3. Apply the patch using either zypper patch or YaST Online Update.\n4. Upgrade the database schema:\nspacewalk-schema-upgrade\n5. Start the Spacewalk service:\nspacewalk-service start\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SUSE-Manager-Server-3.0-2017-1520",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_2453-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2017:2453-1",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172453-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2017:2453-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2017-September/003214.html"
},
{
"category": "self",
"summary": "SUSE Bug 1009118",
"url": "https://bugzilla.suse.com/1009118"
},
{
"category": "self",
"summary": "SUSE Bug 1017513",
"url": "https://bugzilla.suse.com/1017513"
},
{
"category": "self",
"summary": "SUSE Bug 1022286",
"url": "https://bugzilla.suse.com/1022286"
},
{
"category": "self",
"summary": "SUSE Bug 1024058",
"url": "https://bugzilla.suse.com/1024058"
},
{
"category": "self",
"summary": "SUSE Bug 1026930",
"url": "https://bugzilla.suse.com/1026930"
},
{
"category": "self",
"summary": "SUSE Bug 1028098",
"url": "https://bugzilla.suse.com/1028098"
},
{
"category": "self",
"summary": "SUSE Bug 1030898",
"url": "https://bugzilla.suse.com/1030898"
},
{
"category": "self",
"summary": "SUSE Bug 1032350",
"url": "https://bugzilla.suse.com/1032350"
},
{
"category": "self",
"summary": "SUSE Bug 1033999",
"url": "https://bugzilla.suse.com/1033999"
},
{
"category": "self",
"summary": "SUSE Bug 1037609",
"url": "https://bugzilla.suse.com/1037609"
},
{
"category": "self",
"summary": "SUSE Bug 1039458",
"url": "https://bugzilla.suse.com/1039458"
},
{
"category": "self",
"summary": "SUSE Bug 1045152",
"url": "https://bugzilla.suse.com/1045152"
},
{
"category": "self",
"summary": "SUSE Bug 1045575",
"url": "https://bugzilla.suse.com/1045575"
},
{
"category": "self",
"summary": "SUSE Bug 1046218",
"url": "https://bugzilla.suse.com/1046218"
},
{
"category": "self",
"summary": "SUSE Bug 1047155",
"url": "https://bugzilla.suse.com/1047155"
},
{
"category": "self",
"summary": "SUSE Bug 1047656",
"url": "https://bugzilla.suse.com/1047656"
},
{
"category": "self",
"summary": "SUSE Bug 1048528",
"url": "https://bugzilla.suse.com/1048528"
},
{
"category": "self",
"summary": "SUSE Bug 1048762",
"url": "https://bugzilla.suse.com/1048762"
},
{
"category": "self",
"summary": "SUSE Bug 1048968",
"url": "https://bugzilla.suse.com/1048968"
},
{
"category": "self",
"summary": "SUSE Bug 1049170",
"url": "https://bugzilla.suse.com/1049170"
},
{
"category": "self",
"summary": "SUSE Bug 1049471",
"url": "https://bugzilla.suse.com/1049471"
},
{
"category": "self",
"summary": "SUSE Bug 1051518",
"url": "https://bugzilla.suse.com/1051518"
},
{
"category": "self",
"summary": "SUSE Bug 1053850",
"url": "https://bugzilla.suse.com/1053850"
},
{
"category": "self",
"summary": "SUSE Bug 1054225",
"url": "https://bugzilla.suse.com/1054225"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7538 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7538/"
}
],
"title": "Security update for SUSE Manager Server 3.0",
"tracking": {
"current_release_date": "2017-09-13T13:50:30Z",
"generator": {
"date": "2017-09-13T13:50:30Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2017:2453-1",
"initial_release_date": "2017-09-13T13:50:30Z",
"revision_history": [
{
"date": "2017-09-13T13:50:30Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "salt-netapi-client-0.12.0-16.3.1.noarch",
"product": {
"name": "salt-netapi-client-0.12.0-16.3.1.noarch",
"product_id": "salt-netapi-client-0.12.0-16.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-2.5.24.13-26.8.1.noarch",
"product": {
"name": "spacewalk-backend-2.5.24.13-26.8.1.noarch",
"product_id": "spacewalk-backend-2.5.24.13-26.8.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-app-2.5.24.13-26.8.1.noarch",
"product": {
"name": "spacewalk-backend-app-2.5.24.13-26.8.1.noarch",
"product_id": "spacewalk-backend-app-2.5.24.13-26.8.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-applet-2.5.24.13-26.8.1.noarch",
"product": {
"name": "spacewalk-backend-applet-2.5.24.13-26.8.1.noarch",
"product_id": "spacewalk-backend-applet-2.5.24.13-26.8.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-2.5.24.13-26.8.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-2.5.24.13-26.8.1.noarch",
"product_id": "spacewalk-backend-config-files-2.5.24.13-26.8.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-common-2.5.24.13-26.8.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-common-2.5.24.13-26.8.1.noarch",
"product_id": "spacewalk-backend-config-files-common-2.5.24.13-26.8.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-tool-2.5.24.13-26.8.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-tool-2.5.24.13-26.8.1.noarch",
"product_id": "spacewalk-backend-config-files-tool-2.5.24.13-26.8.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-2.5.24.13-26.8.1.noarch",
"product": {
"name": "spacewalk-backend-iss-2.5.24.13-26.8.1.noarch",
"product_id": "spacewalk-backend-iss-2.5.24.13-26.8.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-export-2.5.24.13-26.8.1.noarch",
"product": {
"name": "spacewalk-backend-iss-export-2.5.24.13-26.8.1.noarch",
"product_id": "spacewalk-backend-iss-export-2.5.24.13-26.8.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-2.5.24.13-26.8.1.noarch",
"product": {
"name": "spacewalk-backend-libs-2.5.24.13-26.8.1.noarch",
"product_id": "spacewalk-backend-libs-2.5.24.13-26.8.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-package-push-server-2.5.24.13-26.8.1.noarch",
"product": {
"name": "spacewalk-backend-package-push-server-2.5.24.13-26.8.1.noarch",
"product_id": "spacewalk-backend-package-push-server-2.5.24.13-26.8.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-server-2.5.24.13-26.8.1.noarch",
"product": {
"name": "spacewalk-backend-server-2.5.24.13-26.8.1.noarch",
"product_id": "spacewalk-backend-server-2.5.24.13-26.8.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-2.5.24.13-26.8.1.noarch",
"product": {
"name": "spacewalk-backend-sql-2.5.24.13-26.8.1.noarch",
"product_id": "spacewalk-backend-sql-2.5.24.13-26.8.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-oracle-2.5.24.13-26.8.1.noarch",
"product": {
"name": "spacewalk-backend-sql-oracle-2.5.24.13-26.8.1.noarch",
"product_id": "spacewalk-backend-sql-oracle-2.5.24.13-26.8.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-postgresql-2.5.24.13-26.8.1.noarch",
"product": {
"name": "spacewalk-backend-sql-postgresql-2.5.24.13-26.8.1.noarch",
"product_id": "spacewalk-backend-sql-postgresql-2.5.24.13-26.8.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-tools-2.5.24.13-26.8.1.noarch",
"product": {
"name": "spacewalk-backend-tools-2.5.24.13-26.8.1.noarch",
"product_id": "spacewalk-backend-tools-2.5.24.13-26.8.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xml-export-libs-2.5.24.13-26.8.1.noarch",
"product": {
"name": "spacewalk-backend-xml-export-libs-2.5.24.13-26.8.1.noarch",
"product_id": "spacewalk-backend-xml-export-libs-2.5.24.13-26.8.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xmlrpc-2.5.24.13-26.8.1.noarch",
"product": {
"name": "spacewalk-backend-xmlrpc-2.5.24.13-26.8.1.noarch",
"product_id": "spacewalk-backend-xmlrpc-2.5.24.13-26.8.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-2.5.7.18-25.6.1.noarch",
"product": {
"name": "spacewalk-base-2.5.7.18-25.6.1.noarch",
"product_id": "spacewalk-base-2.5.7.18-25.6.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-minimal-2.5.7.18-25.6.1.noarch",
"product": {
"name": "spacewalk-base-minimal-2.5.7.18-25.6.1.noarch",
"product_id": "spacewalk-base-minimal-2.5.7.18-25.6.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-minimal-config-2.5.7.18-25.6.1.noarch",
"product": {
"name": "spacewalk-base-minimal-config-2.5.7.18-25.6.1.noarch",
"product_id": "spacewalk-base-minimal-config-2.5.7.18-25.6.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-config-2.5.2.8-13.3.1.noarch",
"product": {
"name": "spacewalk-config-2.5.2.8-13.3.1.noarch",
"product_id": "spacewalk-config-2.5.2.8-13.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-html-2.5.7.18-25.6.1.noarch",
"product": {
"name": "spacewalk-html-2.5.7.18-25.6.1.noarch",
"product_id": "spacewalk-html-2.5.7.18-25.6.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-2.5.59.17-27.6.1.noarch",
"product": {
"name": "spacewalk-java-2.5.59.17-27.6.1.noarch",
"product_id": "spacewalk-java-2.5.59.17-27.6.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-config-2.5.59.17-27.6.1.noarch",
"product": {
"name": "spacewalk-java-config-2.5.59.17-27.6.1.noarch",
"product_id": "spacewalk-java-config-2.5.59.17-27.6.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-lib-2.5.59.17-27.6.1.noarch",
"product": {
"name": "spacewalk-java-lib-2.5.59.17-27.6.1.noarch",
"product_id": "spacewalk-java-lib-2.5.59.17-27.6.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-oracle-2.5.59.17-27.6.1.noarch",
"product": {
"name": "spacewalk-java-oracle-2.5.59.17-27.6.1.noarch",
"product_id": "spacewalk-java-oracle-2.5.59.17-27.6.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-postgresql-2.5.59.17-27.6.1.noarch",
"product": {
"name": "spacewalk-java-postgresql-2.5.59.17-27.6.1.noarch",
"product_id": "spacewalk-java-postgresql-2.5.59.17-27.6.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-search-2.5.2.3-4.3.1.noarch",
"product": {
"name": "spacewalk-search-2.5.2.3-4.3.1.noarch",
"product_id": "spacewalk-search-2.5.2.3-4.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-setup-jabberd-2.5.0.3-2.3.1.noarch",
"product": {
"name": "spacewalk-setup-jabberd-2.5.0.3-2.3.1.noarch",
"product_id": "spacewalk-setup-jabberd-2.5.0.3-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-taskomatic-2.5.59.17-27.6.1.noarch",
"product": {
"name": "spacewalk-taskomatic-2.5.59.17-27.6.1.noarch",
"product_id": "spacewalk-taskomatic-2.5.59.17-27.6.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-advanced-topics_en-pdf-3-25.3.1.noarch",
"product": {
"name": "susemanager-advanced-topics_en-pdf-3-25.3.1.noarch",
"product_id": "susemanager-advanced-topics_en-pdf-3-25.3.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-best-practices_en-pdf-3-25.3.1.noarch",
"product": {
"name": "susemanager-best-practices_en-pdf-3-25.3.1.noarch",
"product_id": "susemanager-best-practices_en-pdf-3-25.3.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-docs_en-3-25.3.1.noarch",
"product": {
"name": "susemanager-docs_en-3-25.3.1.noarch",
"product_id": "susemanager-docs_en-3-25.3.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-getting-started_en-pdf-3-25.3.1.noarch",
"product": {
"name": "susemanager-getting-started_en-pdf-3-25.3.1.noarch",
"product_id": "susemanager-getting-started_en-pdf-3-25.3.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-jsp_en-3-25.3.1.noarch",
"product": {
"name": "susemanager-jsp_en-3-25.3.1.noarch",
"product_id": "susemanager-jsp_en-3-25.3.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-reference_en-pdf-3-25.3.1.noarch",
"product": {
"name": "susemanager-reference_en-pdf-3-25.3.1.noarch",
"product_id": "susemanager-reference_en-pdf-3-25.3.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-schema-3.0.21-25.3.1.noarch",
"product": {
"name": "susemanager-schema-3.0.21-25.3.1.noarch",
"product_id": "susemanager-schema-3.0.21-25.3.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-sync-data-3.0.18-28.3.1.noarch",
"product": {
"name": "susemanager-sync-data-3.0.18-28.3.1.noarch",
"product_id": "susemanager-sync-data-3.0.18-28.3.1.noarch"
}
},
{
"category": "product_version",
"name": "virtual-host-gatherer-1.0.14-7.3.1.noarch",
"product": {
"name": "virtual-host-gatherer-1.0.14-7.3.1.noarch",
"product_id": "virtual-host-gatherer-1.0.14-7.3.1.noarch"
}
},
{
"category": "product_version",
"name": "virtual-host-gatherer-VMware-1.0.14-7.3.1.noarch",
"product": {
"name": "virtual-host-gatherer-VMware-1.0.14-7.3.1.noarch",
"product_id": "virtual-host-gatherer-VMware-1.0.14-7.3.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "smdba-1.6.0-0.7.3.1.s390x",
"product": {
"name": "smdba-1.6.0-0.7.3.1.s390x",
"product_id": "smdba-1.6.0-0.7.3.1.s390x"
}
},
{
"category": "product_version",
"name": "spacewalk-branding-2.5.2.14-16.3.1.s390x",
"product": {
"name": "spacewalk-branding-2.5.2.14-16.3.1.s390x",
"product_id": "spacewalk-branding-2.5.2.14-16.3.1.s390x"
}
},
{
"category": "product_version",
"name": "susemanager-3.0.23-25.3.1.s390x",
"product": {
"name": "susemanager-3.0.23-25.3.1.s390x",
"product_id": "susemanager-3.0.23-25.3.1.s390x"
}
},
{
"category": "product_version",
"name": "susemanager-tools-3.0.23-25.3.1.s390x",
"product": {
"name": "susemanager-tools-3.0.23-25.3.1.s390x",
"product_id": "susemanager-tools-3.0.23-25.3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "smdba-1.6.0-0.7.3.1.x86_64",
"product": {
"name": "smdba-1.6.0-0.7.3.1.x86_64",
"product_id": "smdba-1.6.0-0.7.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "spacewalk-branding-2.5.2.14-16.3.1.x86_64",
"product": {
"name": "spacewalk-branding-2.5.2.14-16.3.1.x86_64",
"product_id": "spacewalk-branding-2.5.2.14-16.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "susemanager-3.0.23-25.3.1.x86_64",
"product": {
"name": "susemanager-3.0.23-25.3.1.x86_64",
"product_id": "susemanager-3.0.23-25.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "susemanager-tools-3.0.23-25.3.1.x86_64",
"product": {
"name": "susemanager-tools-3.0.23-25.3.1.x86_64",
"product_id": "susemanager-tools-3.0.23-25.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Manager Server 3.0",
"product": {
"name": "SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-server:3.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "salt-netapi-client-0.12.0-16.3.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:salt-netapi-client-0.12.0-16.3.1.noarch"
},
"product_reference": "salt-netapi-client-0.12.0-16.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "smdba-1.6.0-0.7.3.1.s390x as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:smdba-1.6.0-0.7.3.1.s390x"
},
"product_reference": "smdba-1.6.0-0.7.3.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "smdba-1.6.0-0.7.3.1.x86_64 as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:smdba-1.6.0-0.7.3.1.x86_64"
},
"product_reference": "smdba-1.6.0-0.7.3.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-2.5.24.13-26.8.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-2.5.24.13-26.8.1.noarch"
},
"product_reference": "spacewalk-backend-2.5.24.13-26.8.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-app-2.5.24.13-26.8.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-app-2.5.24.13-26.8.1.noarch"
},
"product_reference": "spacewalk-backend-app-2.5.24.13-26.8.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-applet-2.5.24.13-26.8.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-applet-2.5.24.13-26.8.1.noarch"
},
"product_reference": "spacewalk-backend-applet-2.5.24.13-26.8.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-2.5.24.13-26.8.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-config-files-2.5.24.13-26.8.1.noarch"
},
"product_reference": "spacewalk-backend-config-files-2.5.24.13-26.8.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-common-2.5.24.13-26.8.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-config-files-common-2.5.24.13-26.8.1.noarch"
},
"product_reference": "spacewalk-backend-config-files-common-2.5.24.13-26.8.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-tool-2.5.24.13-26.8.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-config-files-tool-2.5.24.13-26.8.1.noarch"
},
"product_reference": "spacewalk-backend-config-files-tool-2.5.24.13-26.8.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-2.5.24.13-26.8.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-iss-2.5.24.13-26.8.1.noarch"
},
"product_reference": "spacewalk-backend-iss-2.5.24.13-26.8.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-export-2.5.24.13-26.8.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-iss-export-2.5.24.13-26.8.1.noarch"
},
"product_reference": "spacewalk-backend-iss-export-2.5.24.13-26.8.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-2.5.24.13-26.8.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-libs-2.5.24.13-26.8.1.noarch"
},
"product_reference": "spacewalk-backend-libs-2.5.24.13-26.8.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-package-push-server-2.5.24.13-26.8.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-package-push-server-2.5.24.13-26.8.1.noarch"
},
"product_reference": "spacewalk-backend-package-push-server-2.5.24.13-26.8.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-server-2.5.24.13-26.8.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-server-2.5.24.13-26.8.1.noarch"
},
"product_reference": "spacewalk-backend-server-2.5.24.13-26.8.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-2.5.24.13-26.8.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-sql-2.5.24.13-26.8.1.noarch"
},
"product_reference": "spacewalk-backend-sql-2.5.24.13-26.8.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-oracle-2.5.24.13-26.8.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-sql-oracle-2.5.24.13-26.8.1.noarch"
},
"product_reference": "spacewalk-backend-sql-oracle-2.5.24.13-26.8.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-postgresql-2.5.24.13-26.8.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-sql-postgresql-2.5.24.13-26.8.1.noarch"
},
"product_reference": "spacewalk-backend-sql-postgresql-2.5.24.13-26.8.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-tools-2.5.24.13-26.8.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-tools-2.5.24.13-26.8.1.noarch"
},
"product_reference": "spacewalk-backend-tools-2.5.24.13-26.8.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xml-export-libs-2.5.24.13-26.8.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-xml-export-libs-2.5.24.13-26.8.1.noarch"
},
"product_reference": "spacewalk-backend-xml-export-libs-2.5.24.13-26.8.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xmlrpc-2.5.24.13-26.8.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-xmlrpc-2.5.24.13-26.8.1.noarch"
},
"product_reference": "spacewalk-backend-xmlrpc-2.5.24.13-26.8.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-2.5.7.18-25.6.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-base-2.5.7.18-25.6.1.noarch"
},
"product_reference": "spacewalk-base-2.5.7.18-25.6.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-2.5.7.18-25.6.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-base-minimal-2.5.7.18-25.6.1.noarch"
},
"product_reference": "spacewalk-base-minimal-2.5.7.18-25.6.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-config-2.5.7.18-25.6.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-base-minimal-config-2.5.7.18-25.6.1.noarch"
},
"product_reference": "spacewalk-base-minimal-config-2.5.7.18-25.6.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-branding-2.5.2.14-16.3.1.s390x as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-branding-2.5.2.14-16.3.1.s390x"
},
"product_reference": "spacewalk-branding-2.5.2.14-16.3.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-branding-2.5.2.14-16.3.1.x86_64 as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-branding-2.5.2.14-16.3.1.x86_64"
},
"product_reference": "spacewalk-branding-2.5.2.14-16.3.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-config-2.5.2.8-13.3.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-config-2.5.2.8-13.3.1.noarch"
},
"product_reference": "spacewalk-config-2.5.2.8-13.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-html-2.5.7.18-25.6.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-html-2.5.7.18-25.6.1.noarch"
},
"product_reference": "spacewalk-html-2.5.7.18-25.6.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-2.5.59.17-27.6.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-java-2.5.59.17-27.6.1.noarch"
},
"product_reference": "spacewalk-java-2.5.59.17-27.6.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-config-2.5.59.17-27.6.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-java-config-2.5.59.17-27.6.1.noarch"
},
"product_reference": "spacewalk-java-config-2.5.59.17-27.6.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-lib-2.5.59.17-27.6.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-java-lib-2.5.59.17-27.6.1.noarch"
},
"product_reference": "spacewalk-java-lib-2.5.59.17-27.6.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-oracle-2.5.59.17-27.6.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-java-oracle-2.5.59.17-27.6.1.noarch"
},
"product_reference": "spacewalk-java-oracle-2.5.59.17-27.6.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-postgresql-2.5.59.17-27.6.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-java-postgresql-2.5.59.17-27.6.1.noarch"
},
"product_reference": "spacewalk-java-postgresql-2.5.59.17-27.6.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-search-2.5.2.3-4.3.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-search-2.5.2.3-4.3.1.noarch"
},
"product_reference": "spacewalk-search-2.5.2.3-4.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-setup-jabberd-2.5.0.3-2.3.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-setup-jabberd-2.5.0.3-2.3.1.noarch"
},
"product_reference": "spacewalk-setup-jabberd-2.5.0.3-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-taskomatic-2.5.59.17-27.6.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-taskomatic-2.5.59.17-27.6.1.noarch"
},
"product_reference": "spacewalk-taskomatic-2.5.59.17-27.6.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-3.0.23-25.3.1.s390x as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:susemanager-3.0.23-25.3.1.s390x"
},
"product_reference": "susemanager-3.0.23-25.3.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-3.0.23-25.3.1.x86_64 as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:susemanager-3.0.23-25.3.1.x86_64"
},
"product_reference": "susemanager-3.0.23-25.3.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-advanced-topics_en-pdf-3-25.3.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:susemanager-advanced-topics_en-pdf-3-25.3.1.noarch"
},
"product_reference": "susemanager-advanced-topics_en-pdf-3-25.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-best-practices_en-pdf-3-25.3.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:susemanager-best-practices_en-pdf-3-25.3.1.noarch"
},
"product_reference": "susemanager-best-practices_en-pdf-3-25.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-docs_en-3-25.3.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:susemanager-docs_en-3-25.3.1.noarch"
},
"product_reference": "susemanager-docs_en-3-25.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-getting-started_en-pdf-3-25.3.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:susemanager-getting-started_en-pdf-3-25.3.1.noarch"
},
"product_reference": "susemanager-getting-started_en-pdf-3-25.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-jsp_en-3-25.3.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:susemanager-jsp_en-3-25.3.1.noarch"
},
"product_reference": "susemanager-jsp_en-3-25.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-reference_en-pdf-3-25.3.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:susemanager-reference_en-pdf-3-25.3.1.noarch"
},
"product_reference": "susemanager-reference_en-pdf-3-25.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-schema-3.0.21-25.3.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:susemanager-schema-3.0.21-25.3.1.noarch"
},
"product_reference": "susemanager-schema-3.0.21-25.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-sync-data-3.0.18-28.3.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:susemanager-sync-data-3.0.18-28.3.1.noarch"
},
"product_reference": "susemanager-sync-data-3.0.18-28.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-tools-3.0.23-25.3.1.s390x as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:susemanager-tools-3.0.23-25.3.1.s390x"
},
"product_reference": "susemanager-tools-3.0.23-25.3.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-tools-3.0.23-25.3.1.x86_64 as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:susemanager-tools-3.0.23-25.3.1.x86_64"
},
"product_reference": "susemanager-tools-3.0.23-25.3.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "virtual-host-gatherer-1.0.14-7.3.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:virtual-host-gatherer-1.0.14-7.3.1.noarch"
},
"product_reference": "virtual-host-gatherer-1.0.14-7.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "virtual-host-gatherer-VMware-1.0.14-7.3.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:virtual-host-gatherer-VMware-1.0.14-7.3.1.noarch"
},
"product_reference": "virtual-host-gatherer-VMware-1.0.14-7.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-7538",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7538"
}
],
"notes": [
{
"category": "general",
"text": "A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5, before 5.8. A user able to change an organization\u0027s name could exploit this flaw to perform XSS attacks against other Satellite users.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Manager Server 3.0:salt-netapi-client-0.12.0-16.3.1.noarch",
"SUSE Manager Server 3.0:smdba-1.6.0-0.7.3.1.s390x",
"SUSE Manager Server 3.0:smdba-1.6.0-0.7.3.1.x86_64",
"SUSE Manager Server 3.0:spacewalk-backend-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-app-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-applet-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-config-files-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-config-files-common-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-config-files-tool-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-iss-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-iss-export-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-libs-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-package-push-server-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-server-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-sql-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-sql-oracle-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-sql-postgresql-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-tools-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-xml-export-libs-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-xmlrpc-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-base-2.5.7.18-25.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-base-minimal-2.5.7.18-25.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-base-minimal-config-2.5.7.18-25.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-branding-2.5.2.14-16.3.1.s390x",
"SUSE Manager Server 3.0:spacewalk-branding-2.5.2.14-16.3.1.x86_64",
"SUSE Manager Server 3.0:spacewalk-config-2.5.2.8-13.3.1.noarch",
"SUSE Manager Server 3.0:spacewalk-html-2.5.7.18-25.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-java-2.5.59.17-27.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-java-config-2.5.59.17-27.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-java-lib-2.5.59.17-27.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-java-oracle-2.5.59.17-27.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-java-postgresql-2.5.59.17-27.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-search-2.5.2.3-4.3.1.noarch",
"SUSE Manager Server 3.0:spacewalk-setup-jabberd-2.5.0.3-2.3.1.noarch",
"SUSE Manager Server 3.0:spacewalk-taskomatic-2.5.59.17-27.6.1.noarch",
"SUSE Manager Server 3.0:susemanager-3.0.23-25.3.1.s390x",
"SUSE Manager Server 3.0:susemanager-3.0.23-25.3.1.x86_64",
"SUSE Manager Server 3.0:susemanager-advanced-topics_en-pdf-3-25.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-best-practices_en-pdf-3-25.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-docs_en-3-25.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-getting-started_en-pdf-3-25.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-jsp_en-3-25.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-reference_en-pdf-3-25.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-schema-3.0.21-25.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-sync-data-3.0.18-28.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-tools-3.0.23-25.3.1.s390x",
"SUSE Manager Server 3.0:susemanager-tools-3.0.23-25.3.1.x86_64",
"SUSE Manager Server 3.0:virtual-host-gatherer-1.0.14-7.3.1.noarch",
"SUSE Manager Server 3.0:virtual-host-gatherer-VMware-1.0.14-7.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7538",
"url": "https://www.suse.com/security/cve/CVE-2017-7538"
},
{
"category": "external",
"summary": "SUSE Bug 1048968 for CVE-2017-7538",
"url": "https://bugzilla.suse.com/1048968"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Manager Server 3.0:salt-netapi-client-0.12.0-16.3.1.noarch",
"SUSE Manager Server 3.0:smdba-1.6.0-0.7.3.1.s390x",
"SUSE Manager Server 3.0:smdba-1.6.0-0.7.3.1.x86_64",
"SUSE Manager Server 3.0:spacewalk-backend-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-app-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-applet-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-config-files-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-config-files-common-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-config-files-tool-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-iss-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-iss-export-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-libs-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-package-push-server-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-server-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-sql-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-sql-oracle-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-sql-postgresql-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-tools-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-xml-export-libs-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-xmlrpc-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-base-2.5.7.18-25.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-base-minimal-2.5.7.18-25.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-base-minimal-config-2.5.7.18-25.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-branding-2.5.2.14-16.3.1.s390x",
"SUSE Manager Server 3.0:spacewalk-branding-2.5.2.14-16.3.1.x86_64",
"SUSE Manager Server 3.0:spacewalk-config-2.5.2.8-13.3.1.noarch",
"SUSE Manager Server 3.0:spacewalk-html-2.5.7.18-25.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-java-2.5.59.17-27.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-java-config-2.5.59.17-27.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-java-lib-2.5.59.17-27.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-java-oracle-2.5.59.17-27.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-java-postgresql-2.5.59.17-27.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-search-2.5.2.3-4.3.1.noarch",
"SUSE Manager Server 3.0:spacewalk-setup-jabberd-2.5.0.3-2.3.1.noarch",
"SUSE Manager Server 3.0:spacewalk-taskomatic-2.5.59.17-27.6.1.noarch",
"SUSE Manager Server 3.0:susemanager-3.0.23-25.3.1.s390x",
"SUSE Manager Server 3.0:susemanager-3.0.23-25.3.1.x86_64",
"SUSE Manager Server 3.0:susemanager-advanced-topics_en-pdf-3-25.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-best-practices_en-pdf-3-25.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-docs_en-3-25.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-getting-started_en-pdf-3-25.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-jsp_en-3-25.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-reference_en-pdf-3-25.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-schema-3.0.21-25.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-sync-data-3.0.18-28.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-tools-3.0.23-25.3.1.s390x",
"SUSE Manager Server 3.0:susemanager-tools-3.0.23-25.3.1.x86_64",
"SUSE Manager Server 3.0:virtual-host-gatherer-1.0.14-7.3.1.noarch",
"SUSE Manager Server 3.0:virtual-host-gatherer-VMware-1.0.14-7.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE Manager Server 3.0:salt-netapi-client-0.12.0-16.3.1.noarch",
"SUSE Manager Server 3.0:smdba-1.6.0-0.7.3.1.s390x",
"SUSE Manager Server 3.0:smdba-1.6.0-0.7.3.1.x86_64",
"SUSE Manager Server 3.0:spacewalk-backend-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-app-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-applet-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-config-files-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-config-files-common-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-config-files-tool-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-iss-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-iss-export-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-libs-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-package-push-server-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-server-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-sql-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-sql-oracle-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-sql-postgresql-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-tools-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-xml-export-libs-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-xmlrpc-2.5.24.13-26.8.1.noarch",
"SUSE Manager Server 3.0:spacewalk-base-2.5.7.18-25.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-base-minimal-2.5.7.18-25.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-base-minimal-config-2.5.7.18-25.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-branding-2.5.2.14-16.3.1.s390x",
"SUSE Manager Server 3.0:spacewalk-branding-2.5.2.14-16.3.1.x86_64",
"SUSE Manager Server 3.0:spacewalk-config-2.5.2.8-13.3.1.noarch",
"SUSE Manager Server 3.0:spacewalk-html-2.5.7.18-25.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-java-2.5.59.17-27.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-java-config-2.5.59.17-27.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-java-lib-2.5.59.17-27.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-java-oracle-2.5.59.17-27.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-java-postgresql-2.5.59.17-27.6.1.noarch",
"SUSE Manager Server 3.0:spacewalk-search-2.5.2.3-4.3.1.noarch",
"SUSE Manager Server 3.0:spacewalk-setup-jabberd-2.5.0.3-2.3.1.noarch",
"SUSE Manager Server 3.0:spacewalk-taskomatic-2.5.59.17-27.6.1.noarch",
"SUSE Manager Server 3.0:susemanager-3.0.23-25.3.1.s390x",
"SUSE Manager Server 3.0:susemanager-3.0.23-25.3.1.x86_64",
"SUSE Manager Server 3.0:susemanager-advanced-topics_en-pdf-3-25.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-best-practices_en-pdf-3-25.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-docs_en-3-25.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-getting-started_en-pdf-3-25.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-jsp_en-3-25.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-reference_en-pdf-3-25.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-schema-3.0.21-25.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-sync-data-3.0.18-28.3.1.noarch",
"SUSE Manager Server 3.0:susemanager-tools-3.0.23-25.3.1.s390x",
"SUSE Manager Server 3.0:susemanager-tools-3.0.23-25.3.1.x86_64",
"SUSE Manager Server 3.0:virtual-host-gatherer-1.0.14-7.3.1.noarch",
"SUSE Manager Server 3.0:virtual-host-gatherer-VMware-1.0.14-7.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-09-13T13:50:30Z",
"details": "moderate"
}
],
"title": "CVE-2017-7538"
}
]
}
SUSE-SU-2017:2257-1
Vulnerability from csaf_suse - Published: 2017-08-25 11:42 - Updated: 2017-08-25 11:42Summary
Security update for SUSE Manager Server 3.1
Notes
Title of the patch
Security update for SUSE Manager Server 3.1
Description of the patch
This update for the SUSE Manager Server 3.1 provides several fixes and improvements.
The following security issues have been fixed:
jabberd:
- Fix offered SASL mechanism check. (bsc#1047282, CVE-2017-10807)
spacewalk-java:
- Do not allow XSS as Organization name. (bsc#1048968, CVE-2017-7538)
Additionally, the following non-security issues have been fixed:
cobbler:
- Fix missing arguments and location for Xen. (bsc#1048183)
jabberd:
- Fix memory leak in pgsql storage driver.
- Fix two double-frees caused by dangling pointers.
- wss:// (WebSocket over SSL) support in c2s.
- Allow BareJID S10N packets.
- SQLite postconnect SQL support.
- Support WebSocket fragmented packets.
- Module to verify users using e-mail.
- Use OpenSSL functions for base64 en/decoding when available.
- Option to dump packet-filter matched packets to file.
- bcrypt support for PostgreSQL and MySQL storage.
- Option to set authreg module per realm.
- WebSocket C2S SX plugin.
- Support for RSA/DH/ECDH key agreement.
- For a detailed description of all fixes, please refer to the changelog.
osad:
- Reduce maximal size of osad log before rotating.
- Perform osad restart in posttrans. (bsc#1039913)
salt-netapi-client:
- Fix date format for Schedule.
- Fix sending kwarg in payload in RunnerCall.
- Better error handling in Runner and Wheel calls.
- Increase the default SOCKET_TIMEOUT to 20 seconds.
smdba:
- Add support for postgresql96. (bsc#1045152)
spacecmd:
- Configchannel export binary flag to json. (bsc#1044719)
spacewalk-backend:
- Make master_label static to keep its value when retrying. (bsc#1038321)
- Adapt for the new gpgcheck flag for the channels.
spacewalk-branding:
- Fix overlapping of elements. (bsc#1031143)
- Fix overlapping text narrow window. (bsc#1009118)
- Fix formulas action buttons position. (bsc#1047513)
- Fix broken link. (bsc#1033999)
- Alphabar: Change title to 'Select first character'. (bsc#1042199)
spacewalk-certs-tools:
- Improve text for bootstrap. (bsc#1032324)
spacewalk-java:
- Don't add default channel if AK is not valid. (bsc#1047656)
- Add 'Enable GPG check' function for channels.
- No legend icon for Activity Ocurring. (bsc#1051719)
- Implement API call for bootstrapping systems.
- Fix product ids reported for SUSE Manager Server to the subscription matcher.
- Fix adding products when assigning channels. (bsc#1049664)
- Set default memory size for SLES 12 installations to 1024MB. (bsc#1047707)
- Enable remote-command for Salt clients in SSM. (bsc#1050385)
- Add missing help icons/links. (bsc#1049425)
- Fix invalid help links. (bsc#1049425)
- Fix wrong openscap xid. (bsc#1030898)
- Fix overlapping text narrow window. (bsc#1009118)
- Fixes alignment on the orgdetails. (bsc#1017513)
- Fix text for activation key buttons. (bsc#1042975)
- Correctly set, check and cut textarea maxlength. (bsc#1043430)
- MinionActionExecutor: Raise skip timeout. (bsc#1046865)
- Update channels.xml with OpenStack Cloud Continuous Delivery 6. (bsc#1039458)
- Do not create VirtualInstance duplicates for the same 'uuid'.
- Add taskomatic task to cleanup duplicated uuids for same system id.
- Handle possible wrong UUIDs on SLE11 minions. (bsc#1046218)
- Removed duplicate overview menu item. (bsc#1045981)
- Enable act-key name empty on creation. (bsc#1032350)
- Fix NPE when there's not udev results. (bsc#1042552)
- Alphabar: Change title to 'Select first character'. (bsc#1042199)
- Duplicate Systems: Correct language not to mention 'profiles'. (bsc#1035728)
- Fix list filters to work with URL special characters. (bsc#1042846)
- Use getActive() instead of isActive() for JavaBeans compliance. (bsc#1043143)
- Fix hide non-org event details. (bsc#1039579)
spacewalk-search:
- Remove executable bit from service files. (bsc#1051518)
spacewalk-utils:
- Don't show password on input in spacewalk-manage-channel-lifecycle. (bsc#1043795)
spacewalk-web:
- Fix overlapping of elements. (bsc#1031143)
- Fix formulas action buttons position. (bsc#1047513)
- Do not show old messages. (bsc#1043831)
- Add a dynamic counter of the remaining textarea length.
- Confirm if navigating away while bootstrapping.
susemanager:
- Assert correct java version. (bsc#1049575)
- Create bootstrap repository for SLES for SAP 11 SP1. (bsc#1049471)
- Adjust the bootstrap repository with SLE 12 SP3 repositories.
susemanager-docs_en:
- Improve Icinga services example. (bsc#1019759)
- Make Section reference Configuration Management more clear. (bsc#1047352)
- Add missing 'host_name' in service definition example for Icinga. (bsc#1049162)
- Fix documentation on moving database. (bsc#1031602)
- Add missing Autoinstallation page in Advanced Topics guide. (bsc#1047680)
- Make API documentation available online. (bsc#1047641)
- Fix Reference Guide Documentation issues. (bsc#1045266)
- Update online documentation components. (bsc#1046314)
- Update online documentation. (bsc#1046176)
susemanager-schema:
- Adapt for the new gpgcheck flag for the channels.
susemanager-sync-data:
- Add support for SLE 12 SP3 product family, SUSE Enterprise Storage 5, OpenStack Cloud 6 Continuous Delivery
and Public Cloud for ppc64le. (bsc#1028098, bsc#1039458, bsc#1037609, bsc#1049665)
How to apply this update:
1. Log in as root user to the SUSE Manager server.
2. Stop the Spacewalk service:
spacewalk-service stop
3. Apply the patch using either zypper patch or YaST Online Update.
4. Upgrade the database schema:
spacewalk-schema-upgrade
5. Start the Spacewalk service:
spacewalk-service start
Patchnames
SUSE-SUSE-Manager-Server-3.1-2017-1387
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for SUSE Manager Server 3.1",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for the SUSE Manager Server 3.1 provides several fixes and improvements.\n\nThe following security issues have been fixed:\n\njabberd:\n\n- Fix offered SASL mechanism check. (bsc#1047282, CVE-2017-10807)\n\nspacewalk-java:\n\n- Do not allow XSS as Organization name. (bsc#1048968, CVE-2017-7538)\n\nAdditionally, the following non-security issues have been fixed:\n\ncobbler:\n\n- Fix missing arguments and location for Xen. (bsc#1048183)\n\njabberd:\n\n- Fix memory leak in pgsql storage driver.\n- Fix two double-frees caused by dangling pointers.\n- wss:// (WebSocket over SSL) support in c2s.\n- Allow BareJID S10N packets.\n- SQLite postconnect SQL support.\n- Support WebSocket fragmented packets.\n- Module to verify users using e-mail.\n- Use OpenSSL functions for base64 en/decoding when available.\n- Option to dump packet-filter matched packets to file.\n- bcrypt support for PostgreSQL and MySQL storage.\n- Option to set authreg module per realm.\n- WebSocket C2S SX plugin.\n- Support for RSA/DH/ECDH key agreement.\n- For a detailed description of all fixes, please refer to the changelog.\n\nosad:\n\n- Reduce maximal size of osad log before rotating.\n- Perform osad restart in posttrans. (bsc#1039913)\n\nsalt-netapi-client:\n\n- Fix date format for Schedule.\n- Fix sending kwarg in payload in RunnerCall.\n- Better error handling in Runner and Wheel calls.\n- Increase the default SOCKET_TIMEOUT to 20 seconds.\n\nsmdba:\n\n- Add support for postgresql96. (bsc#1045152)\n\nspacecmd:\n\n- Configchannel export binary flag to json. (bsc#1044719)\n\nspacewalk-backend:\n\n- Make master_label static to keep its value when retrying. (bsc#1038321)\n- Adapt for the new gpgcheck flag for the channels.\n\nspacewalk-branding:\n\n- Fix overlapping of elements. (bsc#1031143)\n- Fix overlapping text narrow window. (bsc#1009118) \n- Fix formulas action buttons position. (bsc#1047513)\n- Fix broken link. (bsc#1033999)\n- Alphabar: Change title to \u0027Select first character\u0027. (bsc#1042199)\n\nspacewalk-certs-tools:\n\n- Improve text for bootstrap. (bsc#1032324)\n\nspacewalk-java:\n\n- Don\u0027t add default channel if AK is not valid. (bsc#1047656)\n- Add \u0027Enable GPG check\u0027 function for channels.\n- No legend icon for Activity Ocurring. (bsc#1051719)\n- Implement API call for bootstrapping systems.\n- Fix product ids reported for SUSE Manager Server to the subscription matcher.\n- Fix adding products when assigning channels. (bsc#1049664)\n- Set default memory size for SLES 12 installations to 1024MB. (bsc#1047707)\n- Enable remote-command for Salt clients in SSM. (bsc#1050385)\n- Add missing help icons/links. (bsc#1049425)\n- Fix invalid help links. (bsc#1049425) \n- Fix wrong openscap xid. (bsc#1030898)\n- Fix overlapping text narrow window. (bsc#1009118) \n- Fixes alignment on the orgdetails. (bsc#1017513)\n- Fix text for activation key buttons. (bsc#1042975) \n- Correctly set, check and cut textarea maxlength. (bsc#1043430)\n- MinionActionExecutor: Raise skip timeout. (bsc#1046865)\n- Update channels.xml with OpenStack Cloud Continuous Delivery 6. (bsc#1039458)\n- Do not create VirtualInstance duplicates for the same \u0027uuid\u0027.\n- Add taskomatic task to cleanup duplicated uuids for same system id.\n- Handle possible wrong UUIDs on SLE11 minions. (bsc#1046218)\n- Removed duplicate overview menu item. (bsc#1045981) \n- Enable act-key name empty on creation. (bsc#1032350)\n- Fix NPE when there\u0027s not udev results. (bsc#1042552)\n- Alphabar: Change title to \u0027Select first character\u0027. (bsc#1042199)\n- Duplicate Systems: Correct language not to mention \u0027profiles\u0027. (bsc#1035728)\n- Fix list filters to work with URL special characters. (bsc#1042846)\n- Use getActive() instead of isActive() for JavaBeans compliance. (bsc#1043143)\n- Fix hide non-org event details. (bsc#1039579)\n\nspacewalk-search:\n\n- Remove executable bit from service files. (bsc#1051518)\n\nspacewalk-utils:\n\n- Don\u0027t show password on input in spacewalk-manage-channel-lifecycle. (bsc#1043795)\n\nspacewalk-web:\n\n- Fix overlapping of elements. (bsc#1031143)\n- Fix formulas action buttons position. (bsc#1047513)\n- Do not show old messages. (bsc#1043831)\n- Add a dynamic counter of the remaining textarea length.\n- Confirm if navigating away while bootstrapping.\n\nsusemanager:\n\n- Assert correct java version. (bsc#1049575)\n- Create bootstrap repository for SLES for SAP 11 SP1. (bsc#1049471)\n- Adjust the bootstrap repository with SLE 12 SP3 repositories.\n\nsusemanager-docs_en:\n\n- Improve Icinga services example. (bsc#1019759)\n- Make Section reference Configuration Management more clear. (bsc#1047352)\n- Add missing \u0027host_name\u0027 in service definition example for Icinga. (bsc#1049162)\n- Fix documentation on moving database. (bsc#1031602)\n- Add missing Autoinstallation page in Advanced Topics guide. (bsc#1047680)\n- Make API documentation available online. (bsc#1047641)\n- Fix Reference Guide Documentation issues. (bsc#1045266)\n- Update online documentation components. (bsc#1046314)\n- Update online documentation. (bsc#1046176)\n\nsusemanager-schema:\n\n- Adapt for the new gpgcheck flag for the channels.\n\nsusemanager-sync-data:\n\n- Add support for SLE 12 SP3 product family, SUSE Enterprise Storage 5, OpenStack Cloud 6 Continuous Delivery\n and Public Cloud for ppc64le. (bsc#1028098, bsc#1039458, bsc#1037609, bsc#1049665)\n\nHow to apply this update:\n1. Log in as root user to the SUSE Manager server.\n2. Stop the Spacewalk service:\nspacewalk-service stop\n3. Apply the patch using either zypper patch or YaST Online Update.\n4. Upgrade the database schema:\nspacewalk-schema-upgrade\n5. Start the Spacewalk service:\nspacewalk-service start\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SUSE-Manager-Server-3.1-2017-1387",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_2257-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2017:2257-1",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172257-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2017:2257-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2017-August/003157.html"
},
{
"category": "self",
"summary": "SUSE Bug 1009118",
"url": "https://bugzilla.suse.com/1009118"
},
{
"category": "self",
"summary": "SUSE Bug 1017513",
"url": "https://bugzilla.suse.com/1017513"
},
{
"category": "self",
"summary": "SUSE Bug 1019759",
"url": "https://bugzilla.suse.com/1019759"
},
{
"category": "self",
"summary": "SUSE Bug 1028098",
"url": "https://bugzilla.suse.com/1028098"
},
{
"category": "self",
"summary": "SUSE Bug 1030898",
"url": "https://bugzilla.suse.com/1030898"
},
{
"category": "self",
"summary": "SUSE Bug 1031143",
"url": "https://bugzilla.suse.com/1031143"
},
{
"category": "self",
"summary": "SUSE Bug 1031602",
"url": "https://bugzilla.suse.com/1031602"
},
{
"category": "self",
"summary": "SUSE Bug 1032324",
"url": "https://bugzilla.suse.com/1032324"
},
{
"category": "self",
"summary": "SUSE Bug 1032350",
"url": "https://bugzilla.suse.com/1032350"
},
{
"category": "self",
"summary": "SUSE Bug 1033999",
"url": "https://bugzilla.suse.com/1033999"
},
{
"category": "self",
"summary": "SUSE Bug 1035728",
"url": "https://bugzilla.suse.com/1035728"
},
{
"category": "self",
"summary": "SUSE Bug 1037609",
"url": "https://bugzilla.suse.com/1037609"
},
{
"category": "self",
"summary": "SUSE Bug 1038321",
"url": "https://bugzilla.suse.com/1038321"
},
{
"category": "self",
"summary": "SUSE Bug 1039458",
"url": "https://bugzilla.suse.com/1039458"
},
{
"category": "self",
"summary": "SUSE Bug 1039579",
"url": "https://bugzilla.suse.com/1039579"
},
{
"category": "self",
"summary": "SUSE Bug 1039913",
"url": "https://bugzilla.suse.com/1039913"
},
{
"category": "self",
"summary": "SUSE Bug 1042199",
"url": "https://bugzilla.suse.com/1042199"
},
{
"category": "self",
"summary": "SUSE Bug 1042552",
"url": "https://bugzilla.suse.com/1042552"
},
{
"category": "self",
"summary": "SUSE Bug 1042846",
"url": "https://bugzilla.suse.com/1042846"
},
{
"category": "self",
"summary": "SUSE Bug 1042975",
"url": "https://bugzilla.suse.com/1042975"
},
{
"category": "self",
"summary": "SUSE Bug 1043143",
"url": "https://bugzilla.suse.com/1043143"
},
{
"category": "self",
"summary": "SUSE Bug 1043430",
"url": "https://bugzilla.suse.com/1043430"
},
{
"category": "self",
"summary": "SUSE Bug 1043795",
"url": "https://bugzilla.suse.com/1043795"
},
{
"category": "self",
"summary": "SUSE Bug 1043831",
"url": "https://bugzilla.suse.com/1043831"
},
{
"category": "self",
"summary": "SUSE Bug 1044719",
"url": "https://bugzilla.suse.com/1044719"
},
{
"category": "self",
"summary": "SUSE Bug 1045152",
"url": "https://bugzilla.suse.com/1045152"
},
{
"category": "self",
"summary": "SUSE Bug 1045266",
"url": "https://bugzilla.suse.com/1045266"
},
{
"category": "self",
"summary": "SUSE Bug 1045981",
"url": "https://bugzilla.suse.com/1045981"
},
{
"category": "self",
"summary": "SUSE Bug 1046176",
"url": "https://bugzilla.suse.com/1046176"
},
{
"category": "self",
"summary": "SUSE Bug 1046218",
"url": "https://bugzilla.suse.com/1046218"
},
{
"category": "self",
"summary": "SUSE Bug 1046314",
"url": "https://bugzilla.suse.com/1046314"
},
{
"category": "self",
"summary": "SUSE Bug 1046865",
"url": "https://bugzilla.suse.com/1046865"
},
{
"category": "self",
"summary": "SUSE Bug 1047282",
"url": "https://bugzilla.suse.com/1047282"
},
{
"category": "self",
"summary": "SUSE Bug 1047352",
"url": "https://bugzilla.suse.com/1047352"
},
{
"category": "self",
"summary": "SUSE Bug 1047513",
"url": "https://bugzilla.suse.com/1047513"
},
{
"category": "self",
"summary": "SUSE Bug 1047641",
"url": "https://bugzilla.suse.com/1047641"
},
{
"category": "self",
"summary": "SUSE Bug 1047656",
"url": "https://bugzilla.suse.com/1047656"
},
{
"category": "self",
"summary": "SUSE Bug 1047680",
"url": "https://bugzilla.suse.com/1047680"
},
{
"category": "self",
"summary": "SUSE Bug 1047707",
"url": "https://bugzilla.suse.com/1047707"
},
{
"category": "self",
"summary": "SUSE Bug 1048183",
"url": "https://bugzilla.suse.com/1048183"
},
{
"category": "self",
"summary": "SUSE Bug 1048968",
"url": "https://bugzilla.suse.com/1048968"
},
{
"category": "self",
"summary": "SUSE Bug 1049162",
"url": "https://bugzilla.suse.com/1049162"
},
{
"category": "self",
"summary": "SUSE Bug 1049425",
"url": "https://bugzilla.suse.com/1049425"
},
{
"category": "self",
"summary": "SUSE Bug 1049471",
"url": "https://bugzilla.suse.com/1049471"
},
{
"category": "self",
"summary": "SUSE Bug 1049575",
"url": "https://bugzilla.suse.com/1049575"
},
{
"category": "self",
"summary": "SUSE Bug 1049664",
"url": "https://bugzilla.suse.com/1049664"
},
{
"category": "self",
"summary": "SUSE Bug 1049665",
"url": "https://bugzilla.suse.com/1049665"
},
{
"category": "self",
"summary": "SUSE Bug 1050385",
"url": "https://bugzilla.suse.com/1050385"
},
{
"category": "self",
"summary": "SUSE Bug 1051518",
"url": "https://bugzilla.suse.com/1051518"
},
{
"category": "self",
"summary": "SUSE Bug 1051719",
"url": "https://bugzilla.suse.com/1051719"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-10807 page",
"url": "https://www.suse.com/security/cve/CVE-2017-10807/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7538 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7538/"
}
],
"title": "Security update for SUSE Manager Server 3.1",
"tracking": {
"current_release_date": "2017-08-25T11:42:16Z",
"generator": {
"date": "2017-08-25T11:42:16Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2017:2257-1",
"initial_release_date": "2017-08-25T11:42:16Z",
"revision_history": [
{
"date": "2017-08-25T11:42:16Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cobbler-2.6.6-5.3.1.noarch",
"product": {
"name": "cobbler-2.6.6-5.3.1.noarch",
"product_id": "cobbler-2.6.6-5.3.1.noarch"
}
},
{
"category": "product_version",
"name": "osa-common-5.11.80.3-2.3.1.noarch",
"product": {
"name": "osa-common-5.11.80.3-2.3.1.noarch",
"product_id": "osa-common-5.11.80.3-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "osa-dispatcher-5.11.80.3-2.3.1.noarch",
"product": {
"name": "osa-dispatcher-5.11.80.3-2.3.1.noarch",
"product_id": "osa-dispatcher-5.11.80.3-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "rhnpush-5.5.104.3-2.3.2.noarch",
"product": {
"name": "rhnpush-5.5.104.3-2.3.2.noarch",
"product_id": "rhnpush-5.5.104.3-2.3.2.noarch"
}
},
{
"category": "product_version",
"name": "salt-netapi-client-0.12.0-3.3.1.noarch",
"product": {
"name": "salt-netapi-client-0.12.0-3.3.1.noarch",
"product_id": "salt-netapi-client-0.12.0-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacecmd-2.7.8.6-2.3.1.noarch",
"product": {
"name": "spacecmd-2.7.8.6-2.3.1.noarch",
"product_id": "spacecmd-2.7.8.6-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-2.7.73.7-2.3.1.noarch",
"product": {
"name": "spacewalk-backend-2.7.73.7-2.3.1.noarch",
"product_id": "spacewalk-backend-2.7.73.7-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-app-2.7.73.7-2.3.1.noarch",
"product": {
"name": "spacewalk-backend-app-2.7.73.7-2.3.1.noarch",
"product_id": "spacewalk-backend-app-2.7.73.7-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-applet-2.7.73.7-2.3.1.noarch",
"product": {
"name": "spacewalk-backend-applet-2.7.73.7-2.3.1.noarch",
"product_id": "spacewalk-backend-applet-2.7.73.7-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-2.7.73.7-2.3.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-2.7.73.7-2.3.1.noarch",
"product_id": "spacewalk-backend-config-files-2.7.73.7-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-common-2.7.73.7-2.3.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-common-2.7.73.7-2.3.1.noarch",
"product_id": "spacewalk-backend-config-files-common-2.7.73.7-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-tool-2.7.73.7-2.3.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-tool-2.7.73.7-2.3.1.noarch",
"product_id": "spacewalk-backend-config-files-tool-2.7.73.7-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-2.7.73.7-2.3.1.noarch",
"product": {
"name": "spacewalk-backend-iss-2.7.73.7-2.3.1.noarch",
"product_id": "spacewalk-backend-iss-2.7.73.7-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-export-2.7.73.7-2.3.1.noarch",
"product": {
"name": "spacewalk-backend-iss-export-2.7.73.7-2.3.1.noarch",
"product_id": "spacewalk-backend-iss-export-2.7.73.7-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-2.7.73.7-2.3.1.noarch",
"product": {
"name": "spacewalk-backend-libs-2.7.73.7-2.3.1.noarch",
"product_id": "spacewalk-backend-libs-2.7.73.7-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-package-push-server-2.7.73.7-2.3.1.noarch",
"product": {
"name": "spacewalk-backend-package-push-server-2.7.73.7-2.3.1.noarch",
"product_id": "spacewalk-backend-package-push-server-2.7.73.7-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-server-2.7.73.7-2.3.1.noarch",
"product": {
"name": "spacewalk-backend-server-2.7.73.7-2.3.1.noarch",
"product_id": "spacewalk-backend-server-2.7.73.7-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-2.7.73.7-2.3.1.noarch",
"product": {
"name": "spacewalk-backend-sql-2.7.73.7-2.3.1.noarch",
"product_id": "spacewalk-backend-sql-2.7.73.7-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-oracle-2.7.73.7-2.3.1.noarch",
"product": {
"name": "spacewalk-backend-sql-oracle-2.7.73.7-2.3.1.noarch",
"product_id": "spacewalk-backend-sql-oracle-2.7.73.7-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-postgresql-2.7.73.7-2.3.1.noarch",
"product": {
"name": "spacewalk-backend-sql-postgresql-2.7.73.7-2.3.1.noarch",
"product_id": "spacewalk-backend-sql-postgresql-2.7.73.7-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-tools-2.7.73.7-2.3.1.noarch",
"product": {
"name": "spacewalk-backend-tools-2.7.73.7-2.3.1.noarch",
"product_id": "spacewalk-backend-tools-2.7.73.7-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xml-export-libs-2.7.73.7-2.3.1.noarch",
"product": {
"name": "spacewalk-backend-xml-export-libs-2.7.73.7-2.3.1.noarch",
"product_id": "spacewalk-backend-xml-export-libs-2.7.73.7-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xmlrpc-2.7.73.7-2.3.1.noarch",
"product": {
"name": "spacewalk-backend-xmlrpc-2.7.73.7-2.3.1.noarch",
"product_id": "spacewalk-backend-xmlrpc-2.7.73.7-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-2.7.1.10-2.3.1.noarch",
"product": {
"name": "spacewalk-base-2.7.1.10-2.3.1.noarch",
"product_id": "spacewalk-base-2.7.1.10-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-minimal-2.7.1.10-2.3.1.noarch",
"product": {
"name": "spacewalk-base-minimal-2.7.1.10-2.3.1.noarch",
"product_id": "spacewalk-base-minimal-2.7.1.10-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-minimal-config-2.7.1.10-2.3.1.noarch",
"product": {
"name": "spacewalk-base-minimal-config-2.7.1.10-2.3.1.noarch",
"product_id": "spacewalk-base-minimal-config-2.7.1.10-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-certs-tools-2.7.0.7-2.3.1.noarch",
"product": {
"name": "spacewalk-certs-tools-2.7.0.7-2.3.1.noarch",
"product_id": "spacewalk-certs-tools-2.7.0.7-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-html-2.7.1.10-2.3.1.noarch",
"product": {
"name": "spacewalk-html-2.7.1.10-2.3.1.noarch",
"product_id": "spacewalk-html-2.7.1.10-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-2.7.46.5-2.3.1.noarch",
"product": {
"name": "spacewalk-java-2.7.46.5-2.3.1.noarch",
"product_id": "spacewalk-java-2.7.46.5-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-config-2.7.46.5-2.3.1.noarch",
"product": {
"name": "spacewalk-java-config-2.7.46.5-2.3.1.noarch",
"product_id": "spacewalk-java-config-2.7.46.5-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-lib-2.7.46.5-2.3.1.noarch",
"product": {
"name": "spacewalk-java-lib-2.7.46.5-2.3.1.noarch",
"product_id": "spacewalk-java-lib-2.7.46.5-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-oracle-2.7.46.5-2.3.1.noarch",
"product": {
"name": "spacewalk-java-oracle-2.7.46.5-2.3.1.noarch",
"product_id": "spacewalk-java-oracle-2.7.46.5-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-postgresql-2.7.46.5-2.3.1.noarch",
"product": {
"name": "spacewalk-java-postgresql-2.7.46.5-2.3.1.noarch",
"product_id": "spacewalk-java-postgresql-2.7.46.5-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-search-2.7.3.2-2.3.4.noarch",
"product": {
"name": "spacewalk-search-2.7.3.2-2.3.4.noarch",
"product_id": "spacewalk-search-2.7.3.2-2.3.4.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-taskomatic-2.7.46.5-2.3.1.noarch",
"product": {
"name": "spacewalk-taskomatic-2.7.46.5-2.3.1.noarch",
"product_id": "spacewalk-taskomatic-2.7.46.5-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-utils-2.7.10.5-2.3.1.noarch",
"product": {
"name": "spacewalk-utils-2.7.10.5-2.3.1.noarch",
"product_id": "spacewalk-utils-2.7.10.5-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-advanced-topics_en-pdf-3-10.3.1.noarch",
"product": {
"name": "susemanager-advanced-topics_en-pdf-3-10.3.1.noarch",
"product_id": "susemanager-advanced-topics_en-pdf-3-10.3.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-best-practices_en-pdf-3-10.3.1.noarch",
"product": {
"name": "susemanager-best-practices_en-pdf-3-10.3.1.noarch",
"product_id": "susemanager-best-practices_en-pdf-3-10.3.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-docs_en-3-10.3.1.noarch",
"product": {
"name": "susemanager-docs_en-3-10.3.1.noarch",
"product_id": "susemanager-docs_en-3-10.3.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-getting-started_en-pdf-3-10.3.1.noarch",
"product": {
"name": "susemanager-getting-started_en-pdf-3-10.3.1.noarch",
"product_id": "susemanager-getting-started_en-pdf-3-10.3.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-jsp_en-3-10.3.1.noarch",
"product": {
"name": "susemanager-jsp_en-3-10.3.1.noarch",
"product_id": "susemanager-jsp_en-3-10.3.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-reference_en-pdf-3-10.3.1.noarch",
"product": {
"name": "susemanager-reference_en-pdf-3-10.3.1.noarch",
"product_id": "susemanager-reference_en-pdf-3-10.3.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-schema-3.1.9-2.3.1.noarch",
"product": {
"name": "susemanager-schema-3.1.9-2.3.1.noarch",
"product_id": "susemanager-schema-3.1.9-2.3.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-sync-data-3.1.6-2.3.1.noarch",
"product": {
"name": "susemanager-sync-data-3.1.6-2.3.1.noarch",
"product_id": "susemanager-sync-data-3.1.6-2.3.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "jabberd-2.6.1-3.3.1.ppc64le",
"product": {
"name": "jabberd-2.6.1-3.3.1.ppc64le",
"product_id": "jabberd-2.6.1-3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jabberd-db-2.6.1-3.3.1.ppc64le",
"product": {
"name": "jabberd-db-2.6.1-3.3.1.ppc64le",
"product_id": "jabberd-db-2.6.1-3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "jabberd-sqlite-2.6.1-3.3.1.ppc64le",
"product": {
"name": "jabberd-sqlite-2.6.1-3.3.1.ppc64le",
"product_id": "jabberd-sqlite-2.6.1-3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "smdba-1.5.8-0.2.3.1.ppc64le",
"product": {
"name": "smdba-1.5.8-0.2.3.1.ppc64le",
"product_id": "smdba-1.5.8-0.2.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "spacewalk-branding-2.7.2.7-2.3.1.ppc64le",
"product": {
"name": "spacewalk-branding-2.7.2.7-2.3.1.ppc64le",
"product_id": "spacewalk-branding-2.7.2.7-2.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "susemanager-3.1.8-2.3.1.ppc64le",
"product": {
"name": "susemanager-3.1.8-2.3.1.ppc64le",
"product_id": "susemanager-3.1.8-2.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "susemanager-tools-3.1.8-2.3.1.ppc64le",
"product": {
"name": "susemanager-tools-3.1.8-2.3.1.ppc64le",
"product_id": "susemanager-tools-3.1.8-2.3.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "jabberd-2.6.1-3.3.1.s390x",
"product": {
"name": "jabberd-2.6.1-3.3.1.s390x",
"product_id": "jabberd-2.6.1-3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "jabberd-db-2.6.1-3.3.1.s390x",
"product": {
"name": "jabberd-db-2.6.1-3.3.1.s390x",
"product_id": "jabberd-db-2.6.1-3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "jabberd-sqlite-2.6.1-3.3.1.s390x",
"product": {
"name": "jabberd-sqlite-2.6.1-3.3.1.s390x",
"product_id": "jabberd-sqlite-2.6.1-3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "smdba-1.5.8-0.2.3.1.s390x",
"product": {
"name": "smdba-1.5.8-0.2.3.1.s390x",
"product_id": "smdba-1.5.8-0.2.3.1.s390x"
}
},
{
"category": "product_version",
"name": "spacewalk-branding-2.7.2.7-2.3.1.s390x",
"product": {
"name": "spacewalk-branding-2.7.2.7-2.3.1.s390x",
"product_id": "spacewalk-branding-2.7.2.7-2.3.1.s390x"
}
},
{
"category": "product_version",
"name": "susemanager-3.1.8-2.3.1.s390x",
"product": {
"name": "susemanager-3.1.8-2.3.1.s390x",
"product_id": "susemanager-3.1.8-2.3.1.s390x"
}
},
{
"category": "product_version",
"name": "susemanager-tools-3.1.8-2.3.1.s390x",
"product": {
"name": "susemanager-tools-3.1.8-2.3.1.s390x",
"product_id": "susemanager-tools-3.1.8-2.3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "jabberd-2.6.1-3.3.1.x86_64",
"product": {
"name": "jabberd-2.6.1-3.3.1.x86_64",
"product_id": "jabberd-2.6.1-3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "jabberd-db-2.6.1-3.3.1.x86_64",
"product": {
"name": "jabberd-db-2.6.1-3.3.1.x86_64",
"product_id": "jabberd-db-2.6.1-3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "jabberd-sqlite-2.6.1-3.3.1.x86_64",
"product": {
"name": "jabberd-sqlite-2.6.1-3.3.1.x86_64",
"product_id": "jabberd-sqlite-2.6.1-3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "smdba-1.5.8-0.2.3.1.x86_64",
"product": {
"name": "smdba-1.5.8-0.2.3.1.x86_64",
"product_id": "smdba-1.5.8-0.2.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "spacewalk-branding-2.7.2.7-2.3.1.x86_64",
"product": {
"name": "spacewalk-branding-2.7.2.7-2.3.1.x86_64",
"product_id": "spacewalk-branding-2.7.2.7-2.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "susemanager-3.1.8-2.3.1.x86_64",
"product": {
"name": "susemanager-3.1.8-2.3.1.x86_64",
"product_id": "susemanager-3.1.8-2.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "susemanager-tools-3.1.8-2.3.1.x86_64",
"product": {
"name": "susemanager-tools-3.1.8-2.3.1.x86_64",
"product_id": "susemanager-tools-3.1.8-2.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Manager Server 3.1",
"product": {
"name": "SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-server:3.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cobbler-2.6.6-5.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:cobbler-2.6.6-5.3.1.noarch"
},
"product_reference": "cobbler-2.6.6-5.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jabberd-2.6.1-3.3.1.ppc64le as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:jabberd-2.6.1-3.3.1.ppc64le"
},
"product_reference": "jabberd-2.6.1-3.3.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jabberd-2.6.1-3.3.1.s390x as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:jabberd-2.6.1-3.3.1.s390x"
},
"product_reference": "jabberd-2.6.1-3.3.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jabberd-2.6.1-3.3.1.x86_64 as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:jabberd-2.6.1-3.3.1.x86_64"
},
"product_reference": "jabberd-2.6.1-3.3.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jabberd-db-2.6.1-3.3.1.ppc64le as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:jabberd-db-2.6.1-3.3.1.ppc64le"
},
"product_reference": "jabberd-db-2.6.1-3.3.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jabberd-db-2.6.1-3.3.1.s390x as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:jabberd-db-2.6.1-3.3.1.s390x"
},
"product_reference": "jabberd-db-2.6.1-3.3.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jabberd-db-2.6.1-3.3.1.x86_64 as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:jabberd-db-2.6.1-3.3.1.x86_64"
},
"product_reference": "jabberd-db-2.6.1-3.3.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jabberd-sqlite-2.6.1-3.3.1.ppc64le as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:jabberd-sqlite-2.6.1-3.3.1.ppc64le"
},
"product_reference": "jabberd-sqlite-2.6.1-3.3.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jabberd-sqlite-2.6.1-3.3.1.s390x as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:jabberd-sqlite-2.6.1-3.3.1.s390x"
},
"product_reference": "jabberd-sqlite-2.6.1-3.3.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jabberd-sqlite-2.6.1-3.3.1.x86_64 as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:jabberd-sqlite-2.6.1-3.3.1.x86_64"
},
"product_reference": "jabberd-sqlite-2.6.1-3.3.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osa-common-5.11.80.3-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:osa-common-5.11.80.3-2.3.1.noarch"
},
"product_reference": "osa-common-5.11.80.3-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "osa-dispatcher-5.11.80.3-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:osa-dispatcher-5.11.80.3-2.3.1.noarch"
},
"product_reference": "osa-dispatcher-5.11.80.3-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhnpush-5.5.104.3-2.3.2.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:rhnpush-5.5.104.3-2.3.2.noarch"
},
"product_reference": "rhnpush-5.5.104.3-2.3.2.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "salt-netapi-client-0.12.0-3.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:salt-netapi-client-0.12.0-3.3.1.noarch"
},
"product_reference": "salt-netapi-client-0.12.0-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "smdba-1.5.8-0.2.3.1.ppc64le as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:smdba-1.5.8-0.2.3.1.ppc64le"
},
"product_reference": "smdba-1.5.8-0.2.3.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "smdba-1.5.8-0.2.3.1.s390x as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:smdba-1.5.8-0.2.3.1.s390x"
},
"product_reference": "smdba-1.5.8-0.2.3.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "smdba-1.5.8-0.2.3.1.x86_64 as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:smdba-1.5.8-0.2.3.1.x86_64"
},
"product_reference": "smdba-1.5.8-0.2.3.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-2.7.8.6-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacecmd-2.7.8.6-2.3.1.noarch"
},
"product_reference": "spacecmd-2.7.8.6-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-2.7.73.7-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-backend-2.7.73.7-2.3.1.noarch"
},
"product_reference": "spacewalk-backend-2.7.73.7-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-app-2.7.73.7-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-backend-app-2.7.73.7-2.3.1.noarch"
},
"product_reference": "spacewalk-backend-app-2.7.73.7-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-applet-2.7.73.7-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-backend-applet-2.7.73.7-2.3.1.noarch"
},
"product_reference": "spacewalk-backend-applet-2.7.73.7-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-2.7.73.7-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-backend-config-files-2.7.73.7-2.3.1.noarch"
},
"product_reference": "spacewalk-backend-config-files-2.7.73.7-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-common-2.7.73.7-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-backend-config-files-common-2.7.73.7-2.3.1.noarch"
},
"product_reference": "spacewalk-backend-config-files-common-2.7.73.7-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-tool-2.7.73.7-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-backend-config-files-tool-2.7.73.7-2.3.1.noarch"
},
"product_reference": "spacewalk-backend-config-files-tool-2.7.73.7-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-2.7.73.7-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-backend-iss-2.7.73.7-2.3.1.noarch"
},
"product_reference": "spacewalk-backend-iss-2.7.73.7-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-export-2.7.73.7-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-backend-iss-export-2.7.73.7-2.3.1.noarch"
},
"product_reference": "spacewalk-backend-iss-export-2.7.73.7-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-2.7.73.7-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-backend-libs-2.7.73.7-2.3.1.noarch"
},
"product_reference": "spacewalk-backend-libs-2.7.73.7-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-package-push-server-2.7.73.7-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-backend-package-push-server-2.7.73.7-2.3.1.noarch"
},
"product_reference": "spacewalk-backend-package-push-server-2.7.73.7-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-server-2.7.73.7-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-backend-server-2.7.73.7-2.3.1.noarch"
},
"product_reference": "spacewalk-backend-server-2.7.73.7-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-2.7.73.7-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-backend-sql-2.7.73.7-2.3.1.noarch"
},
"product_reference": "spacewalk-backend-sql-2.7.73.7-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-oracle-2.7.73.7-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-backend-sql-oracle-2.7.73.7-2.3.1.noarch"
},
"product_reference": "spacewalk-backend-sql-oracle-2.7.73.7-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-postgresql-2.7.73.7-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-backend-sql-postgresql-2.7.73.7-2.3.1.noarch"
},
"product_reference": "spacewalk-backend-sql-postgresql-2.7.73.7-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-tools-2.7.73.7-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-backend-tools-2.7.73.7-2.3.1.noarch"
},
"product_reference": "spacewalk-backend-tools-2.7.73.7-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xml-export-libs-2.7.73.7-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-backend-xml-export-libs-2.7.73.7-2.3.1.noarch"
},
"product_reference": "spacewalk-backend-xml-export-libs-2.7.73.7-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xmlrpc-2.7.73.7-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-backend-xmlrpc-2.7.73.7-2.3.1.noarch"
},
"product_reference": "spacewalk-backend-xmlrpc-2.7.73.7-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-2.7.1.10-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-base-2.7.1.10-2.3.1.noarch"
},
"product_reference": "spacewalk-base-2.7.1.10-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-2.7.1.10-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-base-minimal-2.7.1.10-2.3.1.noarch"
},
"product_reference": "spacewalk-base-minimal-2.7.1.10-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-config-2.7.1.10-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-base-minimal-config-2.7.1.10-2.3.1.noarch"
},
"product_reference": "spacewalk-base-minimal-config-2.7.1.10-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-branding-2.7.2.7-2.3.1.ppc64le as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-branding-2.7.2.7-2.3.1.ppc64le"
},
"product_reference": "spacewalk-branding-2.7.2.7-2.3.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-branding-2.7.2.7-2.3.1.s390x as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-branding-2.7.2.7-2.3.1.s390x"
},
"product_reference": "spacewalk-branding-2.7.2.7-2.3.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-branding-2.7.2.7-2.3.1.x86_64 as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-branding-2.7.2.7-2.3.1.x86_64"
},
"product_reference": "spacewalk-branding-2.7.2.7-2.3.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-certs-tools-2.7.0.7-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-certs-tools-2.7.0.7-2.3.1.noarch"
},
"product_reference": "spacewalk-certs-tools-2.7.0.7-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-html-2.7.1.10-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-html-2.7.1.10-2.3.1.noarch"
},
"product_reference": "spacewalk-html-2.7.1.10-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-2.7.46.5-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-java-2.7.46.5-2.3.1.noarch"
},
"product_reference": "spacewalk-java-2.7.46.5-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-config-2.7.46.5-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-java-config-2.7.46.5-2.3.1.noarch"
},
"product_reference": "spacewalk-java-config-2.7.46.5-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-lib-2.7.46.5-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-java-lib-2.7.46.5-2.3.1.noarch"
},
"product_reference": "spacewalk-java-lib-2.7.46.5-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-oracle-2.7.46.5-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-java-oracle-2.7.46.5-2.3.1.noarch"
},
"product_reference": "spacewalk-java-oracle-2.7.46.5-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-postgresql-2.7.46.5-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-java-postgresql-2.7.46.5-2.3.1.noarch"
},
"product_reference": "spacewalk-java-postgresql-2.7.46.5-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-search-2.7.3.2-2.3.4.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-search-2.7.3.2-2.3.4.noarch"
},
"product_reference": "spacewalk-search-2.7.3.2-2.3.4.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-taskomatic-2.7.46.5-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-taskomatic-2.7.46.5-2.3.1.noarch"
},
"product_reference": "spacewalk-taskomatic-2.7.46.5-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-utils-2.7.10.5-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:spacewalk-utils-2.7.10.5-2.3.1.noarch"
},
"product_reference": "spacewalk-utils-2.7.10.5-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-3.1.8-2.3.1.ppc64le as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:susemanager-3.1.8-2.3.1.ppc64le"
},
"product_reference": "susemanager-3.1.8-2.3.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-3.1.8-2.3.1.s390x as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:susemanager-3.1.8-2.3.1.s390x"
},
"product_reference": "susemanager-3.1.8-2.3.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-3.1.8-2.3.1.x86_64 as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:susemanager-3.1.8-2.3.1.x86_64"
},
"product_reference": "susemanager-3.1.8-2.3.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-advanced-topics_en-pdf-3-10.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:susemanager-advanced-topics_en-pdf-3-10.3.1.noarch"
},
"product_reference": "susemanager-advanced-topics_en-pdf-3-10.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-best-practices_en-pdf-3-10.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:susemanager-best-practices_en-pdf-3-10.3.1.noarch"
},
"product_reference": "susemanager-best-practices_en-pdf-3-10.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-docs_en-3-10.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:susemanager-docs_en-3-10.3.1.noarch"
},
"product_reference": "susemanager-docs_en-3-10.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-getting-started_en-pdf-3-10.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:susemanager-getting-started_en-pdf-3-10.3.1.noarch"
},
"product_reference": "susemanager-getting-started_en-pdf-3-10.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-jsp_en-3-10.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:susemanager-jsp_en-3-10.3.1.noarch"
},
"product_reference": "susemanager-jsp_en-3-10.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-reference_en-pdf-3-10.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:susemanager-reference_en-pdf-3-10.3.1.noarch"
},
"product_reference": "susemanager-reference_en-pdf-3-10.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-schema-3.1.9-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:susemanager-schema-3.1.9-2.3.1.noarch"
},
"product_reference": "susemanager-schema-3.1.9-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-sync-data-3.1.6-2.3.1.noarch as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:susemanager-sync-data-3.1.6-2.3.1.noarch"
},
"product_reference": "susemanager-sync-data-3.1.6-2.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-tools-3.1.8-2.3.1.ppc64le as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:susemanager-tools-3.1.8-2.3.1.ppc64le"
},
"product_reference": "susemanager-tools-3.1.8-2.3.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-tools-3.1.8-2.3.1.s390x as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:susemanager-tools-3.1.8-2.3.1.s390x"
},
"product_reference": "susemanager-tools-3.1.8-2.3.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-tools-3.1.8-2.3.1.x86_64 as component of SUSE Manager Server 3.1",
"product_id": "SUSE Manager Server 3.1:susemanager-tools-3.1.8-2.3.1.x86_64"
},
"product_reference": "susemanager-tools-3.1.8-2.3.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 3.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-10807",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-10807"
}
],
"notes": [
{
"category": "general",
"text": "JabberD 2.x (aka jabberd2) before 2.6.1 allows anyone to authenticate using SASL ANONYMOUS, even when the sasl.anonymous c2s.xml option is not enabled.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Manager Server 3.1:cobbler-2.6.6-5.3.1.noarch",
"SUSE Manager Server 3.1:jabberd-2.6.1-3.3.1.ppc64le",
"SUSE Manager Server 3.1:jabberd-2.6.1-3.3.1.s390x",
"SUSE Manager Server 3.1:jabberd-2.6.1-3.3.1.x86_64",
"SUSE Manager Server 3.1:jabberd-db-2.6.1-3.3.1.ppc64le",
"SUSE Manager Server 3.1:jabberd-db-2.6.1-3.3.1.s390x",
"SUSE Manager Server 3.1:jabberd-db-2.6.1-3.3.1.x86_64",
"SUSE Manager Server 3.1:jabberd-sqlite-2.6.1-3.3.1.ppc64le",
"SUSE Manager Server 3.1:jabberd-sqlite-2.6.1-3.3.1.s390x",
"SUSE Manager Server 3.1:jabberd-sqlite-2.6.1-3.3.1.x86_64",
"SUSE Manager Server 3.1:osa-common-5.11.80.3-2.3.1.noarch",
"SUSE Manager Server 3.1:osa-dispatcher-5.11.80.3-2.3.1.noarch",
"SUSE Manager Server 3.1:rhnpush-5.5.104.3-2.3.2.noarch",
"SUSE Manager Server 3.1:salt-netapi-client-0.12.0-3.3.1.noarch",
"SUSE Manager Server 3.1:smdba-1.5.8-0.2.3.1.ppc64le",
"SUSE Manager Server 3.1:smdba-1.5.8-0.2.3.1.s390x",
"SUSE Manager Server 3.1:smdba-1.5.8-0.2.3.1.x86_64",
"SUSE Manager Server 3.1:spacecmd-2.7.8.6-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-app-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-applet-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-config-files-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-config-files-common-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-config-files-tool-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-iss-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-iss-export-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-libs-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-package-push-server-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-server-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-sql-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-sql-oracle-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-sql-postgresql-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-tools-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-xml-export-libs-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-xmlrpc-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-base-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-base-minimal-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-base-minimal-config-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-branding-2.7.2.7-2.3.1.ppc64le",
"SUSE Manager Server 3.1:spacewalk-branding-2.7.2.7-2.3.1.s390x",
"SUSE Manager Server 3.1:spacewalk-branding-2.7.2.7-2.3.1.x86_64",
"SUSE Manager Server 3.1:spacewalk-certs-tools-2.7.0.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-html-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-config-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-lib-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-oracle-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-postgresql-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-search-2.7.3.2-2.3.4.noarch",
"SUSE Manager Server 3.1:spacewalk-taskomatic-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-utils-2.7.10.5-2.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-3.1.8-2.3.1.ppc64le",
"SUSE Manager Server 3.1:susemanager-3.1.8-2.3.1.s390x",
"SUSE Manager Server 3.1:susemanager-3.1.8-2.3.1.x86_64",
"SUSE Manager Server 3.1:susemanager-advanced-topics_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-best-practices_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-docs_en-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-getting-started_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-jsp_en-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-reference_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-schema-3.1.9-2.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-sync-data-3.1.6-2.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-tools-3.1.8-2.3.1.ppc64le",
"SUSE Manager Server 3.1:susemanager-tools-3.1.8-2.3.1.s390x",
"SUSE Manager Server 3.1:susemanager-tools-3.1.8-2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-10807",
"url": "https://www.suse.com/security/cve/CVE-2017-10807"
},
{
"category": "external",
"summary": "SUSE Bug 1047282 for CVE-2017-10807",
"url": "https://bugzilla.suse.com/1047282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Manager Server 3.1:cobbler-2.6.6-5.3.1.noarch",
"SUSE Manager Server 3.1:jabberd-2.6.1-3.3.1.ppc64le",
"SUSE Manager Server 3.1:jabberd-2.6.1-3.3.1.s390x",
"SUSE Manager Server 3.1:jabberd-2.6.1-3.3.1.x86_64",
"SUSE Manager Server 3.1:jabberd-db-2.6.1-3.3.1.ppc64le",
"SUSE Manager Server 3.1:jabberd-db-2.6.1-3.3.1.s390x",
"SUSE Manager Server 3.1:jabberd-db-2.6.1-3.3.1.x86_64",
"SUSE Manager Server 3.1:jabberd-sqlite-2.6.1-3.3.1.ppc64le",
"SUSE Manager Server 3.1:jabberd-sqlite-2.6.1-3.3.1.s390x",
"SUSE Manager Server 3.1:jabberd-sqlite-2.6.1-3.3.1.x86_64",
"SUSE Manager Server 3.1:osa-common-5.11.80.3-2.3.1.noarch",
"SUSE Manager Server 3.1:osa-dispatcher-5.11.80.3-2.3.1.noarch",
"SUSE Manager Server 3.1:rhnpush-5.5.104.3-2.3.2.noarch",
"SUSE Manager Server 3.1:salt-netapi-client-0.12.0-3.3.1.noarch",
"SUSE Manager Server 3.1:smdba-1.5.8-0.2.3.1.ppc64le",
"SUSE Manager Server 3.1:smdba-1.5.8-0.2.3.1.s390x",
"SUSE Manager Server 3.1:smdba-1.5.8-0.2.3.1.x86_64",
"SUSE Manager Server 3.1:spacecmd-2.7.8.6-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-app-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-applet-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-config-files-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-config-files-common-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-config-files-tool-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-iss-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-iss-export-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-libs-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-package-push-server-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-server-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-sql-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-sql-oracle-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-sql-postgresql-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-tools-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-xml-export-libs-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-xmlrpc-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-base-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-base-minimal-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-base-minimal-config-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-branding-2.7.2.7-2.3.1.ppc64le",
"SUSE Manager Server 3.1:spacewalk-branding-2.7.2.7-2.3.1.s390x",
"SUSE Manager Server 3.1:spacewalk-branding-2.7.2.7-2.3.1.x86_64",
"SUSE Manager Server 3.1:spacewalk-certs-tools-2.7.0.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-html-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-config-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-lib-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-oracle-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-postgresql-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-search-2.7.3.2-2.3.4.noarch",
"SUSE Manager Server 3.1:spacewalk-taskomatic-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-utils-2.7.10.5-2.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-3.1.8-2.3.1.ppc64le",
"SUSE Manager Server 3.1:susemanager-3.1.8-2.3.1.s390x",
"SUSE Manager Server 3.1:susemanager-3.1.8-2.3.1.x86_64",
"SUSE Manager Server 3.1:susemanager-advanced-topics_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-best-practices_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-docs_en-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-getting-started_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-jsp_en-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-reference_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-schema-3.1.9-2.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-sync-data-3.1.6-2.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-tools-3.1.8-2.3.1.ppc64le",
"SUSE Manager Server 3.1:susemanager-tools-3.1.8-2.3.1.s390x",
"SUSE Manager Server 3.1:susemanager-tools-3.1.8-2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Manager Server 3.1:cobbler-2.6.6-5.3.1.noarch",
"SUSE Manager Server 3.1:jabberd-2.6.1-3.3.1.ppc64le",
"SUSE Manager Server 3.1:jabberd-2.6.1-3.3.1.s390x",
"SUSE Manager Server 3.1:jabberd-2.6.1-3.3.1.x86_64",
"SUSE Manager Server 3.1:jabberd-db-2.6.1-3.3.1.ppc64le",
"SUSE Manager Server 3.1:jabberd-db-2.6.1-3.3.1.s390x",
"SUSE Manager Server 3.1:jabberd-db-2.6.1-3.3.1.x86_64",
"SUSE Manager Server 3.1:jabberd-sqlite-2.6.1-3.3.1.ppc64le",
"SUSE Manager Server 3.1:jabberd-sqlite-2.6.1-3.3.1.s390x",
"SUSE Manager Server 3.1:jabberd-sqlite-2.6.1-3.3.1.x86_64",
"SUSE Manager Server 3.1:osa-common-5.11.80.3-2.3.1.noarch",
"SUSE Manager Server 3.1:osa-dispatcher-5.11.80.3-2.3.1.noarch",
"SUSE Manager Server 3.1:rhnpush-5.5.104.3-2.3.2.noarch",
"SUSE Manager Server 3.1:salt-netapi-client-0.12.0-3.3.1.noarch",
"SUSE Manager Server 3.1:smdba-1.5.8-0.2.3.1.ppc64le",
"SUSE Manager Server 3.1:smdba-1.5.8-0.2.3.1.s390x",
"SUSE Manager Server 3.1:smdba-1.5.8-0.2.3.1.x86_64",
"SUSE Manager Server 3.1:spacecmd-2.7.8.6-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-app-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-applet-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-config-files-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-config-files-common-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-config-files-tool-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-iss-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-iss-export-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-libs-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-package-push-server-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-server-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-sql-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-sql-oracle-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-sql-postgresql-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-tools-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-xml-export-libs-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-xmlrpc-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-base-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-base-minimal-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-base-minimal-config-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-branding-2.7.2.7-2.3.1.ppc64le",
"SUSE Manager Server 3.1:spacewalk-branding-2.7.2.7-2.3.1.s390x",
"SUSE Manager Server 3.1:spacewalk-branding-2.7.2.7-2.3.1.x86_64",
"SUSE Manager Server 3.1:spacewalk-certs-tools-2.7.0.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-html-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-config-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-lib-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-oracle-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-postgresql-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-search-2.7.3.2-2.3.4.noarch",
"SUSE Manager Server 3.1:spacewalk-taskomatic-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-utils-2.7.10.5-2.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-3.1.8-2.3.1.ppc64le",
"SUSE Manager Server 3.1:susemanager-3.1.8-2.3.1.s390x",
"SUSE Manager Server 3.1:susemanager-3.1.8-2.3.1.x86_64",
"SUSE Manager Server 3.1:susemanager-advanced-topics_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-best-practices_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-docs_en-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-getting-started_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-jsp_en-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-reference_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-schema-3.1.9-2.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-sync-data-3.1.6-2.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-tools-3.1.8-2.3.1.ppc64le",
"SUSE Manager Server 3.1:susemanager-tools-3.1.8-2.3.1.s390x",
"SUSE Manager Server 3.1:susemanager-tools-3.1.8-2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-08-25T11:42:16Z",
"details": "important"
}
],
"title": "CVE-2017-10807"
},
{
"cve": "CVE-2017-7538",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7538"
}
],
"notes": [
{
"category": "general",
"text": "A cross-site scripting (XSS) flaw was found in how an organization name is displayed in Satellite 5, before 5.8. A user able to change an organization\u0027s name could exploit this flaw to perform XSS attacks against other Satellite users.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Manager Server 3.1:cobbler-2.6.6-5.3.1.noarch",
"SUSE Manager Server 3.1:jabberd-2.6.1-3.3.1.ppc64le",
"SUSE Manager Server 3.1:jabberd-2.6.1-3.3.1.s390x",
"SUSE Manager Server 3.1:jabberd-2.6.1-3.3.1.x86_64",
"SUSE Manager Server 3.1:jabberd-db-2.6.1-3.3.1.ppc64le",
"SUSE Manager Server 3.1:jabberd-db-2.6.1-3.3.1.s390x",
"SUSE Manager Server 3.1:jabberd-db-2.6.1-3.3.1.x86_64",
"SUSE Manager Server 3.1:jabberd-sqlite-2.6.1-3.3.1.ppc64le",
"SUSE Manager Server 3.1:jabberd-sqlite-2.6.1-3.3.1.s390x",
"SUSE Manager Server 3.1:jabberd-sqlite-2.6.1-3.3.1.x86_64",
"SUSE Manager Server 3.1:osa-common-5.11.80.3-2.3.1.noarch",
"SUSE Manager Server 3.1:osa-dispatcher-5.11.80.3-2.3.1.noarch",
"SUSE Manager Server 3.1:rhnpush-5.5.104.3-2.3.2.noarch",
"SUSE Manager Server 3.1:salt-netapi-client-0.12.0-3.3.1.noarch",
"SUSE Manager Server 3.1:smdba-1.5.8-0.2.3.1.ppc64le",
"SUSE Manager Server 3.1:smdba-1.5.8-0.2.3.1.s390x",
"SUSE Manager Server 3.1:smdba-1.5.8-0.2.3.1.x86_64",
"SUSE Manager Server 3.1:spacecmd-2.7.8.6-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-app-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-applet-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-config-files-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-config-files-common-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-config-files-tool-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-iss-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-iss-export-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-libs-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-package-push-server-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-server-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-sql-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-sql-oracle-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-sql-postgresql-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-tools-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-xml-export-libs-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-xmlrpc-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-base-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-base-minimal-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-base-minimal-config-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-branding-2.7.2.7-2.3.1.ppc64le",
"SUSE Manager Server 3.1:spacewalk-branding-2.7.2.7-2.3.1.s390x",
"SUSE Manager Server 3.1:spacewalk-branding-2.7.2.7-2.3.1.x86_64",
"SUSE Manager Server 3.1:spacewalk-certs-tools-2.7.0.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-html-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-config-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-lib-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-oracle-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-postgresql-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-search-2.7.3.2-2.3.4.noarch",
"SUSE Manager Server 3.1:spacewalk-taskomatic-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-utils-2.7.10.5-2.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-3.1.8-2.3.1.ppc64le",
"SUSE Manager Server 3.1:susemanager-3.1.8-2.3.1.s390x",
"SUSE Manager Server 3.1:susemanager-3.1.8-2.3.1.x86_64",
"SUSE Manager Server 3.1:susemanager-advanced-topics_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-best-practices_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-docs_en-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-getting-started_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-jsp_en-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-reference_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-schema-3.1.9-2.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-sync-data-3.1.6-2.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-tools-3.1.8-2.3.1.ppc64le",
"SUSE Manager Server 3.1:susemanager-tools-3.1.8-2.3.1.s390x",
"SUSE Manager Server 3.1:susemanager-tools-3.1.8-2.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7538",
"url": "https://www.suse.com/security/cve/CVE-2017-7538"
},
{
"category": "external",
"summary": "SUSE Bug 1048968 for CVE-2017-7538",
"url": "https://bugzilla.suse.com/1048968"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Manager Server 3.1:cobbler-2.6.6-5.3.1.noarch",
"SUSE Manager Server 3.1:jabberd-2.6.1-3.3.1.ppc64le",
"SUSE Manager Server 3.1:jabberd-2.6.1-3.3.1.s390x",
"SUSE Manager Server 3.1:jabberd-2.6.1-3.3.1.x86_64",
"SUSE Manager Server 3.1:jabberd-db-2.6.1-3.3.1.ppc64le",
"SUSE Manager Server 3.1:jabberd-db-2.6.1-3.3.1.s390x",
"SUSE Manager Server 3.1:jabberd-db-2.6.1-3.3.1.x86_64",
"SUSE Manager Server 3.1:jabberd-sqlite-2.6.1-3.3.1.ppc64le",
"SUSE Manager Server 3.1:jabberd-sqlite-2.6.1-3.3.1.s390x",
"SUSE Manager Server 3.1:jabberd-sqlite-2.6.1-3.3.1.x86_64",
"SUSE Manager Server 3.1:osa-common-5.11.80.3-2.3.1.noarch",
"SUSE Manager Server 3.1:osa-dispatcher-5.11.80.3-2.3.1.noarch",
"SUSE Manager Server 3.1:rhnpush-5.5.104.3-2.3.2.noarch",
"SUSE Manager Server 3.1:salt-netapi-client-0.12.0-3.3.1.noarch",
"SUSE Manager Server 3.1:smdba-1.5.8-0.2.3.1.ppc64le",
"SUSE Manager Server 3.1:smdba-1.5.8-0.2.3.1.s390x",
"SUSE Manager Server 3.1:smdba-1.5.8-0.2.3.1.x86_64",
"SUSE Manager Server 3.1:spacecmd-2.7.8.6-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-app-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-applet-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-config-files-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-config-files-common-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-config-files-tool-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-iss-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-iss-export-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-libs-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-package-push-server-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-server-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-sql-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-sql-oracle-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-sql-postgresql-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-tools-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-xml-export-libs-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-xmlrpc-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-base-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-base-minimal-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-base-minimal-config-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-branding-2.7.2.7-2.3.1.ppc64le",
"SUSE Manager Server 3.1:spacewalk-branding-2.7.2.7-2.3.1.s390x",
"SUSE Manager Server 3.1:spacewalk-branding-2.7.2.7-2.3.1.x86_64",
"SUSE Manager Server 3.1:spacewalk-certs-tools-2.7.0.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-html-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-config-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-lib-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-oracle-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-postgresql-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-search-2.7.3.2-2.3.4.noarch",
"SUSE Manager Server 3.1:spacewalk-taskomatic-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-utils-2.7.10.5-2.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-3.1.8-2.3.1.ppc64le",
"SUSE Manager Server 3.1:susemanager-3.1.8-2.3.1.s390x",
"SUSE Manager Server 3.1:susemanager-3.1.8-2.3.1.x86_64",
"SUSE Manager Server 3.1:susemanager-advanced-topics_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-best-practices_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-docs_en-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-getting-started_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-jsp_en-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-reference_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-schema-3.1.9-2.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-sync-data-3.1.6-2.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-tools-3.1.8-2.3.1.ppc64le",
"SUSE Manager Server 3.1:susemanager-tools-3.1.8-2.3.1.s390x",
"SUSE Manager Server 3.1:susemanager-tools-3.1.8-2.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE Manager Server 3.1:cobbler-2.6.6-5.3.1.noarch",
"SUSE Manager Server 3.1:jabberd-2.6.1-3.3.1.ppc64le",
"SUSE Manager Server 3.1:jabberd-2.6.1-3.3.1.s390x",
"SUSE Manager Server 3.1:jabberd-2.6.1-3.3.1.x86_64",
"SUSE Manager Server 3.1:jabberd-db-2.6.1-3.3.1.ppc64le",
"SUSE Manager Server 3.1:jabberd-db-2.6.1-3.3.1.s390x",
"SUSE Manager Server 3.1:jabberd-db-2.6.1-3.3.1.x86_64",
"SUSE Manager Server 3.1:jabberd-sqlite-2.6.1-3.3.1.ppc64le",
"SUSE Manager Server 3.1:jabberd-sqlite-2.6.1-3.3.1.s390x",
"SUSE Manager Server 3.1:jabberd-sqlite-2.6.1-3.3.1.x86_64",
"SUSE Manager Server 3.1:osa-common-5.11.80.3-2.3.1.noarch",
"SUSE Manager Server 3.1:osa-dispatcher-5.11.80.3-2.3.1.noarch",
"SUSE Manager Server 3.1:rhnpush-5.5.104.3-2.3.2.noarch",
"SUSE Manager Server 3.1:salt-netapi-client-0.12.0-3.3.1.noarch",
"SUSE Manager Server 3.1:smdba-1.5.8-0.2.3.1.ppc64le",
"SUSE Manager Server 3.1:smdba-1.5.8-0.2.3.1.s390x",
"SUSE Manager Server 3.1:smdba-1.5.8-0.2.3.1.x86_64",
"SUSE Manager Server 3.1:spacecmd-2.7.8.6-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-app-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-applet-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-config-files-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-config-files-common-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-config-files-tool-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-iss-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-iss-export-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-libs-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-package-push-server-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-server-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-sql-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-sql-oracle-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-sql-postgresql-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-tools-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-xml-export-libs-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-backend-xmlrpc-2.7.73.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-base-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-base-minimal-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-base-minimal-config-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-branding-2.7.2.7-2.3.1.ppc64le",
"SUSE Manager Server 3.1:spacewalk-branding-2.7.2.7-2.3.1.s390x",
"SUSE Manager Server 3.1:spacewalk-branding-2.7.2.7-2.3.1.x86_64",
"SUSE Manager Server 3.1:spacewalk-certs-tools-2.7.0.7-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-html-2.7.1.10-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-config-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-lib-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-oracle-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-java-postgresql-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-search-2.7.3.2-2.3.4.noarch",
"SUSE Manager Server 3.1:spacewalk-taskomatic-2.7.46.5-2.3.1.noarch",
"SUSE Manager Server 3.1:spacewalk-utils-2.7.10.5-2.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-3.1.8-2.3.1.ppc64le",
"SUSE Manager Server 3.1:susemanager-3.1.8-2.3.1.s390x",
"SUSE Manager Server 3.1:susemanager-3.1.8-2.3.1.x86_64",
"SUSE Manager Server 3.1:susemanager-advanced-topics_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-best-practices_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-docs_en-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-getting-started_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-jsp_en-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-reference_en-pdf-3-10.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-schema-3.1.9-2.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-sync-data-3.1.6-2.3.1.noarch",
"SUSE Manager Server 3.1:susemanager-tools-3.1.8-2.3.1.ppc64le",
"SUSE Manager Server 3.1:susemanager-tools-3.1.8-2.3.1.s390x",
"SUSE Manager Server 3.1:susemanager-tools-3.1.8-2.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-08-25T11:42:16Z",
"details": "moderate"
}
],
"title": "CVE-2017-7538"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…