Action not permitted
Modal body text goes here.
Modal Title
Modal Body
cve-2019-10093
Vulnerability from cvelistv5
Published
2019-08-02 18:32
Modified
2024-08-04 22:10
Severity ?
EPSS score ?
1.45%
(0.79027)
Summary
In Apache Tika 1.19 to 1.21, a carefully crafted 2003ml or 2006ml file could consume all available SAXParsers in the pool and lead to very long hangs. Apache Tika users should upgrade to 1.22 or later.
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Apache | Apache Tika |
Version: 1.19 to 1.21 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-04T22:10:09.762Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://lists.apache.org/thread.html/a5a44eff1b9eda3bc69d22943a1030c43d376380c75d3ab04d0c1a21%40%3Cdev.tika.apache.org%3E", }, { name: "[tika-dev] 20190809 security fixes for CVE-2019-10088 and CVE-2019-1009{3,4}", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://lists.apache.org/thread.html/fb6c84fd387de997e5e366d50b0ca331a328c466432c80f8c5eed33d%40%3Cdev.tika.apache.org%3E", }, { name: "[tika-dev] 20190812 Re: security fixes for CVE-2019-10088 and CVE-2019-1009{3,4}", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://lists.apache.org/thread.html/da9ee189d1756f8508d0f2386d8e25aca5a6df541739829232be8a94%40%3Cdev.tika.apache.org%3E", }, { name: "[tika-dev] 20190813 Re: security fixes for CVE-2019-10088 and CVE-2019-1009{3,4}", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://lists.apache.org/thread.html/39723d8227b248781898c200aa24b154683673287b150a204b83787d%40%3Cdev.tika.apache.org%3E", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://security.netapp.com/advisory/ntap-20190828-0004/", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://www.oracle.com/security-alerts/cpujan2020.html", }, { name: "[lucene-solr-user] 20200320 CVEs (vulnerabilities) that apply to Solr 8.4.1", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "https://lists.apache.org/thread.html/r204ba2a9ea750f38d789d2bb429cc0925ad6133deea7cbc3001d96b5%40%3Csolr-user.lucene.apache.org%3E", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://www.oracle.com/security-alerts/cpuapr2020.html", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Apache Tika", vendor: "Apache", versions: [ { status: "affected", version: "1.19 to 1.21", }, ], }, ], datePublic: "2019-08-02T00:00:00", descriptions: [ { lang: "en", value: "In Apache Tika 1.19 to 1.21, a carefully crafted 2003ml or 2006ml file could consume all available SAXParsers in the pool and lead to very long hangs. Apache Tika users should upgrade to 1.22 or later.", }, ], problemTypes: [ { descriptions: [ { description: "DoS", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2020-04-15T21:06:49", orgId: "f0158376-9dc2-43b6-827c-5f631a4d8d09", shortName: "apache", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://lists.apache.org/thread.html/a5a44eff1b9eda3bc69d22943a1030c43d376380c75d3ab04d0c1a21%40%3Cdev.tika.apache.org%3E", }, { name: "[tika-dev] 20190809 security fixes for CVE-2019-10088 and CVE-2019-1009{3,4}", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://lists.apache.org/thread.html/fb6c84fd387de997e5e366d50b0ca331a328c466432c80f8c5eed33d%40%3Cdev.tika.apache.org%3E", }, { name: "[tika-dev] 20190812 Re: security fixes for CVE-2019-10088 and CVE-2019-1009{3,4}", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://lists.apache.org/thread.html/da9ee189d1756f8508d0f2386d8e25aca5a6df541739829232be8a94%40%3Cdev.tika.apache.org%3E", }, { name: "[tika-dev] 20190813 Re: security fixes for CVE-2019-10088 and CVE-2019-1009{3,4}", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://lists.apache.org/thread.html/39723d8227b248781898c200aa24b154683673287b150a204b83787d%40%3Cdev.tika.apache.org%3E", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://security.netapp.com/advisory/ntap-20190828-0004/", }, { tags: [ "x_refsource_MISC", ], url: "https://www.oracle.com/security-alerts/cpujan2020.html", }, { name: "[lucene-solr-user] 20200320 CVEs (vulnerabilities) that apply to Solr 8.4.1", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "https://lists.apache.org/thread.html/r204ba2a9ea750f38d789d2bb429cc0925ad6133deea7cbc3001d96b5%40%3Csolr-user.lucene.apache.org%3E", }, { tags: [ "x_refsource_MISC", ], url: "https://www.oracle.com/security-alerts/cpuapr2020.html", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "security@apache.org", ID: "CVE-2019-10093", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Apache Tika", version: { version_data: [ { version_value: "1.19 to 1.21", }, ], }, }, ], }, vendor_name: "Apache", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "In Apache Tika 1.19 to 1.21, a carefully crafted 2003ml or 2006ml file could consume all available SAXParsers in the pool and lead to very long hangs. Apache Tika users should upgrade to 1.22 or later.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "DoS", }, ], }, ], }, references: { reference_data: [ { name: "https://lists.apache.org/thread.html/a5a44eff1b9eda3bc69d22943a1030c43d376380c75d3ab04d0c1a21@%3Cdev.tika.apache.org%3E", refsource: "CONFIRM", url: "https://lists.apache.org/thread.html/a5a44eff1b9eda3bc69d22943a1030c43d376380c75d3ab04d0c1a21@%3Cdev.tika.apache.org%3E", }, { name: "[tika-dev] 20190809 security fixes for CVE-2019-10088 and CVE-2019-1009{3,4}", refsource: "MLIST", url: "https://lists.apache.org/thread.html/fb6c84fd387de997e5e366d50b0ca331a328c466432c80f8c5eed33d@%3Cdev.tika.apache.org%3E", }, { name: "[tika-dev] 20190812 Re: security fixes for CVE-2019-10088 and CVE-2019-1009{3,4}", refsource: "MLIST", url: "https://lists.apache.org/thread.html/da9ee189d1756f8508d0f2386d8e25aca5a6df541739829232be8a94@%3Cdev.tika.apache.org%3E", }, { name: "[tika-dev] 20190813 Re: security fixes for CVE-2019-10088 and CVE-2019-1009{3,4}", refsource: "MLIST", url: "https://lists.apache.org/thread.html/39723d8227b248781898c200aa24b154683673287b150a204b83787d@%3Cdev.tika.apache.org%3E", }, { name: "https://security.netapp.com/advisory/ntap-20190828-0004/", refsource: "CONFIRM", url: "https://security.netapp.com/advisory/ntap-20190828-0004/", }, { name: "https://www.oracle.com/security-alerts/cpujan2020.html", refsource: "MISC", url: "https://www.oracle.com/security-alerts/cpujan2020.html", }, { name: "[lucene-solr-user] 20200320 CVEs (vulnerabilities) that apply to Solr 8.4.1", refsource: "MLIST", url: "https://lists.apache.org/thread.html/r204ba2a9ea750f38d789d2bb429cc0925ad6133deea7cbc3001d96b5@%3Csolr-user.lucene.apache.org%3E", }, { name: "https://www.oracle.com/security-alerts/cpuapr2020.html", refsource: "MISC", url: "https://www.oracle.com/security-alerts/cpuapr2020.html", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "f0158376-9dc2-43b6-827c-5f631a4d8d09", assignerShortName: "apache", cveId: "CVE-2019-10093", datePublished: "2019-08-02T18:32:41", dateReserved: "2019-03-26T00:00:00", dateUpdated: "2024-08-04T22:10:09.762Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { fkie_nvd: { configurations: "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apache:tika:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"1.19\", \"versionEndIncluding\": \"1.21\", \"matchCriteriaId\": \"3DBE0816-FF04-4428-BADE-975A0FDC3714\"}]}]}]", descriptions: "[{\"lang\": \"en\", \"value\": \"In Apache Tika 1.19 to 1.21, a carefully crafted 2003ml or 2006ml file could consume all available SAXParsers in the pool and lead to very long hangs. Apache Tika users should upgrade to 1.22 or later.\"}, {\"lang\": \"es\", \"value\": \"En Tika de Apache versiones 1.19 hasta 1.21, un archivo 2003ml o 2006ml cuidadosamente dise\\u00f1ado podr\\u00eda consumir todos los SAXParsers disponibles en el grupo y conllevar a suspensiones muy largas. Los usuarios de Tika de Apache deben actualizar a la versi\\u00f3n 1.22 o posterior.\"}]", id: "CVE-2019-10093", lastModified: "2024-11-21T04:18:23.460", metrics: "{\"cvssMetricV30\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H\", \"baseScore\": 6.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:N/I:N/A:P\", \"baseScore\": 4.3, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}", published: "2019-08-02T19:15:11.780", references: "[{\"url\": \"https://lists.apache.org/thread.html/39723d8227b248781898c200aa24b154683673287b150a204b83787d%40%3Cdev.tika.apache.org%3E\", \"source\": \"security@apache.org\"}, {\"url\": \"https://lists.apache.org/thread.html/a5a44eff1b9eda3bc69d22943a1030c43d376380c75d3ab04d0c1a21%40%3Cdev.tika.apache.org%3E\", \"source\": \"security@apache.org\"}, {\"url\": \"https://lists.apache.org/thread.html/da9ee189d1756f8508d0f2386d8e25aca5a6df541739829232be8a94%40%3Cdev.tika.apache.org%3E\", \"source\": \"security@apache.org\"}, {\"url\": \"https://lists.apache.org/thread.html/fb6c84fd387de997e5e366d50b0ca331a328c466432c80f8c5eed33d%40%3Cdev.tika.apache.org%3E\", \"source\": \"security@apache.org\"}, {\"url\": \"https://lists.apache.org/thread.html/r204ba2a9ea750f38d789d2bb429cc0925ad6133deea7cbc3001d96b5%40%3Csolr-user.lucene.apache.org%3E\", \"source\": \"security@apache.org\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20190828-0004/\", \"source\": \"security@apache.org\"}, {\"url\": \"https://www.oracle.com/security-alerts/cpuapr2020.html\", \"source\": \"security@apache.org\"}, {\"url\": \"https://www.oracle.com/security-alerts/cpujan2020.html\", \"source\": \"security@apache.org\"}, {\"url\": \"https://lists.apache.org/thread.html/39723d8227b248781898c200aa24b154683673287b150a204b83787d%40%3Cdev.tika.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/a5a44eff1b9eda3bc69d22943a1030c43d376380c75d3ab04d0c1a21%40%3Cdev.tika.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/da9ee189d1756f8508d0f2386d8e25aca5a6df541739829232be8a94%40%3Cdev.tika.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/fb6c84fd387de997e5e366d50b0ca331a328c466432c80f8c5eed33d%40%3Cdev.tika.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/r204ba2a9ea750f38d789d2bb429cc0925ad6133deea7cbc3001d96b5%40%3Csolr-user.lucene.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20190828-0004/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.oracle.com/security-alerts/cpuapr2020.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.oracle.com/security-alerts/cpujan2020.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]", sourceIdentifier: "security@apache.org", vulnStatus: "Modified", weaknesses: "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-770\"}]}]", }, nvd: "{\"cve\":{\"id\":\"CVE-2019-10093\",\"sourceIdentifier\":\"security@apache.org\",\"published\":\"2019-08-02T19:15:11.780\",\"lastModified\":\"2024-11-21T04:18:23.460\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In Apache Tika 1.19 to 1.21, a carefully crafted 2003ml or 2006ml file could consume all available SAXParsers in the pool and lead to very long hangs. Apache Tika users should upgrade to 1.22 or later.\"},{\"lang\":\"es\",\"value\":\"En Tika de Apache versiones 1.19 hasta 1.21, un archivo 2003ml o 2006ml cuidadosamente diseñado podría consumir todos los SAXParsers disponibles en el grupo y conllevar a suspensiones muy largas. Los usuarios de Tika de Apache deben actualizar a la versión 1.22 o posterior.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:N/A:P\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-770\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tika:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.19\",\"versionEndIncluding\":\"1.21\",\"matchCriteriaId\":\"3DBE0816-FF04-4428-BADE-975A0FDC3714\"}]}]}],\"references\":[{\"url\":\"https://lists.apache.org/thread.html/39723d8227b248781898c200aa24b154683673287b150a204b83787d%40%3Cdev.tika.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/a5a44eff1b9eda3bc69d22943a1030c43d376380c75d3ab04d0c1a21%40%3Cdev.tika.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/da9ee189d1756f8508d0f2386d8e25aca5a6df541739829232be8a94%40%3Cdev.tika.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/fb6c84fd387de997e5e366d50b0ca331a328c466432c80f8c5eed33d%40%3Cdev.tika.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/r204ba2a9ea750f38d789d2bb429cc0925ad6133deea7cbc3001d96b5%40%3Csolr-user.lucene.apache.org%3E\",\"source\":\"security@apache.org\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20190828-0004/\",\"source\":\"security@apache.org\"},{\"url\":\"https://www.oracle.com/security-alerts/cpuapr2020.html\",\"source\":\"security@apache.org\"},{\"url\":\"https://www.oracle.com/security-alerts/cpujan2020.html\",\"source\":\"security@apache.org\"},{\"url\":\"https://lists.apache.org/thread.html/39723d8227b248781898c200aa24b154683673287b150a204b83787d%40%3Cdev.tika.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/a5a44eff1b9eda3bc69d22943a1030c43d376380c75d3ab04d0c1a21%40%3Cdev.tika.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/da9ee189d1756f8508d0f2386d8e25aca5a6df541739829232be8a94%40%3Cdev.tika.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/fb6c84fd387de997e5e366d50b0ca331a328c466432c80f8c5eed33d%40%3Cdev.tika.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/r204ba2a9ea750f38d789d2bb429cc0925ad6133deea7cbc3001d96b5%40%3Csolr-user.lucene.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20190828-0004/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.oracle.com/security-alerts/cpuapr2020.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.oracle.com/security-alerts/cpujan2020.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}", }, }
suse-su-2019:2521-1
Vulnerability from csaf_suse
Published
2019-10-02 12:50
Modified
2019-10-02 12:50
Summary
Security update for SUSE Manager Server 3.2
Notes
Title of the patch
Security update for SUSE Manager Server 3.2
Description of the patch
This update fixes the following issues:
cobbler:
- Jinja2 template library fix (bsc#1141661)
pgjdbc-ng:
- Allow dots in database name (bsc#1146416)
py26-compat-salt:
- Get tornado dependency from the system on SLE12 (bsc#1149409)
- Catch SSLError for TLS 1.2 bootstraps with RES/RHEL6 and SLE11 (bsc#1147126)
spacecmd:
- Check that a channel doesn't have clones before deleting it (bsc#1138454)
spacewalk-backend:
- Remove credentials also from potential rhn.conf backup files in spacewalk-debug (bsc#1146419)
- Do not make 'rhn-satellite-exporter' to crash with 'AttributeError' (bsc#1146869)
- Spacewalk-remove-channel check that channel doesn't have cloned channels before deleting it (bsc#1138454)
- Prevent duplicate changelog entries due VARCHAR(3000)
db text column (bsc#1144889)
- Avoid traceback on mgr-inter-sync when exception message
contains UTF8 characters or there are problems with the
package cache (bsc#1143016)
registered guest (bsc#1093381)
spacewalk-branding:
- Add missing strings for task status page
spacewalk-client-tools:
- Invalidate cache 5 minutes before actual expiration(bsc#1143562)
spacewalk-java:
- Add UI message when salt-formulas system folders are unreachable (bsc#1142309)
- Don't convert localhost repositories URL in mirror case (bsc#1135957)
- Check that a channel doesn't have clones before deleting it (bsc#1138454)
- Improve websocket authentication to prevent errors in logs (bsc#1138454)
- Normalize date formats for actions, notifications and clm (bsc#1142774)
- Cloning Errata from a specific channel should not take packages
from other channels (bsc#1142764)
- Add susemanager as prerequired for spacewalk-java
- Improve performance for retrieving the user permissions on channels (bsc#1140644)
- Prerequire salt package to avoid not existing user issues
- Support partly patched CVEs in CVE audit (bsc#1137229)
spacewalk-setup:
- Configure 150 Tomcat workers by default, matching httpds MaxClients
spacewalk-utils:
- Common-channels: Fix repo type assignment for type YUM
- Adds support for Ubuntu and Debian channels to spacewalk-common-channels.
spacewalk-web:
- Fix the 'include recommended' button on channels selection in SSM (bsc#1145086)
- Normalize date formats for actions, notifications and clm (bsc#1142774)
- Add unsupported browser warning when using Internet Explorer
susemanager:
- Dmidecode does not exist on s390x (bsc#1145119)
susemanager-docs_en:
- Add link to the creation of the bootstrap script (bsc#1146895).
- Improve adoc tagging.
- LimitNOFILE back-port.
- Fix command-line error (bsc#1096426).
susemanager-schema:
- Improve performance for retrieving the user permissions on channels (bsc#1140644)
susemanager-sls:
- Bootstrapping RES6/RHEL6/SLE11 with TLS1.2 now shows error message. (bsc#1147126)
- Dmidecode does not exist on ppc64le and s390x (bsc#1145119)
- Update susemanager.conf to use adler32 for computing the server_id for new minions
tika-core:
New upstream version 1.2.2. Fixes security issues:
- CVE-2019-10088: Fixed an OOM from a crafted Zip File in Apache Tika's RecursiveParserWrapper (bsc#1144500).
- CVE-2019-10093: Fixed a Denial of Service in Apache Tika's 2003ml and 2006ml Parsers (bsc#1144510).
- CVE-2019-10094: Fixed a stack overflow from crafted compressed files in Apache Tika's RecursiveParserWrapper (bsc#1144515).
Patchnames
SUSE-2019-2521,SUSE-SUSE-Manager-Server-3.2-2019-2521
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for SUSE Manager Server 3.2", title: "Title of the patch", }, { category: "description", text: "\nThis update fixes the following issues:\n\ncobbler:\n\n- Jinja2 template library fix (bsc#1141661)\n\npgjdbc-ng:\n\n- Allow dots in database name (bsc#1146416) \n\npy26-compat-salt:\n\n- Get tornado dependency from the system on SLE12 (bsc#1149409) \n- Catch SSLError for TLS 1.2 bootstraps with RES/RHEL6 and SLE11 (bsc#1147126)\n\nspacecmd:\n\n- Check that a channel doesn't have clones before deleting it (bsc#1138454)\n\nspacewalk-backend:\n\n- Remove credentials also from potential rhn.conf backup files in spacewalk-debug (bsc#1146419)\n- Do not make 'rhn-satellite-exporter' to crash with 'AttributeError' (bsc#1146869)\n- Spacewalk-remove-channel check that channel doesn't have cloned channels before deleting it (bsc#1138454)\n- Prevent duplicate changelog entries due VARCHAR(3000)\n db text column (bsc#1144889)\n- Avoid traceback on mgr-inter-sync when exception message\n contains UTF8 characters or there are problems with the\n package cache (bsc#1143016)\n registered guest (bsc#1093381)\n\nspacewalk-branding:\n\n- Add missing strings for task status page\n\nspacewalk-client-tools:\n\n- Invalidate cache 5 minutes before actual expiration(bsc#1143562)\n\nspacewalk-java:\n\n- Add UI message when salt-formulas system folders are unreachable (bsc#1142309)\n- Don't convert localhost repositories URL in mirror case (bsc#1135957)\n- Check that a channel doesn't have clones before deleting it (bsc#1138454)\n- Improve websocket authentication to prevent errors in logs (bsc#1138454)\n- Normalize date formats for actions, notifications and clm (bsc#1142774)\n- Cloning Errata from a specific channel should not take packages\n from other channels (bsc#1142764)\n- Add susemanager as prerequired for spacewalk-java\n- Improve performance for retrieving the user permissions on channels (bsc#1140644)\n- Prerequire salt package to avoid not existing user issues\n- Support partly patched CVEs in CVE audit (bsc#1137229)\n\nspacewalk-setup:\n\n- Configure 150 Tomcat workers by default, matching httpds MaxClients\n\nspacewalk-utils:\n\n- Common-channels: Fix repo type assignment for type YUM\n- Adds support for Ubuntu and Debian channels to spacewalk-common-channels.\n\nspacewalk-web:\n\n- Fix the 'include recommended' button on channels selection in SSM (bsc#1145086)\n- Normalize date formats for actions, notifications and clm (bsc#1142774)\n- Add unsupported browser warning when using Internet Explorer\n\nsusemanager:\n\n- Dmidecode does not exist on s390x (bsc#1145119)\n\nsusemanager-docs_en:\n\n- Add link to the creation of the bootstrap script (bsc#1146895).\n- Improve adoc tagging.\n- LimitNOFILE back-port.\n- Fix command-line error (bsc#1096426).\n\nsusemanager-schema:\n\n- Improve performance for retrieving the user permissions on channels (bsc#1140644)\n\nsusemanager-sls:\n\n- Bootstrapping RES6/RHEL6/SLE11 with TLS1.2 now shows error message. (bsc#1147126)\n- Dmidecode does not exist on ppc64le and s390x (bsc#1145119)\n- Update susemanager.conf to use adler32 for computing the server_id for new minions\n\ntika-core:\n\nNew upstream version 1.2.2. Fixes security issues:\n\n- CVE-2019-10088: Fixed an OOM from a crafted Zip File in Apache Tika's RecursiveParserWrapper (bsc#1144500).\n- CVE-2019-10093: Fixed a Denial of Service in Apache Tika's 2003ml and 2006ml Parsers (bsc#1144510).\n- CVE-2019-10094: Fixed a stack overflow from crafted compressed files in Apache Tika's RecursiveParserWrapper (bsc#1144515).\n\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2019-2521,SUSE-SUSE-Manager-Server-3.2-2019-2521", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_2521-1.json", }, { category: "self", summary: "URL for SUSE-SU-2019:2521-1", url: "https://www.suse.com/support/update/announcement/2019/suse-su-20192521-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2019:2521-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2019-October/005979.html", }, { category: "self", summary: "SUSE Bug 1093381", url: "https://bugzilla.suse.com/1093381", }, { category: "self", summary: "SUSE Bug 1096426", url: "https://bugzilla.suse.com/1096426", }, { category: "self", summary: "SUSE Bug 1135957", url: "https://bugzilla.suse.com/1135957", }, { category: "self", summary: "SUSE Bug 1137229", url: "https://bugzilla.suse.com/1137229", }, { category: "self", summary: "SUSE Bug 1138454", url: "https://bugzilla.suse.com/1138454", }, { category: "self", summary: "SUSE Bug 1140644", url: "https://bugzilla.suse.com/1140644", }, { category: "self", summary: "SUSE Bug 1141661", url: "https://bugzilla.suse.com/1141661", }, { category: "self", summary: "SUSE Bug 1142309", url: "https://bugzilla.suse.com/1142309", }, { category: "self", summary: "SUSE Bug 1142764", url: "https://bugzilla.suse.com/1142764", }, { category: "self", summary: "SUSE Bug 1142774", url: "https://bugzilla.suse.com/1142774", }, { category: "self", summary: "SUSE Bug 1143016", url: "https://bugzilla.suse.com/1143016", }, { category: "self", summary: "SUSE Bug 1143562", url: "https://bugzilla.suse.com/1143562", }, { category: "self", summary: "SUSE Bug 1144500", url: "https://bugzilla.suse.com/1144500", }, { category: "self", summary: "SUSE Bug 1144510", url: "https://bugzilla.suse.com/1144510", }, { category: "self", summary: "SUSE Bug 1144515", url: "https://bugzilla.suse.com/1144515", }, { category: "self", summary: "SUSE Bug 1144889", url: "https://bugzilla.suse.com/1144889", }, { category: "self", summary: "SUSE Bug 1145086", url: "https://bugzilla.suse.com/1145086", }, { category: "self", summary: "SUSE Bug 1145119", url: "https://bugzilla.suse.com/1145119", }, { category: "self", summary: "SUSE Bug 1146416", url: "https://bugzilla.suse.com/1146416", }, { category: "self", summary: "SUSE Bug 1146419", url: "https://bugzilla.suse.com/1146419", }, { category: "self", summary: "SUSE Bug 1146869", url: "https://bugzilla.suse.com/1146869", }, { category: "self", summary: "SUSE Bug 1146895", url: "https://bugzilla.suse.com/1146895", }, { category: "self", summary: "SUSE Bug 1147126", url: "https://bugzilla.suse.com/1147126", }, { category: "self", summary: "SUSE Bug 1149409", url: "https://bugzilla.suse.com/1149409", }, { category: "self", summary: "SUSE CVE CVE-2019-10088 page", url: "https://www.suse.com/security/cve/CVE-2019-10088/", }, { category: "self", summary: "SUSE CVE CVE-2019-10093 page", url: "https://www.suse.com/security/cve/CVE-2019-10093/", }, { category: "self", summary: "SUSE CVE CVE-2019-10094 page", url: "https://www.suse.com/security/cve/CVE-2019-10094/", }, ], title: "Security update for SUSE Manager Server 3.2", tracking: { current_release_date: "2019-10-02T12:50:20Z", generator: { date: "2019-10-02T12:50:20Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2019:2521-1", initial_release_date: "2019-10-02T12:50:20Z", revision_history: [ { date: "2019-10-02T12:50:20Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "spacewalk-branding-2.8.5.16-3.22.1.aarch64", product: { name: "spacewalk-branding-2.8.5.16-3.22.1.aarch64", product_id: "spacewalk-branding-2.8.5.16-3.22.1.aarch64", }, }, { category: "product_version", name: "spacewalk-branding-devel-2.8.5.16-3.22.1.aarch64", product: { name: "spacewalk-branding-devel-2.8.5.16-3.22.1.aarch64", product_id: "spacewalk-branding-devel-2.8.5.16-3.22.1.aarch64", }, }, { category: "product_version", name: "susemanager-3.2.20-3.31.2.aarch64", product: { name: "susemanager-3.2.20-3.31.2.aarch64", product_id: "susemanager-3.2.20-3.31.2.aarch64", }, }, { category: "product_version", name: "susemanager-tools-3.2.20-3.31.2.aarch64", product: { name: "susemanager-tools-3.2.20-3.31.2.aarch64", product_id: "susemanager-tools-3.2.20-3.31.2.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "cobbler-2.6.6-6.22.1.noarch", product: { name: "cobbler-2.6.6-6.22.1.noarch", product_id: "cobbler-2.6.6-6.22.1.noarch", }, }, { category: "product_version", name: "cobbler-tests-2.6.6-6.22.1.noarch", product: { name: "cobbler-tests-2.6.6-6.22.1.noarch", product_id: "cobbler-tests-2.6.6-6.22.1.noarch", }, }, { category: "product_version", name: "cobbler-web-2.6.6-6.22.1.noarch", product: { name: "cobbler-web-2.6.6-6.22.1.noarch", product_id: "cobbler-web-2.6.6-6.22.1.noarch", }, }, { category: "product_version", name: "koan-2.6.6-6.22.1.noarch", product: { name: "koan-2.6.6-6.22.1.noarch", product_id: "koan-2.6.6-6.22.1.noarch", }, }, { category: "product_version", name: "pgjdbc-ng-0.7.1-2.6.1.noarch", product: { name: "pgjdbc-ng-0.7.1-2.6.1.noarch", product_id: "pgjdbc-ng-0.7.1-2.6.1.noarch", }, }, { category: "product_version", name: "py26-compat-salt-2016.11.10-6.32.1.noarch", product: { name: "py26-compat-salt-2016.11.10-6.32.1.noarch", product_id: "py26-compat-salt-2016.11.10-6.32.1.noarch", }, }, { category: "product_version", name: "python2-spacewalk-check-2.8.22.5-3.6.1.noarch", product: { name: "python2-spacewalk-check-2.8.22.5-3.6.1.noarch", product_id: "python2-spacewalk-check-2.8.22.5-3.6.1.noarch", }, }, { category: "product_version", name: "python2-spacewalk-client-setup-2.8.22.5-3.6.1.noarch", product: { name: "python2-spacewalk-client-setup-2.8.22.5-3.6.1.noarch", product_id: "python2-spacewalk-client-setup-2.8.22.5-3.6.1.noarch", }, }, { category: "product_version", name: "python2-spacewalk-client-tools-2.8.22.5-3.6.1.noarch", product: { name: "python2-spacewalk-client-tools-2.8.22.5-3.6.1.noarch", product_id: "python2-spacewalk-client-tools-2.8.22.5-3.6.1.noarch", }, }, { category: "product_version", name: "spacecmd-2.8.25.11-3.23.1.noarch", product: { name: "spacecmd-2.8.25.11-3.23.1.noarch", product_id: "spacecmd-2.8.25.11-3.23.1.noarch", }, }, { category: "product_version", name: "spacewalk-backend-2.8.57.19-3.39.2.noarch", product: { name: "spacewalk-backend-2.8.57.19-3.39.2.noarch", product_id: "spacewalk-backend-2.8.57.19-3.39.2.noarch", }, }, { category: "product_version", name: "spacewalk-backend-app-2.8.57.19-3.39.2.noarch", product: { name: "spacewalk-backend-app-2.8.57.19-3.39.2.noarch", product_id: "spacewalk-backend-app-2.8.57.19-3.39.2.noarch", }, }, { category: "product_version", name: "spacewalk-backend-applet-2.8.57.19-3.39.2.noarch", product: { name: "spacewalk-backend-applet-2.8.57.19-3.39.2.noarch", product_id: "spacewalk-backend-applet-2.8.57.19-3.39.2.noarch", }, }, { category: "product_version", name: "spacewalk-backend-cdn-2.8.57.19-3.39.2.noarch", product: { name: "spacewalk-backend-cdn-2.8.57.19-3.39.2.noarch", product_id: "spacewalk-backend-cdn-2.8.57.19-3.39.2.noarch", }, }, { category: "product_version", name: "spacewalk-backend-config-files-2.8.57.19-3.39.2.noarch", product: { name: "spacewalk-backend-config-files-2.8.57.19-3.39.2.noarch", product_id: "spacewalk-backend-config-files-2.8.57.19-3.39.2.noarch", }, }, { category: "product_version", name: "spacewalk-backend-config-files-common-2.8.57.19-3.39.2.noarch", product: { name: "spacewalk-backend-config-files-common-2.8.57.19-3.39.2.noarch", product_id: "spacewalk-backend-config-files-common-2.8.57.19-3.39.2.noarch", }, }, { category: "product_version", name: "spacewalk-backend-config-files-tool-2.8.57.19-3.39.2.noarch", product: { name: "spacewalk-backend-config-files-tool-2.8.57.19-3.39.2.noarch", product_id: "spacewalk-backend-config-files-tool-2.8.57.19-3.39.2.noarch", }, }, { category: "product_version", name: "spacewalk-backend-iss-2.8.57.19-3.39.2.noarch", product: { name: "spacewalk-backend-iss-2.8.57.19-3.39.2.noarch", product_id: "spacewalk-backend-iss-2.8.57.19-3.39.2.noarch", }, }, { category: "product_version", name: "spacewalk-backend-iss-export-2.8.57.19-3.39.2.noarch", product: { name: "spacewalk-backend-iss-export-2.8.57.19-3.39.2.noarch", product_id: "spacewalk-backend-iss-export-2.8.57.19-3.39.2.noarch", }, }, { category: "product_version", name: "spacewalk-backend-libs-2.8.57.19-3.39.2.noarch", product: { name: "spacewalk-backend-libs-2.8.57.19-3.39.2.noarch", product_id: "spacewalk-backend-libs-2.8.57.19-3.39.2.noarch", }, }, { category: "product_version", name: "spacewalk-backend-package-push-server-2.8.57.19-3.39.2.noarch", product: { name: "spacewalk-backend-package-push-server-2.8.57.19-3.39.2.noarch", product_id: "spacewalk-backend-package-push-server-2.8.57.19-3.39.2.noarch", }, }, { category: "product_version", name: "spacewalk-backend-server-2.8.57.19-3.39.2.noarch", product: { name: "spacewalk-backend-server-2.8.57.19-3.39.2.noarch", product_id: "spacewalk-backend-server-2.8.57.19-3.39.2.noarch", }, }, { category: "product_version", name: "spacewalk-backend-sql-2.8.57.19-3.39.2.noarch", product: { name: "spacewalk-backend-sql-2.8.57.19-3.39.2.noarch", product_id: "spacewalk-backend-sql-2.8.57.19-3.39.2.noarch", }, }, { category: "product_version", name: "spacewalk-backend-sql-oracle-2.8.57.19-3.39.2.noarch", product: { name: "spacewalk-backend-sql-oracle-2.8.57.19-3.39.2.noarch", product_id: "spacewalk-backend-sql-oracle-2.8.57.19-3.39.2.noarch", }, }, { category: "product_version", name: "spacewalk-backend-sql-postgresql-2.8.57.19-3.39.2.noarch", product: { name: "spacewalk-backend-sql-postgresql-2.8.57.19-3.39.2.noarch", product_id: "spacewalk-backend-sql-postgresql-2.8.57.19-3.39.2.noarch", }, }, { category: "product_version", name: "spacewalk-backend-tools-2.8.57.19-3.39.2.noarch", product: { name: "spacewalk-backend-tools-2.8.57.19-3.39.2.noarch", product_id: "spacewalk-backend-tools-2.8.57.19-3.39.2.noarch", }, }, { category: "product_version", name: "spacewalk-backend-xml-export-libs-2.8.57.19-3.39.2.noarch", product: { name: "spacewalk-backend-xml-export-libs-2.8.57.19-3.39.2.noarch", product_id: "spacewalk-backend-xml-export-libs-2.8.57.19-3.39.2.noarch", }, }, { category: "product_version", name: "spacewalk-backend-xmlrpc-2.8.57.19-3.39.2.noarch", product: { name: "spacewalk-backend-xmlrpc-2.8.57.19-3.39.2.noarch", product_id: "spacewalk-backend-xmlrpc-2.8.57.19-3.39.2.noarch", }, }, { category: "product_version", name: "spacewalk-base-2.8.7.19-3.36.1.noarch", product: { name: "spacewalk-base-2.8.7.19-3.36.1.noarch", product_id: "spacewalk-base-2.8.7.19-3.36.1.noarch", }, }, { category: "product_version", name: "spacewalk-base-minimal-2.8.7.19-3.36.1.noarch", product: { name: "spacewalk-base-minimal-2.8.7.19-3.36.1.noarch", product_id: "spacewalk-base-minimal-2.8.7.19-3.36.1.noarch", }, }, { category: "product_version", name: "spacewalk-base-minimal-config-2.8.7.19-3.36.1.noarch", product: { name: "spacewalk-base-minimal-config-2.8.7.19-3.36.1.noarch", product_id: "spacewalk-base-minimal-config-2.8.7.19-3.36.1.noarch", }, }, { category: "product_version", name: "spacewalk-check-2.8.22.5-3.6.1.noarch", product: { name: "spacewalk-check-2.8.22.5-3.6.1.noarch", product_id: "spacewalk-check-2.8.22.5-3.6.1.noarch", }, }, { category: "product_version", name: "spacewalk-client-setup-2.8.22.5-3.6.1.noarch", product: { name: "spacewalk-client-setup-2.8.22.5-3.6.1.noarch", product_id: "spacewalk-client-setup-2.8.22.5-3.6.1.noarch", }, }, { category: "product_version", name: "spacewalk-client-tools-2.8.22.5-3.6.1.noarch", product: { name: "spacewalk-client-tools-2.8.22.5-3.6.1.noarch", product_id: "spacewalk-client-tools-2.8.22.5-3.6.1.noarch", }, }, { category: "product_version", name: "spacewalk-dobby-2.8.7.19-3.36.1.noarch", product: { name: "spacewalk-dobby-2.8.7.19-3.36.1.noarch", product_id: "spacewalk-dobby-2.8.7.19-3.36.1.noarch", }, }, { category: "product_version", name: "spacewalk-html-2.8.7.19-3.36.1.noarch", product: { name: "spacewalk-html-2.8.7.19-3.36.1.noarch", product_id: "spacewalk-html-2.8.7.19-3.36.1.noarch", }, }, { category: "product_version", name: "spacewalk-java-2.8.78.24-3.38.1.noarch", product: { name: "spacewalk-java-2.8.78.24-3.38.1.noarch", product_id: "spacewalk-java-2.8.78.24-3.38.1.noarch", }, }, { category: "product_version", name: "spacewalk-java-apidoc-sources-2.8.78.24-3.38.1.noarch", product: { name: "spacewalk-java-apidoc-sources-2.8.78.24-3.38.1.noarch", product_id: "spacewalk-java-apidoc-sources-2.8.78.24-3.38.1.noarch", }, }, { category: "product_version", name: "spacewalk-java-config-2.8.78.24-3.38.1.noarch", product: { name: "spacewalk-java-config-2.8.78.24-3.38.1.noarch", product_id: "spacewalk-java-config-2.8.78.24-3.38.1.noarch", }, }, { category: "product_version", name: "spacewalk-java-lib-2.8.78.24-3.38.1.noarch", product: { name: "spacewalk-java-lib-2.8.78.24-3.38.1.noarch", product_id: "spacewalk-java-lib-2.8.78.24-3.38.1.noarch", }, }, { category: "product_version", name: "spacewalk-java-oracle-2.8.78.24-3.38.1.noarch", product: { name: "spacewalk-java-oracle-2.8.78.24-3.38.1.noarch", product_id: "spacewalk-java-oracle-2.8.78.24-3.38.1.noarch", }, }, { category: "product_version", name: "spacewalk-java-postgresql-2.8.78.24-3.38.1.noarch", product: { name: "spacewalk-java-postgresql-2.8.78.24-3.38.1.noarch", product_id: "spacewalk-java-postgresql-2.8.78.24-3.38.1.noarch", }, }, { category: "product_version", name: "spacewalk-setup-2.8.7.8-3.19.1.noarch", product: { name: "spacewalk-setup-2.8.7.8-3.19.1.noarch", product_id: "spacewalk-setup-2.8.7.8-3.19.1.noarch", }, }, { category: "product_version", name: "spacewalk-taskomatic-2.8.78.24-3.38.1.noarch", product: { name: "spacewalk-taskomatic-2.8.78.24-3.38.1.noarch", product_id: "spacewalk-taskomatic-2.8.78.24-3.38.1.noarch", }, }, { category: "product_version", name: "spacewalk-utils-2.8.18.5-3.9.1.noarch", product: { name: "spacewalk-utils-2.8.18.5-3.9.1.noarch", product_id: "spacewalk-utils-2.8.18.5-3.9.1.noarch", }, }, { category: "product_version", name: "susemanager-advanced-topics_en-pdf-3.2-11.32.1.noarch", product: { name: "susemanager-advanced-topics_en-pdf-3.2-11.32.1.noarch", product_id: "susemanager-advanced-topics_en-pdf-3.2-11.32.1.noarch", }, }, { category: "product_version", name: "susemanager-best-practices_en-pdf-3.2-11.32.1.noarch", product: { name: "susemanager-best-practices_en-pdf-3.2-11.32.1.noarch", product_id: "susemanager-best-practices_en-pdf-3.2-11.32.1.noarch", }, }, { category: "product_version", name: "susemanager-docs_en-3.2-11.32.1.noarch", product: { name: "susemanager-docs_en-3.2-11.32.1.noarch", product_id: "susemanager-docs_en-3.2-11.32.1.noarch", }, }, { category: "product_version", name: "susemanager-getting-started_en-pdf-3.2-11.32.1.noarch", product: { name: "susemanager-getting-started_en-pdf-3.2-11.32.1.noarch", product_id: "susemanager-getting-started_en-pdf-3.2-11.32.1.noarch", }, }, { category: "product_version", name: "susemanager-jsp_en-3.2-11.32.1.noarch", product: { name: "susemanager-jsp_en-3.2-11.32.1.noarch", product_id: "susemanager-jsp_en-3.2-11.32.1.noarch", }, }, { category: "product_version", name: "susemanager-reference_en-pdf-3.2-11.32.1.noarch", product: { name: "susemanager-reference_en-pdf-3.2-11.32.1.noarch", product_id: "susemanager-reference_en-pdf-3.2-11.32.1.noarch", }, }, { category: "product_version", name: "susemanager-schema-3.2.21-3.31.1.noarch", product: { name: "susemanager-schema-3.2.21-3.31.1.noarch", product_id: "susemanager-schema-3.2.21-3.31.1.noarch", }, }, { category: "product_version", name: "susemanager-schema-sanity-3.2.21-3.31.1.noarch", product: { name: "susemanager-schema-sanity-3.2.21-3.31.1.noarch", product_id: "susemanager-schema-sanity-3.2.21-3.31.1.noarch", }, }, { category: "product_version", name: "susemanager-sls-3.2.27-3.35.1.noarch", product: { name: "susemanager-sls-3.2.27-3.35.1.noarch", product_id: "susemanager-sls-3.2.27-3.35.1.noarch", }, }, { category: "product_version", name: "susemanager-web-libs-2.8.7.19-3.36.1.noarch", product: { name: "susemanager-web-libs-2.8.7.19-3.36.1.noarch", product_id: "susemanager-web-libs-2.8.7.19-3.36.1.noarch", }, }, { category: "product_version", name: "tika-core-1.22-3.9.1.noarch", product: { name: "tika-core-1.22-3.9.1.noarch", product_id: "tika-core-1.22-3.9.1.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "spacewalk-branding-2.8.5.16-3.22.1.ppc64le", product: { name: "spacewalk-branding-2.8.5.16-3.22.1.ppc64le", product_id: "spacewalk-branding-2.8.5.16-3.22.1.ppc64le", }, }, { category: "product_version", name: "spacewalk-branding-devel-2.8.5.16-3.22.1.ppc64le", product: { name: "spacewalk-branding-devel-2.8.5.16-3.22.1.ppc64le", product_id: "spacewalk-branding-devel-2.8.5.16-3.22.1.ppc64le", }, }, { category: "product_version", name: "susemanager-3.2.20-3.31.2.ppc64le", product: { name: "susemanager-3.2.20-3.31.2.ppc64le", product_id: "susemanager-3.2.20-3.31.2.ppc64le", }, }, { category: "product_version", name: "susemanager-tools-3.2.20-3.31.2.ppc64le", product: { name: "susemanager-tools-3.2.20-3.31.2.ppc64le", product_id: "susemanager-tools-3.2.20-3.31.2.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "spacewalk-branding-2.8.5.16-3.22.1.s390x", product: { name: "spacewalk-branding-2.8.5.16-3.22.1.s390x", product_id: "spacewalk-branding-2.8.5.16-3.22.1.s390x", }, }, { category: "product_version", name: "spacewalk-branding-devel-2.8.5.16-3.22.1.s390x", product: { name: "spacewalk-branding-devel-2.8.5.16-3.22.1.s390x", product_id: "spacewalk-branding-devel-2.8.5.16-3.22.1.s390x", }, }, { category: "product_version", name: "susemanager-3.2.20-3.31.2.s390x", product: { name: "susemanager-3.2.20-3.31.2.s390x", product_id: "susemanager-3.2.20-3.31.2.s390x", }, }, { category: "product_version", name: "susemanager-tools-3.2.20-3.31.2.s390x", product: { name: "susemanager-tools-3.2.20-3.31.2.s390x", product_id: "susemanager-tools-3.2.20-3.31.2.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "spacewalk-branding-2.8.5.16-3.22.1.x86_64", product: { name: "spacewalk-branding-2.8.5.16-3.22.1.x86_64", product_id: "spacewalk-branding-2.8.5.16-3.22.1.x86_64", }, }, { category: "product_version", name: "spacewalk-branding-devel-2.8.5.16-3.22.1.x86_64", product: { name: "spacewalk-branding-devel-2.8.5.16-3.22.1.x86_64", product_id: "spacewalk-branding-devel-2.8.5.16-3.22.1.x86_64", }, }, { category: "product_version", name: "susemanager-3.2.20-3.31.2.x86_64", product: { name: "susemanager-3.2.20-3.31.2.x86_64", product_id: "susemanager-3.2.20-3.31.2.x86_64", }, }, { category: "product_version", name: "susemanager-tools-3.2.20-3.31.2.x86_64", product: { name: "susemanager-tools-3.2.20-3.31.2.x86_64", product_id: "susemanager-tools-3.2.20-3.31.2.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Manager Server 3.2", product: { name: "SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2", product_identification_helper: { cpe: "cpe:/o:suse:suse-manager-server:3.2", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "cobbler-2.6.6-6.22.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:cobbler-2.6.6-6.22.1.noarch", }, product_reference: "cobbler-2.6.6-6.22.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "pgjdbc-ng-0.7.1-2.6.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:pgjdbc-ng-0.7.1-2.6.1.noarch", }, product_reference: "pgjdbc-ng-0.7.1-2.6.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "py26-compat-salt-2016.11.10-6.32.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:py26-compat-salt-2016.11.10-6.32.1.noarch", }, product_reference: "py26-compat-salt-2016.11.10-6.32.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "python2-spacewalk-client-tools-2.8.22.5-3.6.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:python2-spacewalk-client-tools-2.8.22.5-3.6.1.noarch", }, product_reference: "python2-spacewalk-client-tools-2.8.22.5-3.6.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacecmd-2.8.25.11-3.23.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacecmd-2.8.25.11-3.23.1.noarch", }, product_reference: "spacecmd-2.8.25.11-3.23.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-2.8.57.19-3.39.2.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-backend-2.8.57.19-3.39.2.noarch", }, product_reference: "spacewalk-backend-2.8.57.19-3.39.2.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-app-2.8.57.19-3.39.2.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-backend-app-2.8.57.19-3.39.2.noarch", }, product_reference: "spacewalk-backend-app-2.8.57.19-3.39.2.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-applet-2.8.57.19-3.39.2.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-backend-applet-2.8.57.19-3.39.2.noarch", }, product_reference: "spacewalk-backend-applet-2.8.57.19-3.39.2.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-config-files-2.8.57.19-3.39.2.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-backend-config-files-2.8.57.19-3.39.2.noarch", }, product_reference: "spacewalk-backend-config-files-2.8.57.19-3.39.2.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-config-files-common-2.8.57.19-3.39.2.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-backend-config-files-common-2.8.57.19-3.39.2.noarch", }, product_reference: "spacewalk-backend-config-files-common-2.8.57.19-3.39.2.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-config-files-tool-2.8.57.19-3.39.2.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-backend-config-files-tool-2.8.57.19-3.39.2.noarch", }, product_reference: "spacewalk-backend-config-files-tool-2.8.57.19-3.39.2.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-iss-2.8.57.19-3.39.2.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-backend-iss-2.8.57.19-3.39.2.noarch", }, product_reference: "spacewalk-backend-iss-2.8.57.19-3.39.2.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-iss-export-2.8.57.19-3.39.2.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-backend-iss-export-2.8.57.19-3.39.2.noarch", }, product_reference: "spacewalk-backend-iss-export-2.8.57.19-3.39.2.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-libs-2.8.57.19-3.39.2.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-backend-libs-2.8.57.19-3.39.2.noarch", }, product_reference: "spacewalk-backend-libs-2.8.57.19-3.39.2.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-package-push-server-2.8.57.19-3.39.2.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-backend-package-push-server-2.8.57.19-3.39.2.noarch", }, product_reference: "spacewalk-backend-package-push-server-2.8.57.19-3.39.2.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-server-2.8.57.19-3.39.2.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-backend-server-2.8.57.19-3.39.2.noarch", }, product_reference: "spacewalk-backend-server-2.8.57.19-3.39.2.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-sql-2.8.57.19-3.39.2.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-backend-sql-2.8.57.19-3.39.2.noarch", }, product_reference: "spacewalk-backend-sql-2.8.57.19-3.39.2.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-sql-oracle-2.8.57.19-3.39.2.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-backend-sql-oracle-2.8.57.19-3.39.2.noarch", }, product_reference: "spacewalk-backend-sql-oracle-2.8.57.19-3.39.2.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-sql-postgresql-2.8.57.19-3.39.2.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-backend-sql-postgresql-2.8.57.19-3.39.2.noarch", }, product_reference: "spacewalk-backend-sql-postgresql-2.8.57.19-3.39.2.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-tools-2.8.57.19-3.39.2.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-backend-tools-2.8.57.19-3.39.2.noarch", }, product_reference: "spacewalk-backend-tools-2.8.57.19-3.39.2.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-xml-export-libs-2.8.57.19-3.39.2.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-backend-xml-export-libs-2.8.57.19-3.39.2.noarch", }, product_reference: "spacewalk-backend-xml-export-libs-2.8.57.19-3.39.2.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-xmlrpc-2.8.57.19-3.39.2.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-backend-xmlrpc-2.8.57.19-3.39.2.noarch", }, product_reference: "spacewalk-backend-xmlrpc-2.8.57.19-3.39.2.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-base-2.8.7.19-3.36.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-base-2.8.7.19-3.36.1.noarch", }, product_reference: "spacewalk-base-2.8.7.19-3.36.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-base-minimal-2.8.7.19-3.36.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-base-minimal-2.8.7.19-3.36.1.noarch", }, product_reference: "spacewalk-base-minimal-2.8.7.19-3.36.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-base-minimal-config-2.8.7.19-3.36.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-base-minimal-config-2.8.7.19-3.36.1.noarch", }, product_reference: "spacewalk-base-minimal-config-2.8.7.19-3.36.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-branding-2.8.5.16-3.22.1.ppc64le as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.ppc64le", }, product_reference: "spacewalk-branding-2.8.5.16-3.22.1.ppc64le", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-branding-2.8.5.16-3.22.1.s390x as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.s390x", }, product_reference: "spacewalk-branding-2.8.5.16-3.22.1.s390x", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-branding-2.8.5.16-3.22.1.x86_64 as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.x86_64", }, product_reference: "spacewalk-branding-2.8.5.16-3.22.1.x86_64", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-client-tools-2.8.22.5-3.6.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-client-tools-2.8.22.5-3.6.1.noarch", }, product_reference: "spacewalk-client-tools-2.8.22.5-3.6.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-html-2.8.7.19-3.36.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-html-2.8.7.19-3.36.1.noarch", }, product_reference: "spacewalk-html-2.8.7.19-3.36.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-java-2.8.78.24-3.38.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-java-2.8.78.24-3.38.1.noarch", }, product_reference: "spacewalk-java-2.8.78.24-3.38.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-java-config-2.8.78.24-3.38.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-java-config-2.8.78.24-3.38.1.noarch", }, product_reference: "spacewalk-java-config-2.8.78.24-3.38.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-java-lib-2.8.78.24-3.38.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-java-lib-2.8.78.24-3.38.1.noarch", }, product_reference: "spacewalk-java-lib-2.8.78.24-3.38.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-java-oracle-2.8.78.24-3.38.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-java-oracle-2.8.78.24-3.38.1.noarch", }, product_reference: "spacewalk-java-oracle-2.8.78.24-3.38.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-java-postgresql-2.8.78.24-3.38.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-java-postgresql-2.8.78.24-3.38.1.noarch", }, product_reference: "spacewalk-java-postgresql-2.8.78.24-3.38.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-setup-2.8.7.8-3.19.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-setup-2.8.7.8-3.19.1.noarch", }, product_reference: "spacewalk-setup-2.8.7.8-3.19.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-taskomatic-2.8.78.24-3.38.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-taskomatic-2.8.78.24-3.38.1.noarch", }, product_reference: "spacewalk-taskomatic-2.8.78.24-3.38.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "spacewalk-utils-2.8.18.5-3.9.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:spacewalk-utils-2.8.18.5-3.9.1.noarch", }, product_reference: "spacewalk-utils-2.8.18.5-3.9.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "susemanager-3.2.20-3.31.2.ppc64le as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.ppc64le", }, product_reference: "susemanager-3.2.20-3.31.2.ppc64le", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "susemanager-3.2.20-3.31.2.s390x as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.s390x", }, product_reference: "susemanager-3.2.20-3.31.2.s390x", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "susemanager-3.2.20-3.31.2.x86_64 as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.x86_64", }, product_reference: "susemanager-3.2.20-3.31.2.x86_64", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "susemanager-advanced-topics_en-pdf-3.2-11.32.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:susemanager-advanced-topics_en-pdf-3.2-11.32.1.noarch", }, product_reference: "susemanager-advanced-topics_en-pdf-3.2-11.32.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "susemanager-best-practices_en-pdf-3.2-11.32.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:susemanager-best-practices_en-pdf-3.2-11.32.1.noarch", }, product_reference: "susemanager-best-practices_en-pdf-3.2-11.32.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "susemanager-docs_en-3.2-11.32.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:susemanager-docs_en-3.2-11.32.1.noarch", }, product_reference: "susemanager-docs_en-3.2-11.32.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "susemanager-getting-started_en-pdf-3.2-11.32.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:susemanager-getting-started_en-pdf-3.2-11.32.1.noarch", }, product_reference: "susemanager-getting-started_en-pdf-3.2-11.32.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "susemanager-jsp_en-3.2-11.32.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:susemanager-jsp_en-3.2-11.32.1.noarch", }, product_reference: "susemanager-jsp_en-3.2-11.32.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "susemanager-reference_en-pdf-3.2-11.32.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:susemanager-reference_en-pdf-3.2-11.32.1.noarch", }, product_reference: "susemanager-reference_en-pdf-3.2-11.32.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "susemanager-schema-3.2.21-3.31.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:susemanager-schema-3.2.21-3.31.1.noarch", }, product_reference: "susemanager-schema-3.2.21-3.31.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "susemanager-sls-3.2.27-3.35.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:susemanager-sls-3.2.27-3.35.1.noarch", }, product_reference: "susemanager-sls-3.2.27-3.35.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "susemanager-tools-3.2.20-3.31.2.ppc64le as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.ppc64le", }, product_reference: "susemanager-tools-3.2.20-3.31.2.ppc64le", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "susemanager-tools-3.2.20-3.31.2.s390x as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.s390x", }, product_reference: "susemanager-tools-3.2.20-3.31.2.s390x", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "susemanager-tools-3.2.20-3.31.2.x86_64 as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.x86_64", }, product_reference: "susemanager-tools-3.2.20-3.31.2.x86_64", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "susemanager-web-libs-2.8.7.19-3.36.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:susemanager-web-libs-2.8.7.19-3.36.1.noarch", }, product_reference: "susemanager-web-libs-2.8.7.19-3.36.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, { category: "default_component_of", full_product_name: { name: "tika-core-1.22-3.9.1.noarch as component of SUSE Manager Server 3.2", product_id: "SUSE Manager Server 3.2:tika-core-1.22-3.9.1.noarch", }, product_reference: "tika-core-1.22-3.9.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.2", }, ], }, vulnerabilities: [ { cve: "CVE-2019-10088", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-10088", }, ], notes: [ { category: "general", text: "A carefully crafted or corrupt zip file can cause an OOM in Apache Tika's RecursiveParserWrapper in versions 1.7-1.21. Users should upgrade to 1.22 or later.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Manager Server 3.2:cobbler-2.6.6-6.22.1.noarch", "SUSE Manager Server 3.2:pgjdbc-ng-0.7.1-2.6.1.noarch", "SUSE Manager Server 3.2:py26-compat-salt-2016.11.10-6.32.1.noarch", "SUSE Manager Server 3.2:python2-spacewalk-client-tools-2.8.22.5-3.6.1.noarch", "SUSE Manager Server 3.2:spacecmd-2.8.25.11-3.23.1.noarch", "SUSE Manager Server 3.2:spacewalk-backend-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-app-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-applet-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-common-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-tool-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-iss-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-iss-export-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-libs-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-package-push-server-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-server-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-oracle-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-postgresql-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-tools-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-xml-export-libs-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-xmlrpc-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-base-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-base-minimal-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-base-minimal-config-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.ppc64le", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.s390x", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.x86_64", "SUSE Manager Server 3.2:spacewalk-client-tools-2.8.22.5-3.6.1.noarch", "SUSE Manager Server 3.2:spacewalk-html-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-config-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-lib-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-oracle-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-postgresql-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-setup-2.8.7.8-3.19.1.noarch", "SUSE Manager Server 3.2:spacewalk-taskomatic-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-utils-2.8.18.5-3.9.1.noarch", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.ppc64le", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.s390x", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.x86_64", "SUSE Manager Server 3.2:susemanager-advanced-topics_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-best-practices_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-docs_en-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-getting-started_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-jsp_en-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-reference_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-schema-3.2.21-3.31.1.noarch", "SUSE Manager Server 3.2:susemanager-sls-3.2.27-3.35.1.noarch", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.ppc64le", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.s390x", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.x86_64", "SUSE Manager Server 3.2:susemanager-web-libs-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:tika-core-1.22-3.9.1.noarch", ], }, references: [ { category: "external", summary: "CVE-2019-10088", url: "https://www.suse.com/security/cve/CVE-2019-10088", }, { category: "external", summary: "SUSE Bug 1144500 for CVE-2019-10088", url: "https://bugzilla.suse.com/1144500", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Manager Server 3.2:cobbler-2.6.6-6.22.1.noarch", "SUSE Manager Server 3.2:pgjdbc-ng-0.7.1-2.6.1.noarch", "SUSE Manager Server 3.2:py26-compat-salt-2016.11.10-6.32.1.noarch", "SUSE Manager Server 3.2:python2-spacewalk-client-tools-2.8.22.5-3.6.1.noarch", "SUSE Manager Server 3.2:spacecmd-2.8.25.11-3.23.1.noarch", "SUSE Manager Server 3.2:spacewalk-backend-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-app-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-applet-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-common-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-tool-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-iss-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-iss-export-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-libs-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-package-push-server-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-server-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-oracle-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-postgresql-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-tools-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-xml-export-libs-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-xmlrpc-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-base-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-base-minimal-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-base-minimal-config-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.ppc64le", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.s390x", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.x86_64", "SUSE Manager Server 3.2:spacewalk-client-tools-2.8.22.5-3.6.1.noarch", "SUSE Manager Server 3.2:spacewalk-html-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-config-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-lib-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-oracle-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-postgresql-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-setup-2.8.7.8-3.19.1.noarch", "SUSE Manager Server 3.2:spacewalk-taskomatic-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-utils-2.8.18.5-3.9.1.noarch", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.ppc64le", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.s390x", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.x86_64", "SUSE Manager Server 3.2:susemanager-advanced-topics_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-best-practices_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-docs_en-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-getting-started_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-jsp_en-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-reference_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-schema-3.2.21-3.31.1.noarch", "SUSE Manager Server 3.2:susemanager-sls-3.2.27-3.35.1.noarch", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.ppc64le", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.s390x", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.x86_64", "SUSE Manager Server 3.2:susemanager-web-libs-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:tika-core-1.22-3.9.1.noarch", ], }, ], scores: [ { cvss_v3: { baseScore: 3.3, baseSeverity: "LOW", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "SUSE Manager Server 3.2:cobbler-2.6.6-6.22.1.noarch", "SUSE Manager Server 3.2:pgjdbc-ng-0.7.1-2.6.1.noarch", "SUSE Manager Server 3.2:py26-compat-salt-2016.11.10-6.32.1.noarch", "SUSE Manager Server 3.2:python2-spacewalk-client-tools-2.8.22.5-3.6.1.noarch", "SUSE Manager Server 3.2:spacecmd-2.8.25.11-3.23.1.noarch", "SUSE Manager Server 3.2:spacewalk-backend-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-app-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-applet-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-common-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-tool-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-iss-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-iss-export-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-libs-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-package-push-server-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-server-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-oracle-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-postgresql-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-tools-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-xml-export-libs-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-xmlrpc-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-base-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-base-minimal-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-base-minimal-config-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.ppc64le", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.s390x", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.x86_64", "SUSE Manager Server 3.2:spacewalk-client-tools-2.8.22.5-3.6.1.noarch", "SUSE Manager Server 3.2:spacewalk-html-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-config-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-lib-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-oracle-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-postgresql-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-setup-2.8.7.8-3.19.1.noarch", "SUSE Manager Server 3.2:spacewalk-taskomatic-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-utils-2.8.18.5-3.9.1.noarch", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.ppc64le", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.s390x", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.x86_64", "SUSE Manager Server 3.2:susemanager-advanced-topics_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-best-practices_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-docs_en-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-getting-started_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-jsp_en-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-reference_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-schema-3.2.21-3.31.1.noarch", "SUSE Manager Server 3.2:susemanager-sls-3.2.27-3.35.1.noarch", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.ppc64le", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.s390x", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.x86_64", "SUSE Manager Server 3.2:susemanager-web-libs-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:tika-core-1.22-3.9.1.noarch", ], }, ], threats: [ { category: "impact", date: "2019-10-02T12:50:20Z", details: "low", }, ], title: "CVE-2019-10088", }, { cve: "CVE-2019-10093", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-10093", }, ], notes: [ { category: "general", text: "In Apache Tika 1.19 to 1.21, a carefully crafted 2003ml or 2006ml file could consume all available SAXParsers in the pool and lead to very long hangs. Apache Tika users should upgrade to 1.22 or later.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Manager Server 3.2:cobbler-2.6.6-6.22.1.noarch", "SUSE Manager Server 3.2:pgjdbc-ng-0.7.1-2.6.1.noarch", "SUSE Manager Server 3.2:py26-compat-salt-2016.11.10-6.32.1.noarch", "SUSE Manager Server 3.2:python2-spacewalk-client-tools-2.8.22.5-3.6.1.noarch", "SUSE Manager Server 3.2:spacecmd-2.8.25.11-3.23.1.noarch", "SUSE Manager Server 3.2:spacewalk-backend-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-app-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-applet-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-common-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-tool-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-iss-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-iss-export-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-libs-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-package-push-server-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-server-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-oracle-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-postgresql-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-tools-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-xml-export-libs-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-xmlrpc-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-base-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-base-minimal-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-base-minimal-config-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.ppc64le", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.s390x", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.x86_64", "SUSE Manager Server 3.2:spacewalk-client-tools-2.8.22.5-3.6.1.noarch", "SUSE Manager Server 3.2:spacewalk-html-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-config-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-lib-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-oracle-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-postgresql-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-setup-2.8.7.8-3.19.1.noarch", "SUSE Manager Server 3.2:spacewalk-taskomatic-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-utils-2.8.18.5-3.9.1.noarch", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.ppc64le", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.s390x", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.x86_64", "SUSE Manager Server 3.2:susemanager-advanced-topics_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-best-practices_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-docs_en-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-getting-started_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-jsp_en-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-reference_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-schema-3.2.21-3.31.1.noarch", "SUSE Manager Server 3.2:susemanager-sls-3.2.27-3.35.1.noarch", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.ppc64le", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.s390x", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.x86_64", "SUSE Manager Server 3.2:susemanager-web-libs-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:tika-core-1.22-3.9.1.noarch", ], }, references: [ { category: "external", summary: "CVE-2019-10093", url: "https://www.suse.com/security/cve/CVE-2019-10093", }, { category: "external", summary: "SUSE Bug 1144510 for CVE-2019-10093", url: "https://bugzilla.suse.com/1144510", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Manager Server 3.2:cobbler-2.6.6-6.22.1.noarch", "SUSE Manager Server 3.2:pgjdbc-ng-0.7.1-2.6.1.noarch", "SUSE Manager Server 3.2:py26-compat-salt-2016.11.10-6.32.1.noarch", "SUSE Manager Server 3.2:python2-spacewalk-client-tools-2.8.22.5-3.6.1.noarch", "SUSE Manager Server 3.2:spacecmd-2.8.25.11-3.23.1.noarch", "SUSE Manager Server 3.2:spacewalk-backend-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-app-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-applet-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-common-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-tool-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-iss-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-iss-export-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-libs-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-package-push-server-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-server-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-oracle-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-postgresql-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-tools-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-xml-export-libs-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-xmlrpc-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-base-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-base-minimal-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-base-minimal-config-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.ppc64le", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.s390x", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.x86_64", "SUSE Manager Server 3.2:spacewalk-client-tools-2.8.22.5-3.6.1.noarch", "SUSE Manager Server 3.2:spacewalk-html-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-config-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-lib-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-oracle-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-postgresql-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-setup-2.8.7.8-3.19.1.noarch", "SUSE Manager Server 3.2:spacewalk-taskomatic-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-utils-2.8.18.5-3.9.1.noarch", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.ppc64le", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.s390x", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.x86_64", "SUSE Manager Server 3.2:susemanager-advanced-topics_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-best-practices_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-docs_en-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-getting-started_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-jsp_en-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-reference_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-schema-3.2.21-3.31.1.noarch", "SUSE Manager Server 3.2:susemanager-sls-3.2.27-3.35.1.noarch", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.ppc64le", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.s390x", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.x86_64", "SUSE Manager Server 3.2:susemanager-web-libs-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:tika-core-1.22-3.9.1.noarch", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "SUSE Manager Server 3.2:cobbler-2.6.6-6.22.1.noarch", "SUSE Manager Server 3.2:pgjdbc-ng-0.7.1-2.6.1.noarch", "SUSE Manager Server 3.2:py26-compat-salt-2016.11.10-6.32.1.noarch", "SUSE Manager Server 3.2:python2-spacewalk-client-tools-2.8.22.5-3.6.1.noarch", "SUSE Manager Server 3.2:spacecmd-2.8.25.11-3.23.1.noarch", "SUSE Manager Server 3.2:spacewalk-backend-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-app-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-applet-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-common-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-tool-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-iss-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-iss-export-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-libs-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-package-push-server-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-server-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-oracle-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-postgresql-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-tools-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-xml-export-libs-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-xmlrpc-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-base-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-base-minimal-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-base-minimal-config-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.ppc64le", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.s390x", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.x86_64", "SUSE Manager Server 3.2:spacewalk-client-tools-2.8.22.5-3.6.1.noarch", "SUSE Manager Server 3.2:spacewalk-html-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-config-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-lib-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-oracle-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-postgresql-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-setup-2.8.7.8-3.19.1.noarch", "SUSE Manager Server 3.2:spacewalk-taskomatic-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-utils-2.8.18.5-3.9.1.noarch", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.ppc64le", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.s390x", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.x86_64", "SUSE Manager Server 3.2:susemanager-advanced-topics_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-best-practices_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-docs_en-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-getting-started_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-jsp_en-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-reference_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-schema-3.2.21-3.31.1.noarch", "SUSE Manager Server 3.2:susemanager-sls-3.2.27-3.35.1.noarch", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.ppc64le", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.s390x", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.x86_64", "SUSE Manager Server 3.2:susemanager-web-libs-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:tika-core-1.22-3.9.1.noarch", ], }, ], threats: [ { category: "impact", date: "2019-10-02T12:50:20Z", details: "moderate", }, ], title: "CVE-2019-10093", }, { cve: "CVE-2019-10094", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-10094", }, ], notes: [ { category: "general", text: "A carefully crafted package/compressed file that, when unzipped/uncompressed yields the same file (a quine), causes a StackOverflowError in Apache Tika's RecursiveParserWrapper in versions 1.7-1.21. Apache Tika users should upgrade to 1.22 or later.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Manager Server 3.2:cobbler-2.6.6-6.22.1.noarch", "SUSE Manager Server 3.2:pgjdbc-ng-0.7.1-2.6.1.noarch", "SUSE Manager Server 3.2:py26-compat-salt-2016.11.10-6.32.1.noarch", "SUSE Manager Server 3.2:python2-spacewalk-client-tools-2.8.22.5-3.6.1.noarch", "SUSE Manager Server 3.2:spacecmd-2.8.25.11-3.23.1.noarch", "SUSE Manager Server 3.2:spacewalk-backend-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-app-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-applet-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-common-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-tool-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-iss-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-iss-export-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-libs-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-package-push-server-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-server-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-oracle-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-postgresql-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-tools-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-xml-export-libs-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-xmlrpc-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-base-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-base-minimal-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-base-minimal-config-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.ppc64le", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.s390x", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.x86_64", "SUSE Manager Server 3.2:spacewalk-client-tools-2.8.22.5-3.6.1.noarch", "SUSE Manager Server 3.2:spacewalk-html-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-config-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-lib-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-oracle-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-postgresql-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-setup-2.8.7.8-3.19.1.noarch", "SUSE Manager Server 3.2:spacewalk-taskomatic-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-utils-2.8.18.5-3.9.1.noarch", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.ppc64le", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.s390x", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.x86_64", "SUSE Manager Server 3.2:susemanager-advanced-topics_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-best-practices_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-docs_en-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-getting-started_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-jsp_en-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-reference_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-schema-3.2.21-3.31.1.noarch", "SUSE Manager Server 3.2:susemanager-sls-3.2.27-3.35.1.noarch", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.ppc64le", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.s390x", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.x86_64", "SUSE Manager Server 3.2:susemanager-web-libs-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:tika-core-1.22-3.9.1.noarch", ], }, references: [ { category: "external", summary: "CVE-2019-10094", url: "https://www.suse.com/security/cve/CVE-2019-10094", }, { category: "external", summary: "SUSE Bug 1144515 for CVE-2019-10094", url: "https://bugzilla.suse.com/1144515", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Manager Server 3.2:cobbler-2.6.6-6.22.1.noarch", "SUSE Manager Server 3.2:pgjdbc-ng-0.7.1-2.6.1.noarch", "SUSE Manager Server 3.2:py26-compat-salt-2016.11.10-6.32.1.noarch", "SUSE Manager Server 3.2:python2-spacewalk-client-tools-2.8.22.5-3.6.1.noarch", "SUSE Manager Server 3.2:spacecmd-2.8.25.11-3.23.1.noarch", "SUSE Manager Server 3.2:spacewalk-backend-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-app-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-applet-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-common-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-tool-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-iss-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-iss-export-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-libs-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-package-push-server-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-server-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-oracle-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-postgresql-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-tools-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-xml-export-libs-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-xmlrpc-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-base-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-base-minimal-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-base-minimal-config-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.ppc64le", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.s390x", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.x86_64", "SUSE Manager Server 3.2:spacewalk-client-tools-2.8.22.5-3.6.1.noarch", "SUSE Manager Server 3.2:spacewalk-html-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-config-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-lib-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-oracle-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-postgresql-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-setup-2.8.7.8-3.19.1.noarch", "SUSE Manager Server 3.2:spacewalk-taskomatic-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-utils-2.8.18.5-3.9.1.noarch", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.ppc64le", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.s390x", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.x86_64", "SUSE Manager Server 3.2:susemanager-advanced-topics_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-best-practices_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-docs_en-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-getting-started_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-jsp_en-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-reference_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-schema-3.2.21-3.31.1.noarch", "SUSE Manager Server 3.2:susemanager-sls-3.2.27-3.35.1.noarch", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.ppc64le", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.s390x", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.x86_64", "SUSE Manager Server 3.2:susemanager-web-libs-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:tika-core-1.22-3.9.1.noarch", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "SUSE Manager Server 3.2:cobbler-2.6.6-6.22.1.noarch", "SUSE Manager Server 3.2:pgjdbc-ng-0.7.1-2.6.1.noarch", "SUSE Manager Server 3.2:py26-compat-salt-2016.11.10-6.32.1.noarch", "SUSE Manager Server 3.2:python2-spacewalk-client-tools-2.8.22.5-3.6.1.noarch", "SUSE Manager Server 3.2:spacecmd-2.8.25.11-3.23.1.noarch", "SUSE Manager Server 3.2:spacewalk-backend-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-app-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-applet-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-common-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-config-files-tool-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-iss-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-iss-export-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-libs-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-package-push-server-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-server-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-oracle-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-sql-postgresql-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-tools-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-xml-export-libs-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-backend-xmlrpc-2.8.57.19-3.39.2.noarch", "SUSE Manager Server 3.2:spacewalk-base-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-base-minimal-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-base-minimal-config-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.ppc64le", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.s390x", "SUSE Manager Server 3.2:spacewalk-branding-2.8.5.16-3.22.1.x86_64", "SUSE Manager Server 3.2:spacewalk-client-tools-2.8.22.5-3.6.1.noarch", "SUSE Manager Server 3.2:spacewalk-html-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-config-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-lib-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-oracle-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-java-postgresql-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-setup-2.8.7.8-3.19.1.noarch", "SUSE Manager Server 3.2:spacewalk-taskomatic-2.8.78.24-3.38.1.noarch", "SUSE Manager Server 3.2:spacewalk-utils-2.8.18.5-3.9.1.noarch", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.ppc64le", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.s390x", "SUSE Manager Server 3.2:susemanager-3.2.20-3.31.2.x86_64", "SUSE Manager Server 3.2:susemanager-advanced-topics_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-best-practices_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-docs_en-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-getting-started_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-jsp_en-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-reference_en-pdf-3.2-11.32.1.noarch", "SUSE Manager Server 3.2:susemanager-schema-3.2.21-3.31.1.noarch", "SUSE Manager Server 3.2:susemanager-sls-3.2.27-3.35.1.noarch", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.ppc64le", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.s390x", "SUSE Manager Server 3.2:susemanager-tools-3.2.20-3.31.2.x86_64", "SUSE Manager Server 3.2:susemanager-web-libs-2.8.7.19-3.36.1.noarch", "SUSE Manager Server 3.2:tika-core-1.22-3.9.1.noarch", ], }, ], threats: [ { category: "impact", date: "2019-10-02T12:50:20Z", details: "moderate", }, ], title: "CVE-2019-10094", }, ], }
suse-su-2019:2930-1
Vulnerability from csaf_suse
Published
2019-11-07 16:52
Modified
2019-11-07 16:52
Summary
Security update for SUSE Manager Server 4.0
Notes
Title of the patch
Security update for SUSE Manager Server 4.0
Description of the patch
This update fixes the following issues:
cobbler:
- Fix for install loop caused autoinstallation profiles (bsc#1151875)
- Update module config description to match new parameters
- Add config migration script and runs it in post-install script
- Fix for config backups in post install script (bsc#1149075)
- Move apache config file cobbler.conf to conf.d directory
and remove the VirtualHost container as it overwrite rules
already set in conf.d
- Realignment with Cobbler 3.0.0 release candidate.
- Fix for typo in settings for scm_track module.
- Optimization for settings loading in scm_track module.
cpu-mitigations-formula:
- Fix grub entry changed for sle12* so it matches sle15* (bsc#1145873)
mgr-osad:
- Obsolete all old python2-osa* packages to avoid conflicts (bsc#1152290)
patterns-suse-manager:
- Add recommends for cpu-mitigations-formula
pgjdbc-ng:
- Allow dots in database name (bsc#1146416)
prometheus-exporters-formula:
- Allow to configure arbitrary arguments when running exporters
- Add support for Debian/Ubuntu and Red Hat systems (RHEL/CentOS)
- Install the LICENSE together with the package
py26-compat-salt:
- Get tornado dependency from the system on SLE12 (bsc#1149409)
python-susemanager-retail:
- Update to version 0.1.1568808472.be9f236
- Parse parition type 82 as swap in SLEPOS migration (bsc#1136959)
- Allow kernel command line for branches to be set as an option to
retail_branch_init CLI
- Automatically calculate dhcp dynamic range from branch ip if not
set
python-urlgrabber:
- Allow non-integer values for URLGRABBER_DEBUG env variable (bsc#1152514)
- Fixes usage of log level lookup for Python3 (bsc#1146683)
spacecmd:
- Java api expects content as encoded string instead of encode bytes like before (bsc#1153277)
- Fix building and installing on CentOS8/RES8/RHEL8
- Check that a channel doesn't have clones before deleting it (bsc#1138454)
spacewalk-admin:
- Avoid a 'Permission denied' salt error when publisher_acl
is set (bsc#1150154)
spacewalk-backend:
- Fix re-registration with re-activation key (bsc#1154275)
- Change the default value of taskomatic maxmemory to 4GB
- Add basic support for importing modular repositories
- Import additional fields for Deb packages
- Add script to update additional fields in the DB for existing Deb packages
- Use active values for diskchecker mails
- Parse restart_suggested flag from patches and set it as keywords (bsc#1151467)
- Improve error message when deleting channel that's in a content lifecycle project (bsc#1145769)
- Prevent 'reposync' crash when handling metadata on RPM repos (bsc#1138358)
- Do not show expected WARNING messages from 'c_rehash'
- Fix misspelling in spacewalk-repo-sync (bsc#1149633)
- Remove credentials also from potential rhn.conf backup files in spacewalk-debug (bsc#1146419)
- Do not crash 'rhn-satellite-exporter' with ModuleNotFound error (bsc#1146869)
- Spacewalk-remove-channel check that channel doesn't have cloned channels before deleting it (bsc#1138454)
- Fix broken spacewalk-data-fsck utility
- Add '--latest' support for reposync on DEB based repositories
- Do not try to download RPMs from the unresolved mirrorlist URL
- Fix encoding issues with DB bytes values (bsc#1144300)
- Fix import of rhnAuthPAM to avoid issues when using rhnpush.
- Avoid traceback on mgr-inter-sync when there are problems
with cache of packages (bsc#1143016)
spacewalk-branding:
- Improve menu scrollbar style for firefox
- Add UI message when salt-formulas system folders are unreachable (bsc#1142309)
spacewalk-certs-tools:
- Require mgr-daemon (new name of spacewalksd) so we systems with
spacewalksd get always the new package installed (bsc#1149353)
spacewalk-client-tools:
- Require mgr-daemon (new name of spacewalksd) so we systems with
spacewalksd get always the new package installed (bsc#1149353)
- Enable spacewalk-update-service on package installation
(bsc#1143789)
- Invalidate cache 5 minutes before actual expiration(bsc#1143562)
spacewalk-config:
- Change the default value of taskomatic maxmemory to 4GB
- Resolve modules.yaml file for modular repositories
spacewalk-java:
- Change the default value of taskomatic maxmemory to 4GB
- Silence cache strategy Hibernate warning
- Return result in compatible type to what defined in database procedure (bsc#1150729)
- Allow channels names to start with numbers
- Fix: handle special deb package names (bsc#1150113)
- Remove extra spaces in dependencies fields in Debian repo Packages file (bsc#1145551)
- Allow monitoring for managed systems running Ubuntu 18.04 and RedHat 6/7
- Improve performance for 'Manage Software Channels' view (bsc#1151399)
- Import additional fields for Deb packages
- Use value from systemd unit file if not set in /etc/rhn/rhn.conf
- Implement 'keyword' filter for Content Lifecycle Management
- Add support for Azure, Amazon EC2, and Google Compute Engine as Virtual Host Manager.
- Allow ssl connections from Tomcat to Postgres (bsc#1149210)
- Use default in case taskomatic.java.maxmemory is unset
- Fix parsing of /etc/rhn/rhn.conf for taskomatic.java.maxmemory (bsc#1151097)
- Change form order and change project creation message (bsc#1145744)
- Use 'SCC organization credentials' instead of 'SCC credentials' in error message (bsc#1149425)
- Implement 'regular expression' Filter for Content Lifecycle Management
matching package names, patch name, patch synopsis and package names in patches
- Implement provisioning for salt clients
- Explicitly mention in API docs that to preserve LF/CR, user needs to encode the data(bsc#1135442)
- New Single Page Application engine for the UI. It can be enabled with the config 'web.spa.enable' set to true
- Check that a channel doesn't have clones before deleting it (bsc#1138454)
- Fix documentation of contentmanagement handler (bsc#1145753)
- Add new API endpoint to list available Filter Criteria
- Improve API documentation of Filter Criteria
- Implement 'patch contains package' Filter for Content Lifecycle Management
- Implement Filter Patch 'by type' Content Lifecycle Management
- Improve websocket authentication to prevent errors in logs (bsc#1138454)
- Implement filtering errata by synopsis in Content Lifecycle Management
- Normalize date formats for actions, notifications and clm (bsc#1142774)
- Implement ALLOW filters in Content Lifecycle Management
- Implement 'by date' Filter for Content Lifecycle Management
- UI render without error if salt-formulas system folders are unreachable (bsc#1142309)
- Cloning Errata from a specific channel should not take packages
from other channels (bsc#1142764)
- Add susemanager as prerequired for spacewalk-java
spacewalk-setup:
- Fix cobbler authentication module configuration required for
new cobbler package
- Configure 150 Tomcat workers by default, matching httpds MaxClients
spacewalk-utils:
- Add FQDN resolver for spacewalk-manage-channel-lifecycle (bsc#1153578)
- Common-channels: Fix repo type assignment for type YUM
spacewalk-web:
- Redirect to project when canceling creating a filter (bsc#1145750)
- Better visualization of the filters attached to a CLM Project. Allow/deny are now split
- Fix ui issues with content lifecycle project list page (bsc#1145587)
- Implement 'keyword' filter for Content Lifecycle Management
- Enable Azure, Amazon EC2 and Google Compute Engine as available Virtual host Managers
- Trim strings when creating/updating image stores/profiles (bsc#1133429)
- Show loading spin while loading salt keys data (bsc#1150180)
- CLM - Disable clones by default of the shown CLM Project sources
- Change form order and change project creation message (bsc#1145744)
- Add UI message when salt-formulas system folders are unreachable (bsc#1142309)
- Implement 'regular expression' Filter for Content Lifecycle Management
matching package names, patch name, patch synopsis and package names in patches
- New Single Page Application engine for the UI. It can be enabled with the config 'web.spa.enable' set to true
- Add environment label when deleting environment (bsc#1145758)
- Change color of disabled build button on clp page (bsc#1145626)
- Fix the 'include recommended' button on channels selection in SSM (bsc#1145086)
- Implement 'patch contains package' Filter for Content Lifecycle Management
- Implement Filter Patch 'by type' Content Lifecycle Management
- Implement filtering errata by synopsis in Content Lifecycle Management
- Normalize date formats for actions, notifications and clm (bsc#1142774)
- Implement ALLOW filters in Content Lifecycle Management
- Implement 'by date' Filter for Content Lifecycle Management
susemanager:
- Require dmidecode only for SLE12 aarch64 and x86_64 (bsc#1152170)
- Require pmtools only for SLE11 i586 and x86_64 (bsc#1150314)
- Fix test for btrfs subvolume for new btrfs version (bsc#1151666)
- Ensure working directory is /root during setup (bsc#1148169)
- Dmidecode does not exist on s390x (bsc#1145119)
susemanager-docs_en:
- Update text and images (mu-4.0.3); many changes caused by Technical and Content Reviews.
- Added partition permissions to Install Guide (bsc#1152735)
- Move Disconnected Setup from Client Config to Admin Guide
- Updated references to documentation.suse.com (was: www.suse.com/documentation)
- Increase default value for taskomatic to 4GB
- Registering to proxy information in Install Guide
- Edits to Prometheus section in Admin Guide
- Update database migration section in Upgrade Guide
- Update server update, upgrade, and migration chapters in Upgrade Guide
- Update server installation and setup chapters
- Update proxy installation and setup chapters
- Add section about maintenance window in Admin Guide
- Update Kubernetes chapter
- Admin Guide: ISS: Adapt the CA path to correspond to SLES 15.1
- Update image management
- Update channel management screenshot in Reference
- Update CLM
- Provide basic documentation on foreign clients
- Update info on mgr-sync
- New images added to Retail Guide
- Minor edits in Salt Guide
- Improvements to Troubleshooting section in Admin Guide
- Removed reference to SLP in Install Guide
- Minor edits to SSM in Client Config Guide
susemanager-schema:
- Fix in schema migration script when recreating the 'suseUserRoleView' (bsc#1151280)
- Fix: handle special deb package names (bsc#1150113)
- Refactor in suseChannelUserRoleView for retrieving the parent_channel_id (bsc#1151399)
- Add tables rhnPackageExtraTag and rhnPackageExtraTagKey
- Allow monitoring for Ubuntu systems
- Add new types needed for Azure, Amazon EC2 and Google CE
- Enable provisioning for salt clients
- Allow package changelog entries with more than 3000 characters (bsc#1144889)
susemanager-sls:
- Require pmtools only for SLE11 i586 and x86_64 (bsc#1150314)
- Introduce dnf-susemanager-plugin for RHEL8 minions
- Provide custom grain to report 'instance id' when running on Public Cloud instances
- Disable legacy startup events for new minions
- Implement provisioning for salt clients
- Dmidecode does not exist on ppc64le and s390x (bsc#1145119)
- Update susemanager.conf to use adler32 for computing the server_id for new minions
- Do not show errors when polling internal metadata API (bsc#1155794)
- Add missing 'public_cloud' custom grain (bsc#1155656)
susemanager-sync-data:
- Ubuntu repositories released
tika-core:
- New upstream version 1.2.2. Fixes:
* OOM from a crafted Zip File in Apache Tika's
RecursiveParserWrapper (CVE-2019-10088) (bsc#1144500).
* Denial of Service in Apache Tika's 2003ml and 2006ml
Parsers (CVE-2019-10093) (bsc#1144510).
* StackOverflow from Crafted Package/Compressed Files in Apache
Tika's RecursiveParserWrapper (CVE-2019-10094) (bsc#1144515).
virtual-host-gatherer:
- Add new modules to deal with Amazon EC2, Azure and Google Compute
Patchnames
SUSE-2019-2930,SUSE-SLE-Module-SUSE-Manager-Server-4.0-2019-2930
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for SUSE Manager Server 4.0", title: "Title of the patch", }, { category: "description", text: "\nThis update fixes the following issues:\n\ncobbler:\n\n- Fix for install loop caused autoinstallation profiles (bsc#1151875)\n- Update module config description to match new parameters\n- Add config migration script and runs it in post-install script\n- Fix for config backups in post install script (bsc#1149075)\n- Move apache config file cobbler.conf to conf.d directory\n and remove the VirtualHost container as it overwrite rules\n already set in conf.d\n- Realignment with Cobbler 3.0.0 release candidate.\n- Fix for typo in settings for scm_track module.\n- Optimization for settings loading in scm_track module.\n\ncpu-mitigations-formula:\n\n- Fix grub entry changed for sle12* so it matches sle15* (bsc#1145873)\n\nmgr-osad:\n\n- Obsolete all old python2-osa* packages to avoid conflicts (bsc#1152290)\n\npatterns-suse-manager:\n\n- Add recommends for cpu-mitigations-formula \n\npgjdbc-ng:\n\n- Allow dots in database name (bsc#1146416)\n\nprometheus-exporters-formula:\n\n- Allow to configure arbitrary arguments when running exporters\n- Add support for Debian/Ubuntu and Red Hat systems (RHEL/CentOS)\n- Install the LICENSE together with the package\n\npy26-compat-salt:\n\n- Get tornado dependency from the system on SLE12 (bsc#1149409) \n\npython-susemanager-retail:\n\n- Update to version 0.1.1568808472.be9f236\n- Parse parition type 82 as swap in SLEPOS migration (bsc#1136959)\n- Allow kernel command line for branches to be set as an option to\n retail_branch_init CLI\n- Automatically calculate dhcp dynamic range from branch ip if not\n set\n\npython-urlgrabber:\n\n- Allow non-integer values for URLGRABBER_DEBUG env variable (bsc#1152514)\n- Fixes usage of log level lookup for Python3 (bsc#1146683)\n\nspacecmd:\n\n- Java api expects content as encoded string instead of encode bytes like before (bsc#1153277)\n- Fix building and installing on CentOS8/RES8/RHEL8\n- Check that a channel doesn't have clones before deleting it (bsc#1138454)\n\nspacewalk-admin:\n\n- Avoid a 'Permission denied' salt error when publisher_acl\n is set (bsc#1150154)\n\nspacewalk-backend:\n\n- Fix re-registration with re-activation key (bsc#1154275)\n- Change the default value of taskomatic maxmemory to 4GB\n- Add basic support for importing modular repositories\n- Import additional fields for Deb packages\n- Add script to update additional fields in the DB for existing Deb packages\n- Use active values for diskchecker mails\n- Parse restart_suggested flag from patches and set it as keywords (bsc#1151467)\n- Improve error message when deleting channel that's in a content lifecycle project (bsc#1145769)\n- Prevent 'reposync' crash when handling metadata on RPM repos (bsc#1138358)\n- Do not show expected WARNING messages from 'c_rehash'\n- Fix misspelling in spacewalk-repo-sync (bsc#1149633)\n- Remove credentials also from potential rhn.conf backup files in spacewalk-debug (bsc#1146419)\n- Do not crash 'rhn-satellite-exporter' with ModuleNotFound error (bsc#1146869)\n- Spacewalk-remove-channel check that channel doesn't have cloned channels before deleting it (bsc#1138454)\n- Fix broken spacewalk-data-fsck utility\n- Add '--latest' support for reposync on DEB based repositories\n- Do not try to download RPMs from the unresolved mirrorlist URL\n- Fix encoding issues with DB bytes values (bsc#1144300)\n- Fix import of rhnAuthPAM to avoid issues when using rhnpush.\n- Avoid traceback on mgr-inter-sync when there are problems\n with cache of packages (bsc#1143016)\n\nspacewalk-branding:\n\n- Improve menu scrollbar style for firefox\n- Add UI message when salt-formulas system folders are unreachable (bsc#1142309)\n\nspacewalk-certs-tools:\n\n- Require mgr-daemon (new name of spacewalksd) so we systems with\n spacewalksd get always the new package installed (bsc#1149353)\n\nspacewalk-client-tools:\n\n- Require mgr-daemon (new name of spacewalksd) so we systems with\n spacewalksd get always the new package installed (bsc#1149353)\n- Enable spacewalk-update-service on package installation\n (bsc#1143789)\n- Invalidate cache 5 minutes before actual expiration(bsc#1143562)\n\nspacewalk-config:\n\n- Change the default value of taskomatic maxmemory to 4GB\n- Resolve modules.yaml file for modular repositories\n\nspacewalk-java:\n\n- Change the default value of taskomatic maxmemory to 4GB\n- Silence cache strategy Hibernate warning\n- Return result in compatible type to what defined in database procedure (bsc#1150729)\n- Allow channels names to start with numbers\n- Fix: handle special deb package names (bsc#1150113)\n- Remove extra spaces in dependencies fields in Debian repo Packages file (bsc#1145551)\n- Allow monitoring for managed systems running Ubuntu 18.04 and RedHat 6/7\n- Improve performance for 'Manage Software Channels' view (bsc#1151399)\n- Import additional fields for Deb packages\n- Use value from systemd unit file if not set in /etc/rhn/rhn.conf\n- Implement 'keyword' filter for Content Lifecycle Management\n- Add support for Azure, Amazon EC2, and Google Compute Engine as Virtual Host Manager.\n- Allow ssl connections from Tomcat to Postgres (bsc#1149210)\n- Use default in case taskomatic.java.maxmemory is unset\n- Fix parsing of /etc/rhn/rhn.conf for taskomatic.java.maxmemory (bsc#1151097)\n- Change form order and change project creation message (bsc#1145744)\n- Use 'SCC organization credentials' instead of 'SCC credentials' in error message (bsc#1149425)\n- Implement 'regular expression' Filter for Content Lifecycle Management\n matching package names, patch name, patch synopsis and package names in patches\n- Implement provisioning for salt clients\n- Explicitly mention in API docs that to preserve LF/CR, user needs to encode the data(bsc#1135442)\n- New Single Page Application engine for the UI. It can be enabled with the config 'web.spa.enable' set to true\n- Check that a channel doesn't have clones before deleting it (bsc#1138454)\n- Fix documentation of contentmanagement handler (bsc#1145753)\n- Add new API endpoint to list available Filter Criteria\n- Improve API documentation of Filter Criteria\n- Implement 'patch contains package' Filter for Content Lifecycle Management\n- Implement Filter Patch 'by type' Content Lifecycle Management\n- Improve websocket authentication to prevent errors in logs (bsc#1138454)\n- Implement filtering errata by synopsis in Content Lifecycle Management\n- Normalize date formats for actions, notifications and clm (bsc#1142774)\n- Implement ALLOW filters in Content Lifecycle Management\n- Implement 'by date' Filter for Content Lifecycle Management\n- UI render without error if salt-formulas system folders are unreachable (bsc#1142309)\n- Cloning Errata from a specific channel should not take packages\n from other channels (bsc#1142764)\n- Add susemanager as prerequired for spacewalk-java\n\nspacewalk-setup:\n\n- Fix cobbler authentication module configuration required for\n new cobbler package\n- Configure 150 Tomcat workers by default, matching httpds MaxClients\n\nspacewalk-utils:\n\n- Add FQDN resolver for spacewalk-manage-channel-lifecycle (bsc#1153578)\n- Common-channels: Fix repo type assignment for type YUM\n\nspacewalk-web:\n\n- Redirect to project when canceling creating a filter (bsc#1145750)\n- Better visualization of the filters attached to a CLM Project. Allow/deny are now split\n- Fix ui issues with content lifecycle project list page (bsc#1145587)\n- Implement 'keyword' filter for Content Lifecycle Management\n- Enable Azure, Amazon EC2 and Google Compute Engine as available Virtual host Managers\n- Trim strings when creating/updating image stores/profiles (bsc#1133429)\n- Show loading spin while loading salt keys data (bsc#1150180)\n- CLM - Disable clones by default of the shown CLM Project sources\n- Change form order and change project creation message (bsc#1145744)\n- Add UI message when salt-formulas system folders are unreachable (bsc#1142309)\n- Implement 'regular expression' Filter for Content Lifecycle Management\n matching package names, patch name, patch synopsis and package names in patches\n- New Single Page Application engine for the UI. It can be enabled with the config 'web.spa.enable' set to true\n- Add environment label when deleting environment (bsc#1145758)\n- Change color of disabled build button on clp page (bsc#1145626)\n- Fix the 'include recommended' button on channels selection in SSM (bsc#1145086)\n- Implement 'patch contains package' Filter for Content Lifecycle Management\n- Implement Filter Patch 'by type' Content Lifecycle Management\n- Implement filtering errata by synopsis in Content Lifecycle Management\n- Normalize date formats for actions, notifications and clm (bsc#1142774)\n- Implement ALLOW filters in Content Lifecycle Management\n- Implement 'by date' Filter for Content Lifecycle Management\n\nsusemanager:\n\n- Require dmidecode only for SLE12 aarch64 and x86_64 (bsc#1152170)\n- Require pmtools only for SLE11 i586 and x86_64 (bsc#1150314)\n- Fix test for btrfs subvolume for new btrfs version (bsc#1151666)\n- Ensure working directory is /root during setup (bsc#1148169)\n- Dmidecode does not exist on s390x (bsc#1145119)\n\nsusemanager-docs_en:\n\n- Update text and images (mu-4.0.3); many changes caused by Technical and Content Reviews.\n- Added partition permissions to Install Guide (bsc#1152735)\n- Move Disconnected Setup from Client Config to Admin Guide\n- Updated references to documentation.suse.com (was: www.suse.com/documentation)\n- Increase default value for taskomatic to 4GB\n- Registering to proxy information in Install Guide\n- Edits to Prometheus section in Admin Guide\n- Update database migration section in Upgrade Guide\n- Update server update, upgrade, and migration chapters in Upgrade Guide\n- Update server installation and setup chapters\n- Update proxy installation and setup chapters\n- Add section about maintenance window in Admin Guide\n- Update Kubernetes chapter\n- Admin Guide: ISS: Adapt the CA path to correspond to SLES 15.1\n- Update image management\n- Update channel management screenshot in Reference\n- Update CLM\n- Provide basic documentation on foreign clients\n- Update info on mgr-sync\n- New images added to Retail Guide\n- Minor edits in Salt Guide\n- Improvements to Troubleshooting section in Admin Guide\n- Removed reference to SLP in Install Guide\n- Minor edits to SSM in Client Config Guide\n\nsusemanager-schema:\n\n- Fix in schema migration script when recreating the 'suseUserRoleView' (bsc#1151280)\n- Fix: handle special deb package names (bsc#1150113)\n- Refactor in suseChannelUserRoleView for retrieving the parent_channel_id (bsc#1151399)\n- Add tables rhnPackageExtraTag and rhnPackageExtraTagKey\n- Allow monitoring for Ubuntu systems\n- Add new types needed for Azure, Amazon EC2 and Google CE\n- Enable provisioning for salt clients\n- Allow package changelog entries with more than 3000 characters (bsc#1144889)\n\nsusemanager-sls:\n\n- Require pmtools only for SLE11 i586 and x86_64 (bsc#1150314)\n- Introduce dnf-susemanager-plugin for RHEL8 minions\n- Provide custom grain to report 'instance id' when running on Public Cloud instances\n- Disable legacy startup events for new minions\n- Implement provisioning for salt clients\n- Dmidecode does not exist on ppc64le and s390x (bsc#1145119)\n- Update susemanager.conf to use adler32 for computing the server_id for new minions\n- Do not show errors when polling internal metadata API (bsc#1155794)\n- Add missing 'public_cloud' custom grain (bsc#1155656)\n\nsusemanager-sync-data:\n\n- Ubuntu repositories released\n\ntika-core:\n\n- New upstream version 1.2.2. Fixes:\n * OOM from a crafted Zip File in Apache Tika's \n RecursiveParserWrapper (CVE-2019-10088) (bsc#1144500).\n * Denial of Service in Apache Tika's 2003ml and 2006ml \n Parsers (CVE-2019-10093) (bsc#1144510).\n * StackOverflow from Crafted Package/Compressed Files in Apache \n Tika's RecursiveParserWrapper (CVE-2019-10094) (bsc#1144515). \n\nvirtual-host-gatherer:\n\n- Add new modules to deal with Amazon EC2, Azure and Google Compute\n\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2019-2930,SUSE-SLE-Module-SUSE-Manager-Server-4.0-2019-2930", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_2930-1.json", }, { category: "self", summary: "URL for SUSE-SU-2019:2930-1", url: "https://www.suse.com/support/update/announcement/2019/suse-su-20192930-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2019:2930-1", url: "https://www.suse.com/support/update/announcement/2019/suse-su-20192930-1.html", }, { category: "self", summary: "SUSE Bug 1133429", url: "https://bugzilla.suse.com/1133429", }, { category: "self", summary: "SUSE Bug 1135442", url: "https://bugzilla.suse.com/1135442", }, { category: "self", summary: "SUSE Bug 1136959", url: "https://bugzilla.suse.com/1136959", }, { category: "self", summary: "SUSE Bug 1138358", url: "https://bugzilla.suse.com/1138358", }, { category: "self", summary: "SUSE Bug 1138454", url: "https://bugzilla.suse.com/1138454", }, { category: "self", summary: "SUSE Bug 1142309", url: "https://bugzilla.suse.com/1142309", }, { category: "self", summary: "SUSE Bug 1142764", url: "https://bugzilla.suse.com/1142764", }, { category: "self", summary: "SUSE Bug 1142774", url: "https://bugzilla.suse.com/1142774", }, { category: "self", summary: "SUSE Bug 1143016", url: "https://bugzilla.suse.com/1143016", }, { category: "self", summary: "SUSE Bug 1143562", url: "https://bugzilla.suse.com/1143562", }, { category: "self", summary: "SUSE Bug 1143789", url: "https://bugzilla.suse.com/1143789", }, { category: "self", summary: "SUSE Bug 1144300", url: "https://bugzilla.suse.com/1144300", }, { category: "self", summary: "SUSE Bug 1144500", url: "https://bugzilla.suse.com/1144500", }, { category: "self", summary: "SUSE Bug 1144510", url: "https://bugzilla.suse.com/1144510", }, { category: "self", summary: "SUSE Bug 1144515", url: "https://bugzilla.suse.com/1144515", }, { category: "self", summary: "SUSE Bug 1144889", url: "https://bugzilla.suse.com/1144889", }, { category: "self", summary: "SUSE Bug 1145086", url: "https://bugzilla.suse.com/1145086", }, { category: "self", summary: "SUSE Bug 1145119", url: "https://bugzilla.suse.com/1145119", }, { category: "self", summary: "SUSE Bug 1145551", url: "https://bugzilla.suse.com/1145551", }, { category: "self", summary: "SUSE Bug 1145587", url: "https://bugzilla.suse.com/1145587", }, { category: "self", summary: "SUSE Bug 1145626", url: "https://bugzilla.suse.com/1145626", }, { category: "self", summary: "SUSE Bug 1145744", url: "https://bugzilla.suse.com/1145744", }, { category: "self", summary: "SUSE Bug 1145750", url: "https://bugzilla.suse.com/1145750", }, { category: "self", summary: "SUSE Bug 1145753", url: "https://bugzilla.suse.com/1145753", }, { category: "self", summary: "SUSE Bug 1145758", url: "https://bugzilla.suse.com/1145758", }, { category: "self", summary: "SUSE Bug 1145769", url: "https://bugzilla.suse.com/1145769", }, { category: "self", summary: "SUSE Bug 1145873", url: "https://bugzilla.suse.com/1145873", }, { category: "self", summary: "SUSE Bug 1146416", url: "https://bugzilla.suse.com/1146416", }, { category: "self", summary: "SUSE Bug 1146419", url: "https://bugzilla.suse.com/1146419", }, { category: "self", summary: "SUSE Bug 1146683", url: "https://bugzilla.suse.com/1146683", }, { category: "self", summary: "SUSE Bug 1146869", url: "https://bugzilla.suse.com/1146869", }, { category: "self", summary: "SUSE Bug 1148169", url: "https://bugzilla.suse.com/1148169", }, { category: "self", summary: "SUSE Bug 1149075", url: "https://bugzilla.suse.com/1149075", }, { category: "self", summary: "SUSE Bug 1149210", url: "https://bugzilla.suse.com/1149210", }, { category: "self", summary: "SUSE Bug 1149353", url: "https://bugzilla.suse.com/1149353", }, { category: "self", summary: "SUSE Bug 1149409", url: "https://bugzilla.suse.com/1149409", }, { category: "self", summary: "SUSE Bug 1149425", url: "https://bugzilla.suse.com/1149425", }, { category: "self", summary: "SUSE Bug 1149633", url: "https://bugzilla.suse.com/1149633", }, { category: "self", summary: "SUSE Bug 1150113", url: "https://bugzilla.suse.com/1150113", }, { category: "self", summary: "SUSE Bug 1150154", url: "https://bugzilla.suse.com/1150154", }, { category: "self", summary: "SUSE Bug 1150180", url: "https://bugzilla.suse.com/1150180", }, { category: "self", summary: "SUSE Bug 1150314", url: "https://bugzilla.suse.com/1150314", }, { category: "self", summary: "SUSE Bug 1150729", url: "https://bugzilla.suse.com/1150729", }, { category: "self", summary: "SUSE Bug 1151097", url: "https://bugzilla.suse.com/1151097", }, { category: "self", summary: "SUSE Bug 1151280", url: "https://bugzilla.suse.com/1151280", }, { category: "self", summary: "SUSE Bug 1151399", url: "https://bugzilla.suse.com/1151399", }, { category: "self", summary: "SUSE Bug 1151467", url: "https://bugzilla.suse.com/1151467", }, { category: "self", summary: "SUSE Bug 1151481", url: "https://bugzilla.suse.com/1151481", }, { category: "self", summary: "SUSE Bug 1151666", url: "https://bugzilla.suse.com/1151666", }, { category: "self", summary: "SUSE Bug 1151875", url: "https://bugzilla.suse.com/1151875", }, { category: "self", summary: "SUSE Bug 1152170", url: "https://bugzilla.suse.com/1152170", }, { category: "self", summary: "SUSE Bug 1152290", url: "https://bugzilla.suse.com/1152290", }, { category: "self", summary: "SUSE Bug 1152514", url: "https://bugzilla.suse.com/1152514", }, { category: "self", summary: "SUSE Bug 1152735", url: "https://bugzilla.suse.com/1152735", }, { category: "self", summary: "SUSE Bug 1153277", url: "https://bugzilla.suse.com/1153277", }, { category: "self", summary: "SUSE Bug 1153578", url: "https://bugzilla.suse.com/1153578", }, { category: "self", summary: "SUSE Bug 1154275", url: "https://bugzilla.suse.com/1154275", }, { category: "self", summary: "SUSE Bug 1155656", url: "https://bugzilla.suse.com/1155656", }, { category: "self", summary: "SUSE Bug 1155794", url: "https://bugzilla.suse.com/1155794", }, { category: "self", summary: "SUSE CVE CVE-2019-10088 page", url: "https://www.suse.com/security/cve/CVE-2019-10088/", }, { category: "self", summary: "SUSE CVE CVE-2019-10093 page", url: "https://www.suse.com/security/cve/CVE-2019-10093/", }, { category: "self", summary: "SUSE CVE CVE-2019-10094 page", url: "https://www.suse.com/security/cve/CVE-2019-10094/", }, ], title: "Security update for SUSE Manager Server 4.0", tracking: { current_release_date: "2019-11-07T16:52:47Z", generator: { date: "2019-11-07T16:52:47Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2019:2930-1", initial_release_date: "2019-11-07T16:52:47Z", revision_history: [ { date: "2019-11-07T16:52:47Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "patterns-suma_proxy-4.0-9.3.8.aarch64", product: { name: "patterns-suma_proxy-4.0-9.3.8.aarch64", product_id: "patterns-suma_proxy-4.0-9.3.8.aarch64", }, }, { category: "product_version", name: "patterns-suma_retail-4.0-9.3.8.aarch64", product: { name: "patterns-suma_retail-4.0-9.3.8.aarch64", product_id: "patterns-suma_retail-4.0-9.3.8.aarch64", }, }, { category: "product_version", name: "patterns-suma_server-4.0-9.3.8.aarch64", product: { name: "patterns-suma_server-4.0-9.3.8.aarch64", product_id: "patterns-suma_server-4.0-9.3.8.aarch64", }, }, { category: "product_version", name: "spacewalk-branding-4.0.14-3.6.8.aarch64", product: { name: "spacewalk-branding-4.0.14-3.6.8.aarch64", product_id: "spacewalk-branding-4.0.14-3.6.8.aarch64", }, }, { category: "product_version", name: "spacewalk-branding-devel-4.0.14-3.6.8.aarch64", product: { name: "spacewalk-branding-devel-4.0.14-3.6.8.aarch64", product_id: "spacewalk-branding-devel-4.0.14-3.6.8.aarch64", }, }, { category: "product_version", name: "susemanager-4.0.17-3.6.9.aarch64", product: { name: "susemanager-4.0.17-3.6.9.aarch64", product_id: "susemanager-4.0.17-3.6.9.aarch64", }, }, { category: "product_version", name: "susemanager-nodejs-sdk-devel-1.0.11-3.6.8.aarch64", product: { name: "susemanager-nodejs-sdk-devel-1.0.11-3.6.8.aarch64", product_id: "susemanager-nodejs-sdk-devel-1.0.11-3.6.8.aarch64", }, }, { category: "product_version", name: "susemanager-tools-4.0.17-3.6.9.aarch64", product: { name: "susemanager-tools-4.0.17-3.6.9.aarch64", product_id: "susemanager-tools-4.0.17-3.6.9.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "cobbler-3.0.0+git20190806.32c4bae0-7.3.7.noarch", product: { name: "cobbler-3.0.0+git20190806.32c4bae0-7.3.7.noarch", product_id: "cobbler-3.0.0+git20190806.32c4bae0-7.3.7.noarch", }, }, { category: "product_version", name: "cobbler-tests-3.0.0+git20190806.32c4bae0-7.3.7.noarch", product: { name: "cobbler-tests-3.0.0+git20190806.32c4bae0-7.3.7.noarch", product_id: "cobbler-tests-3.0.0+git20190806.32c4bae0-7.3.7.noarch", }, }, { category: "product_version", name: "cobbler-web-3.0.0+git20190806.32c4bae0-7.3.7.noarch", product: { name: "cobbler-web-3.0.0+git20190806.32c4bae0-7.3.7.noarch", product_id: "cobbler-web-3.0.0+git20190806.32c4bae0-7.3.7.noarch", }, }, { category: "product_version", name: "cpu-mitigations-formula-0.1-4.6.7.noarch", product: { name: "cpu-mitigations-formula-0.1-4.6.7.noarch", product_id: "cpu-mitigations-formula-0.1-4.6.7.noarch", }, }, { category: "product_version", name: "mgr-cfg-4.0.10-3.6.9.noarch", product: { name: "mgr-cfg-4.0.10-3.6.9.noarch", product_id: "mgr-cfg-4.0.10-3.6.9.noarch", }, }, { category: "product_version", name: "mgr-cfg-actions-4.0.10-3.6.9.noarch", product: { name: "mgr-cfg-actions-4.0.10-3.6.9.noarch", product_id: "mgr-cfg-actions-4.0.10-3.6.9.noarch", }, }, { category: "product_version", name: "mgr-cfg-client-4.0.10-3.6.9.noarch", product: { name: "mgr-cfg-client-4.0.10-3.6.9.noarch", product_id: "mgr-cfg-client-4.0.10-3.6.9.noarch", }, }, { category: "product_version", name: "mgr-cfg-management-4.0.10-3.6.9.noarch", product: { name: "mgr-cfg-management-4.0.10-3.6.9.noarch", product_id: "mgr-cfg-management-4.0.10-3.6.9.noarch", }, }, { category: "product_version", name: "mgr-daemon-4.0.8-3.6.7.noarch", product: { name: "mgr-daemon-4.0.8-3.6.7.noarch", product_id: "mgr-daemon-4.0.8-3.6.7.noarch", }, }, { category: "product_version", name: "mgr-osa-dispatcher-4.0.10-3.6.8.noarch", product: { name: "mgr-osa-dispatcher-4.0.10-3.6.8.noarch", product_id: "mgr-osa-dispatcher-4.0.10-3.6.8.noarch", }, }, { category: "product_version", name: "mgr-osad-4.0.10-3.6.8.noarch", product: { name: "mgr-osad-4.0.10-3.6.8.noarch", product_id: "mgr-osad-4.0.10-3.6.8.noarch", }, }, { category: "product_version", name: "pgjdbc-ng-0.7.1-3.3.8.noarch", product: { name: "pgjdbc-ng-0.7.1-3.3.8.noarch", product_id: "pgjdbc-ng-0.7.1-3.3.8.noarch", }, }, { category: "product_version", name: "prometheus-exporters-formula-0.4-3.3.7.noarch", product: { name: "prometheus-exporters-formula-0.4-3.3.7.noarch", product_id: "prometheus-exporters-formula-0.4-3.3.7.noarch", }, }, { category: "product_version", name: "py26-compat-salt-2016.11.10-10.8.8.noarch", product: { name: "py26-compat-salt-2016.11.10-10.8.8.noarch", product_id: "py26-compat-salt-2016.11.10-10.8.8.noarch", }, }, { category: "product_version", name: "python-urlgrabber-bin-3.10.2.1py2_3-6.22.6.noarch", product: { name: "python-urlgrabber-bin-3.10.2.1py2_3-6.22.6.noarch", product_id: "python-urlgrabber-bin-3.10.2.1py2_3-6.22.6.noarch", }, }, { category: "product_version", name: "python2-mgr-cfg-4.0.10-3.6.9.noarch", product: { name: "python2-mgr-cfg-4.0.10-3.6.9.noarch", product_id: "python2-mgr-cfg-4.0.10-3.6.9.noarch", }, }, { category: "product_version", name: "python2-mgr-cfg-actions-4.0.10-3.6.9.noarch", product: { name: "python2-mgr-cfg-actions-4.0.10-3.6.9.noarch", product_id: "python2-mgr-cfg-actions-4.0.10-3.6.9.noarch", }, }, { category: "product_version", name: "python2-mgr-cfg-client-4.0.10-3.6.9.noarch", product: { name: "python2-mgr-cfg-client-4.0.10-3.6.9.noarch", product_id: "python2-mgr-cfg-client-4.0.10-3.6.9.noarch", }, }, { category: "product_version", name: "python2-mgr-cfg-management-4.0.10-3.6.9.noarch", product: { name: "python2-mgr-cfg-management-4.0.10-3.6.9.noarch", product_id: "python2-mgr-cfg-management-4.0.10-3.6.9.noarch", }, }, { category: "product_version", name: "python2-mgr-osa-common-4.0.10-3.6.8.noarch", product: { name: "python2-mgr-osa-common-4.0.10-3.6.8.noarch", product_id: "python2-mgr-osa-common-4.0.10-3.6.8.noarch", }, }, { category: "product_version", name: "python2-mgr-osa-dispatcher-4.0.10-3.6.8.noarch", product: { name: "python2-mgr-osa-dispatcher-4.0.10-3.6.8.noarch", product_id: "python2-mgr-osa-dispatcher-4.0.10-3.6.8.noarch", }, }, { category: "product_version", name: "python2-mgr-osad-4.0.10-3.6.8.noarch", product: { name: "python2-mgr-osad-4.0.10-3.6.8.noarch", product_id: "python2-mgr-osad-4.0.10-3.6.8.noarch", }, }, { category: "product_version", name: "python2-spacewalk-certs-tools-4.0.12-3.6.8.noarch", product: { name: "python2-spacewalk-certs-tools-4.0.12-3.6.8.noarch", product_id: "python2-spacewalk-certs-tools-4.0.12-3.6.8.noarch", }, }, { category: "product_version", name: "python2-spacewalk-check-4.0.10-3.6.8.noarch", product: { name: "python2-spacewalk-check-4.0.10-3.6.8.noarch", product_id: "python2-spacewalk-check-4.0.10-3.6.8.noarch", }, }, { category: "product_version", name: "python2-spacewalk-client-setup-4.0.10-3.6.8.noarch", product: { name: "python2-spacewalk-client-setup-4.0.10-3.6.8.noarch", product_id: "python2-spacewalk-client-setup-4.0.10-3.6.8.noarch", }, }, { category: "product_version", name: "python2-spacewalk-client-tools-4.0.10-3.6.8.noarch", product: { name: "python2-spacewalk-client-tools-4.0.10-3.6.8.noarch", product_id: "python2-spacewalk-client-tools-4.0.10-3.6.8.noarch", }, }, { category: "product_version", name: "python2-urlgrabber-3.10.2.1py2_3-6.22.6.noarch", product: { name: "python2-urlgrabber-3.10.2.1py2_3-6.22.6.noarch", product_id: "python2-urlgrabber-3.10.2.1py2_3-6.22.6.noarch", }, }, { category: "product_version", name: "python3-mgr-cfg-4.0.10-3.6.9.noarch", product: { name: "python3-mgr-cfg-4.0.10-3.6.9.noarch", product_id: "python3-mgr-cfg-4.0.10-3.6.9.noarch", }, }, { category: "product_version", name: "python3-mgr-cfg-actions-4.0.10-3.6.9.noarch", product: { name: "python3-mgr-cfg-actions-4.0.10-3.6.9.noarch", product_id: "python3-mgr-cfg-actions-4.0.10-3.6.9.noarch", }, }, { category: "product_version", name: "python3-mgr-cfg-client-4.0.10-3.6.9.noarch", product: { name: "python3-mgr-cfg-client-4.0.10-3.6.9.noarch", product_id: "python3-mgr-cfg-client-4.0.10-3.6.9.noarch", }, }, { category: "product_version", name: "python3-mgr-cfg-management-4.0.10-3.6.9.noarch", product: { name: "python3-mgr-cfg-management-4.0.10-3.6.9.noarch", product_id: "python3-mgr-cfg-management-4.0.10-3.6.9.noarch", }, }, { category: "product_version", name: "python3-mgr-osa-common-4.0.10-3.6.8.noarch", product: { name: "python3-mgr-osa-common-4.0.10-3.6.8.noarch", product_id: "python3-mgr-osa-common-4.0.10-3.6.8.noarch", }, }, { category: "product_version", name: "python3-mgr-osa-dispatcher-4.0.10-3.6.8.noarch", product: { name: "python3-mgr-osa-dispatcher-4.0.10-3.6.8.noarch", product_id: "python3-mgr-osa-dispatcher-4.0.10-3.6.8.noarch", }, }, { category: "product_version", name: "python3-mgr-osad-4.0.10-3.6.8.noarch", product: { name: "python3-mgr-osad-4.0.10-3.6.8.noarch", product_id: "python3-mgr-osad-4.0.10-3.6.8.noarch", }, }, { category: "product_version", name: "python3-spacewalk-backend-libs-4.0.27-3.13.9.noarch", product: { name: "python3-spacewalk-backend-libs-4.0.27-3.13.9.noarch", product_id: "python3-spacewalk-backend-libs-4.0.27-3.13.9.noarch", }, }, { category: "product_version", name: "python3-spacewalk-certs-tools-4.0.12-3.6.8.noarch", product: { name: "python3-spacewalk-certs-tools-4.0.12-3.6.8.noarch", product_id: "python3-spacewalk-certs-tools-4.0.12-3.6.8.noarch", }, }, { category: "product_version", name: "python3-spacewalk-check-4.0.10-3.6.8.noarch", product: { name: "python3-spacewalk-check-4.0.10-3.6.8.noarch", product_id: "python3-spacewalk-check-4.0.10-3.6.8.noarch", }, }, { category: "product_version", name: "python3-spacewalk-client-setup-4.0.10-3.6.8.noarch", product: { name: "python3-spacewalk-client-setup-4.0.10-3.6.8.noarch", product_id: "python3-spacewalk-client-setup-4.0.10-3.6.8.noarch", }, }, { category: "product_version", name: "python3-spacewalk-client-tools-4.0.10-3.6.8.noarch", product: { name: "python3-spacewalk-client-tools-4.0.10-3.6.8.noarch", product_id: "python3-spacewalk-client-tools-4.0.10-3.6.8.noarch", }, }, { category: "product_version", name: "python3-susemanager-retail-1.0.1568808472.be9f236-3.6.7.noarch", product: { name: "python3-susemanager-retail-1.0.1568808472.be9f236-3.6.7.noarch", product_id: "python3-susemanager-retail-1.0.1568808472.be9f236-3.6.7.noarch", }, }, { category: "product_version", name: "python3-urlgrabber-3.10.2.1py2_3-6.22.6.noarch", product: { name: "python3-urlgrabber-3.10.2.1py2_3-6.22.6.noarch", product_id: "python3-urlgrabber-3.10.2.1py2_3-6.22.6.noarch", }, }, { category: "product_version", name: "spacecmd-4.0.16-3.6.7.noarch", product: { name: "spacecmd-4.0.16-3.6.7.noarch", product_id: "spacecmd-4.0.16-3.6.7.noarch", }, }, { category: "product_version", name: "spacewalk-admin-4.0.8-3.3.8.noarch", product: { name: "spacewalk-admin-4.0.8-3.3.8.noarch", product_id: "spacewalk-admin-4.0.8-3.3.8.noarch", }, }, { category: "product_version", name: "spacewalk-backend-4.0.27-3.13.9.noarch", product: { name: "spacewalk-backend-4.0.27-3.13.9.noarch", product_id: "spacewalk-backend-4.0.27-3.13.9.noarch", }, }, { category: "product_version", name: "spacewalk-backend-app-4.0.27-3.13.9.noarch", product: { name: "spacewalk-backend-app-4.0.27-3.13.9.noarch", product_id: "spacewalk-backend-app-4.0.27-3.13.9.noarch", }, }, { category: "product_version", name: "spacewalk-backend-applet-4.0.27-3.13.9.noarch", product: { name: "spacewalk-backend-applet-4.0.27-3.13.9.noarch", product_id: "spacewalk-backend-applet-4.0.27-3.13.9.noarch", }, }, { category: "product_version", name: "spacewalk-backend-cdn-4.0.27-3.13.9.noarch", product: { name: "spacewalk-backend-cdn-4.0.27-3.13.9.noarch", product_id: "spacewalk-backend-cdn-4.0.27-3.13.9.noarch", }, }, { category: "product_version", name: "spacewalk-backend-config-files-4.0.27-3.13.9.noarch", product: { name: "spacewalk-backend-config-files-4.0.27-3.13.9.noarch", product_id: "spacewalk-backend-config-files-4.0.27-3.13.9.noarch", }, }, { category: "product_version", name: "spacewalk-backend-config-files-common-4.0.27-3.13.9.noarch", product: { name: "spacewalk-backend-config-files-common-4.0.27-3.13.9.noarch", product_id: "spacewalk-backend-config-files-common-4.0.27-3.13.9.noarch", }, }, { category: "product_version", name: "spacewalk-backend-config-files-tool-4.0.27-3.13.9.noarch", product: { name: "spacewalk-backend-config-files-tool-4.0.27-3.13.9.noarch", product_id: "spacewalk-backend-config-files-tool-4.0.27-3.13.9.noarch", }, }, { category: "product_version", name: "spacewalk-backend-iss-4.0.27-3.13.9.noarch", product: { name: "spacewalk-backend-iss-4.0.27-3.13.9.noarch", product_id: "spacewalk-backend-iss-4.0.27-3.13.9.noarch", }, }, { category: "product_version", name: "spacewalk-backend-iss-export-4.0.27-3.13.9.noarch", product: { name: "spacewalk-backend-iss-export-4.0.27-3.13.9.noarch", product_id: "spacewalk-backend-iss-export-4.0.27-3.13.9.noarch", }, }, { category: "product_version", name: "spacewalk-backend-libs-4.0.27-3.13.9.noarch", product: { name: "spacewalk-backend-libs-4.0.27-3.13.9.noarch", product_id: "spacewalk-backend-libs-4.0.27-3.13.9.noarch", }, }, { category: "product_version", name: "spacewalk-backend-package-push-server-4.0.27-3.13.9.noarch", product: { name: "spacewalk-backend-package-push-server-4.0.27-3.13.9.noarch", product_id: "spacewalk-backend-package-push-server-4.0.27-3.13.9.noarch", }, }, { category: "product_version", name: "spacewalk-backend-server-4.0.27-3.13.9.noarch", product: { name: "spacewalk-backend-server-4.0.27-3.13.9.noarch", product_id: "spacewalk-backend-server-4.0.27-3.13.9.noarch", }, }, { category: "product_version", name: "spacewalk-backend-sql-4.0.27-3.13.9.noarch", product: { name: "spacewalk-backend-sql-4.0.27-3.13.9.noarch", product_id: "spacewalk-backend-sql-4.0.27-3.13.9.noarch", }, }, { category: "product_version", name: "spacewalk-backend-sql-oracle-4.0.27-3.13.9.noarch", product: { name: "spacewalk-backend-sql-oracle-4.0.27-3.13.9.noarch", product_id: "spacewalk-backend-sql-oracle-4.0.27-3.13.9.noarch", }, }, { category: "product_version", name: "spacewalk-backend-sql-postgresql-4.0.27-3.13.9.noarch", product: { name: "spacewalk-backend-sql-postgresql-4.0.27-3.13.9.noarch", product_id: "spacewalk-backend-sql-postgresql-4.0.27-3.13.9.noarch", }, }, { category: "product_version", name: "spacewalk-backend-tools-4.0.27-3.13.9.noarch", product: { name: "spacewalk-backend-tools-4.0.27-3.13.9.noarch", product_id: "spacewalk-backend-tools-4.0.27-3.13.9.noarch", }, }, { category: "product_version", name: "spacewalk-backend-xml-export-libs-4.0.27-3.13.9.noarch", product: { name: "spacewalk-backend-xml-export-libs-4.0.27-3.13.9.noarch", product_id: "spacewalk-backend-xml-export-libs-4.0.27-3.13.9.noarch", }, }, { category: "product_version", name: "spacewalk-backend-xmlrpc-4.0.27-3.13.9.noarch", product: { name: "spacewalk-backend-xmlrpc-4.0.27-3.13.9.noarch", product_id: "spacewalk-backend-xmlrpc-4.0.27-3.13.9.noarch", }, }, { category: "product_version", name: "spacewalk-base-4.0.16-3.9.8.noarch", product: { name: "spacewalk-base-4.0.16-3.9.8.noarch", product_id: "spacewalk-base-4.0.16-3.9.8.noarch", }, }, { category: "product_version", name: "spacewalk-base-minimal-4.0.16-3.9.8.noarch", product: { name: "spacewalk-base-minimal-4.0.16-3.9.8.noarch", product_id: "spacewalk-base-minimal-4.0.16-3.9.8.noarch", }, }, { category: "product_version", name: "spacewalk-base-minimal-config-4.0.16-3.9.8.noarch", product: { name: "spacewalk-base-minimal-config-4.0.16-3.9.8.noarch", product_id: "spacewalk-base-minimal-config-4.0.16-3.9.8.noarch", }, }, { category: "product_version", name: "spacewalk-certs-tools-4.0.12-3.6.8.noarch", product: { name: "spacewalk-certs-tools-4.0.12-3.6.8.noarch", product_id: "spacewalk-certs-tools-4.0.12-3.6.8.noarch", }, }, { category: "product_version", name: "spacewalk-check-4.0.10-3.6.8.noarch", product: { name: "spacewalk-check-4.0.10-3.6.8.noarch", product_id: "spacewalk-check-4.0.10-3.6.8.noarch", }, }, { category: "product_version", name: "spacewalk-client-setup-4.0.10-3.6.8.noarch", product: { name: "spacewalk-client-setup-4.0.10-3.6.8.noarch", product_id: "spacewalk-client-setup-4.0.10-3.6.8.noarch", }, }, { category: "product_version", name: "spacewalk-client-tools-4.0.10-3.6.8.noarch", product: { name: "spacewalk-client-tools-4.0.10-3.6.8.noarch", product_id: "spacewalk-client-tools-4.0.10-3.6.8.noarch", }, }, { category: "product_version", name: "spacewalk-config-4.0.13-3.3.7.noarch", product: { name: "spacewalk-config-4.0.13-3.3.7.noarch", product_id: "spacewalk-config-4.0.13-3.3.7.noarch", }, }, { category: "product_version", name: "spacewalk-dobby-4.0.16-3.9.8.noarch", product: { name: "spacewalk-dobby-4.0.16-3.9.8.noarch", product_id: "spacewalk-dobby-4.0.16-3.9.8.noarch", }, }, { category: "product_version", name: "spacewalk-html-4.0.16-3.9.8.noarch", product: { name: "spacewalk-html-4.0.16-3.9.8.noarch", product_id: "spacewalk-html-4.0.16-3.9.8.noarch", }, }, { category: "product_version", name: "spacewalk-java-4.0.25-3.10.5.noarch", product: { name: "spacewalk-java-4.0.25-3.10.5.noarch", product_id: "spacewalk-java-4.0.25-3.10.5.noarch", }, }, { category: "product_version", name: "spacewalk-java-apidoc-sources-4.0.25-3.10.5.noarch", product: { name: "spacewalk-java-apidoc-sources-4.0.25-3.10.5.noarch", product_id: "spacewalk-java-apidoc-sources-4.0.25-3.10.5.noarch", }, }, { category: "product_version", name: "spacewalk-java-config-4.0.25-3.10.5.noarch", product: { name: "spacewalk-java-config-4.0.25-3.10.5.noarch", product_id: "spacewalk-java-config-4.0.25-3.10.5.noarch", }, }, { category: "product_version", name: "spacewalk-java-lib-4.0.25-3.10.5.noarch", product: { name: "spacewalk-java-lib-4.0.25-3.10.5.noarch", product_id: "spacewalk-java-lib-4.0.25-3.10.5.noarch", }, }, { category: "product_version", name: "spacewalk-java-postgresql-4.0.25-3.10.5.noarch", product: { name: "spacewalk-java-postgresql-4.0.25-3.10.5.noarch", product_id: "spacewalk-java-postgresql-4.0.25-3.10.5.noarch", }, }, { category: "product_version", name: "spacewalk-setup-4.0.11-3.6.7.noarch", product: { name: "spacewalk-setup-4.0.11-3.6.7.noarch", product_id: "spacewalk-setup-4.0.11-3.6.7.noarch", }, }, { category: "product_version", name: "spacewalk-taskomatic-4.0.25-3.10.5.noarch", product: { name: "spacewalk-taskomatic-4.0.25-3.10.5.noarch", product_id: "spacewalk-taskomatic-4.0.25-3.10.5.noarch", }, }, { category: "product_version", name: "spacewalk-utils-4.0.13-3.6.8.noarch", product: { name: "spacewalk-utils-4.0.13-3.6.8.noarch", product_id: "spacewalk-utils-4.0.13-3.6.8.noarch", }, }, { category: "product_version", name: "susemanager-doc-indexes-4.0-10.9.8.noarch", product: { name: "susemanager-doc-indexes-4.0-10.9.8.noarch", product_id: "susemanager-doc-indexes-4.0-10.9.8.noarch", }, }, { category: "product_version", name: "susemanager-docs_en-4.0-10.9.7.noarch", product: { name: "susemanager-docs_en-4.0-10.9.7.noarch", product_id: "susemanager-docs_en-4.0-10.9.7.noarch", }, }, { category: "product_version", name: "susemanager-docs_en-pdf-4.0-10.9.7.noarch", product: { name: "susemanager-docs_en-pdf-4.0-10.9.7.noarch", product_id: "susemanager-docs_en-pdf-4.0-10.9.7.noarch", }, }, { category: "product_version", name: "susemanager-retail-tools-1.0.1568808472.be9f236-3.6.7.noarch", product: { name: "susemanager-retail-tools-1.0.1568808472.be9f236-3.6.7.noarch", product_id: "susemanager-retail-tools-1.0.1568808472.be9f236-3.6.7.noarch", }, }, { category: "product_version", name: "susemanager-schema-4.0.16-3.8.5.noarch", product: { name: "susemanager-schema-4.0.16-3.8.5.noarch", product_id: "susemanager-schema-4.0.16-3.8.5.noarch", }, }, { category: "product_version", name: "susemanager-schema-sanity-4.0.16-3.8.5.noarch", product: { name: "susemanager-schema-sanity-4.0.16-3.8.5.noarch", product_id: "susemanager-schema-sanity-4.0.16-3.8.5.noarch", }, }, { category: "product_version", name: "susemanager-sls-4.0.22-3.10.4.noarch", product: { name: "susemanager-sls-4.0.22-3.10.4.noarch", product_id: "susemanager-sls-4.0.22-3.10.4.noarch", }, }, { category: "product_version", name: "susemanager-sync-data-4.0.13-3.6.7.noarch", product: { name: "susemanager-sync-data-4.0.13-3.6.7.noarch", product_id: "susemanager-sync-data-4.0.13-3.6.7.noarch", }, }, { category: "product_version", name: "susemanager-web-libs-4.0.16-3.9.8.noarch", product: { name: "susemanager-web-libs-4.0.16-3.9.8.noarch", product_id: "susemanager-web-libs-4.0.16-3.9.8.noarch", }, }, { category: "product_version", name: "tika-core-1.22-3.3.7.noarch", product: { name: "tika-core-1.22-3.3.7.noarch", product_id: "tika-core-1.22-3.3.7.noarch", }, }, { category: "product_version", name: "virtual-host-gatherer-1.0.19-3.3.8.noarch", product: { name: "virtual-host-gatherer-1.0.19-3.3.8.noarch", product_id: "virtual-host-gatherer-1.0.19-3.3.8.noarch", }, }, { category: "product_version", name: "virtual-host-gatherer-Kubernetes-1.0.19-3.3.8.noarch", product: { name: "virtual-host-gatherer-Kubernetes-1.0.19-3.3.8.noarch", product_id: "virtual-host-gatherer-Kubernetes-1.0.19-3.3.8.noarch", }, }, { category: "product_version", name: "virtual-host-gatherer-VMware-1.0.19-3.3.8.noarch", product: { name: "virtual-host-gatherer-VMware-1.0.19-3.3.8.noarch", product_id: "virtual-host-gatherer-VMware-1.0.19-3.3.8.noarch", }, }, { category: "product_version", name: "virtual-host-gatherer-libcloud-1.0.19-3.3.8.noarch", product: { name: "virtual-host-gatherer-libcloud-1.0.19-3.3.8.noarch", product_id: "virtual-host-gatherer-libcloud-1.0.19-3.3.8.noarch", }, }, { category: "product_version", name: "pxe-default-image-sle15-4.0.0-20191106084601.noarch", product: { name: "pxe-default-image-sle15-4.0.0-20191106084601.noarch", product_id: "pxe-default-image-sle15-4.0.0-20191106084601.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "patterns-suma_proxy-4.0-9.3.8.ppc64le", product: { name: "patterns-suma_proxy-4.0-9.3.8.ppc64le", product_id: "patterns-suma_proxy-4.0-9.3.8.ppc64le", }, }, { category: "product_version", name: "patterns-suma_retail-4.0-9.3.8.ppc64le", product: { name: "patterns-suma_retail-4.0-9.3.8.ppc64le", product_id: "patterns-suma_retail-4.0-9.3.8.ppc64le", }, }, { category: "product_version", name: "patterns-suma_server-4.0-9.3.8.ppc64le", product: { name: "patterns-suma_server-4.0-9.3.8.ppc64le", product_id: "patterns-suma_server-4.0-9.3.8.ppc64le", }, }, { category: "product_version", name: "spacewalk-branding-4.0.14-3.6.8.ppc64le", product: { name: "spacewalk-branding-4.0.14-3.6.8.ppc64le", product_id: "spacewalk-branding-4.0.14-3.6.8.ppc64le", }, }, { category: "product_version", name: "spacewalk-branding-devel-4.0.14-3.6.8.ppc64le", product: { name: "spacewalk-branding-devel-4.0.14-3.6.8.ppc64le", product_id: "spacewalk-branding-devel-4.0.14-3.6.8.ppc64le", }, }, { category: "product_version", name: "susemanager-4.0.17-3.6.9.ppc64le", product: { name: "susemanager-4.0.17-3.6.9.ppc64le", product_id: "susemanager-4.0.17-3.6.9.ppc64le", }, }, { category: "product_version", name: "susemanager-nodejs-sdk-devel-1.0.11-3.6.8.ppc64le", product: { name: "susemanager-nodejs-sdk-devel-1.0.11-3.6.8.ppc64le", product_id: "susemanager-nodejs-sdk-devel-1.0.11-3.6.8.ppc64le", }, }, { category: "product_version", name: "susemanager-tools-4.0.17-3.6.9.ppc64le", product: { name: "susemanager-tools-4.0.17-3.6.9.ppc64le", product_id: "susemanager-tools-4.0.17-3.6.9.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "patterns-suma_proxy-4.0-9.3.8.s390x", product: { name: "patterns-suma_proxy-4.0-9.3.8.s390x", product_id: "patterns-suma_proxy-4.0-9.3.8.s390x", }, }, { category: "product_version", name: "patterns-suma_retail-4.0-9.3.8.s390x", product: { name: "patterns-suma_retail-4.0-9.3.8.s390x", product_id: "patterns-suma_retail-4.0-9.3.8.s390x", }, }, { category: "product_version", name: "patterns-suma_server-4.0-9.3.8.s390x", product: { name: "patterns-suma_server-4.0-9.3.8.s390x", product_id: "patterns-suma_server-4.0-9.3.8.s390x", }, }, { category: "product_version", name: "spacewalk-branding-4.0.14-3.6.8.s390x", product: { name: "spacewalk-branding-4.0.14-3.6.8.s390x", product_id: "spacewalk-branding-4.0.14-3.6.8.s390x", }, }, { category: "product_version", name: "spacewalk-branding-devel-4.0.14-3.6.8.s390x", product: { name: "spacewalk-branding-devel-4.0.14-3.6.8.s390x", product_id: "spacewalk-branding-devel-4.0.14-3.6.8.s390x", }, }, { category: "product_version", name: "susemanager-4.0.17-3.6.9.s390x", product: { name: "susemanager-4.0.17-3.6.9.s390x", product_id: "susemanager-4.0.17-3.6.9.s390x", }, }, { category: "product_version", name: "susemanager-nodejs-sdk-devel-1.0.11-3.6.8.s390x", product: { name: "susemanager-nodejs-sdk-devel-1.0.11-3.6.8.s390x", product_id: "susemanager-nodejs-sdk-devel-1.0.11-3.6.8.s390x", }, }, { category: "product_version", name: "susemanager-tools-4.0.17-3.6.9.s390x", product: { name: "susemanager-tools-4.0.17-3.6.9.s390x", product_id: "susemanager-tools-4.0.17-3.6.9.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "patterns-suma_proxy-4.0-9.3.8.x86_64", product: { name: "patterns-suma_proxy-4.0-9.3.8.x86_64", product_id: "patterns-suma_proxy-4.0-9.3.8.x86_64", }, }, { category: "product_version", name: "patterns-suma_retail-4.0-9.3.8.x86_64", product: { name: "patterns-suma_retail-4.0-9.3.8.x86_64", product_id: "patterns-suma_retail-4.0-9.3.8.x86_64", }, }, { category: "product_version", name: "patterns-suma_server-4.0-9.3.8.x86_64", product: { name: "patterns-suma_server-4.0-9.3.8.x86_64", product_id: "patterns-suma_server-4.0-9.3.8.x86_64", }, }, { category: "product_version", name: "spacewalk-branding-4.0.14-3.6.8.x86_64", product: { name: "spacewalk-branding-4.0.14-3.6.8.x86_64", product_id: "spacewalk-branding-4.0.14-3.6.8.x86_64", }, }, { category: "product_version", name: "spacewalk-branding-devel-4.0.14-3.6.8.x86_64", product: { name: "spacewalk-branding-devel-4.0.14-3.6.8.x86_64", product_id: "spacewalk-branding-devel-4.0.14-3.6.8.x86_64", }, }, { category: "product_version", name: "susemanager-4.0.17-3.6.9.x86_64", product: { name: "susemanager-4.0.17-3.6.9.x86_64", product_id: "susemanager-4.0.17-3.6.9.x86_64", }, }, { category: "product_version", name: "susemanager-nodejs-sdk-devel-1.0.11-3.6.8.x86_64", product: { name: "susemanager-nodejs-sdk-devel-1.0.11-3.6.8.x86_64", product_id: "susemanager-nodejs-sdk-devel-1.0.11-3.6.8.x86_64", }, }, { category: "product_version", name: "susemanager-tools-4.0.17-3.6.9.x86_64", product: { name: "susemanager-tools-4.0.17-3.6.9.x86_64", product_id: "susemanager-tools-4.0.17-3.6.9.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Manager Server Module 4.0", product: { name: "SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-suse-manager-server:4.0", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "cobbler-3.0.0+git20190806.32c4bae0-7.3.7.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:cobbler-3.0.0+git20190806.32c4bae0-7.3.7.noarch", }, product_reference: "cobbler-3.0.0+git20190806.32c4bae0-7.3.7.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "cpu-mitigations-formula-0.1-4.6.7.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:cpu-mitigations-formula-0.1-4.6.7.noarch", }, product_reference: "cpu-mitigations-formula-0.1-4.6.7.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "mgr-osa-dispatcher-4.0.10-3.6.8.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:mgr-osa-dispatcher-4.0.10-3.6.8.noarch", }, product_reference: "mgr-osa-dispatcher-4.0.10-3.6.8.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "patterns-suma_retail-4.0-9.3.8.ppc64le as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.ppc64le", }, product_reference: "patterns-suma_retail-4.0-9.3.8.ppc64le", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "patterns-suma_retail-4.0-9.3.8.s390x as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.s390x", }, product_reference: "patterns-suma_retail-4.0-9.3.8.s390x", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "patterns-suma_retail-4.0-9.3.8.x86_64 as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.x86_64", }, product_reference: "patterns-suma_retail-4.0-9.3.8.x86_64", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "patterns-suma_server-4.0-9.3.8.ppc64le as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.ppc64le", }, product_reference: "patterns-suma_server-4.0-9.3.8.ppc64le", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "patterns-suma_server-4.0-9.3.8.s390x as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.s390x", }, product_reference: "patterns-suma_server-4.0-9.3.8.s390x", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "patterns-suma_server-4.0-9.3.8.x86_64 as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.x86_64", }, product_reference: "patterns-suma_server-4.0-9.3.8.x86_64", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "pgjdbc-ng-0.7.1-3.3.8.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:pgjdbc-ng-0.7.1-3.3.8.noarch", }, product_reference: "pgjdbc-ng-0.7.1-3.3.8.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "prometheus-exporters-formula-0.4-3.3.7.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:prometheus-exporters-formula-0.4-3.3.7.noarch", }, product_reference: "prometheus-exporters-formula-0.4-3.3.7.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "pxe-default-image-sle15-4.0.0-20191106084601.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:pxe-default-image-sle15-4.0.0-20191106084601.noarch", }, product_reference: "pxe-default-image-sle15-4.0.0-20191106084601.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "py26-compat-salt-2016.11.10-10.8.8.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:py26-compat-salt-2016.11.10-10.8.8.noarch", }, product_reference: "py26-compat-salt-2016.11.10-10.8.8.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "python3-mgr-osa-common-4.0.10-3.6.8.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:python3-mgr-osa-common-4.0.10-3.6.8.noarch", }, product_reference: "python3-mgr-osa-common-4.0.10-3.6.8.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "python3-mgr-osa-dispatcher-4.0.10-3.6.8.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:python3-mgr-osa-dispatcher-4.0.10-3.6.8.noarch", }, product_reference: "python3-mgr-osa-dispatcher-4.0.10-3.6.8.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "python3-spacewalk-backend-libs-4.0.27-3.13.9.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:python3-spacewalk-backend-libs-4.0.27-3.13.9.noarch", }, product_reference: "python3-spacewalk-backend-libs-4.0.27-3.13.9.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "python3-spacewalk-certs-tools-4.0.12-3.6.8.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:python3-spacewalk-certs-tools-4.0.12-3.6.8.noarch", }, product_reference: "python3-spacewalk-certs-tools-4.0.12-3.6.8.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "python3-spacewalk-client-tools-4.0.10-3.6.8.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:python3-spacewalk-client-tools-4.0.10-3.6.8.noarch", }, product_reference: "python3-spacewalk-client-tools-4.0.10-3.6.8.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "python3-susemanager-retail-1.0.1568808472.be9f236-3.6.7.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:python3-susemanager-retail-1.0.1568808472.be9f236-3.6.7.noarch", }, product_reference: "python3-susemanager-retail-1.0.1568808472.be9f236-3.6.7.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "python3-urlgrabber-3.10.2.1py2_3-6.22.6.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:python3-urlgrabber-3.10.2.1py2_3-6.22.6.noarch", }, product_reference: "python3-urlgrabber-3.10.2.1py2_3-6.22.6.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacecmd-4.0.16-3.6.7.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacecmd-4.0.16-3.6.7.noarch", }, product_reference: "spacecmd-4.0.16-3.6.7.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-admin-4.0.8-3.3.8.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-admin-4.0.8-3.3.8.noarch", }, product_reference: "spacewalk-admin-4.0.8-3.3.8.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-4.0.27-3.13.9.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-backend-4.0.27-3.13.9.noarch", }, product_reference: "spacewalk-backend-4.0.27-3.13.9.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-app-4.0.27-3.13.9.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-backend-app-4.0.27-3.13.9.noarch", }, product_reference: "spacewalk-backend-app-4.0.27-3.13.9.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-applet-4.0.27-3.13.9.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-backend-applet-4.0.27-3.13.9.noarch", }, product_reference: "spacewalk-backend-applet-4.0.27-3.13.9.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-config-files-4.0.27-3.13.9.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-4.0.27-3.13.9.noarch", }, product_reference: "spacewalk-backend-config-files-4.0.27-3.13.9.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-config-files-common-4.0.27-3.13.9.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-common-4.0.27-3.13.9.noarch", }, product_reference: "spacewalk-backend-config-files-common-4.0.27-3.13.9.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-config-files-tool-4.0.27-3.13.9.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-tool-4.0.27-3.13.9.noarch", }, product_reference: "spacewalk-backend-config-files-tool-4.0.27-3.13.9.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-iss-4.0.27-3.13.9.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-backend-iss-4.0.27-3.13.9.noarch", }, product_reference: "spacewalk-backend-iss-4.0.27-3.13.9.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-iss-export-4.0.27-3.13.9.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-backend-iss-export-4.0.27-3.13.9.noarch", }, product_reference: "spacewalk-backend-iss-export-4.0.27-3.13.9.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-package-push-server-4.0.27-3.13.9.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-backend-package-push-server-4.0.27-3.13.9.noarch", }, product_reference: "spacewalk-backend-package-push-server-4.0.27-3.13.9.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-server-4.0.27-3.13.9.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-backend-server-4.0.27-3.13.9.noarch", }, product_reference: "spacewalk-backend-server-4.0.27-3.13.9.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-sql-4.0.27-3.13.9.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-backend-sql-4.0.27-3.13.9.noarch", }, product_reference: "spacewalk-backend-sql-4.0.27-3.13.9.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-sql-postgresql-4.0.27-3.13.9.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-backend-sql-postgresql-4.0.27-3.13.9.noarch", }, product_reference: "spacewalk-backend-sql-postgresql-4.0.27-3.13.9.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-tools-4.0.27-3.13.9.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-backend-tools-4.0.27-3.13.9.noarch", }, product_reference: "spacewalk-backend-tools-4.0.27-3.13.9.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-xml-export-libs-4.0.27-3.13.9.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-backend-xml-export-libs-4.0.27-3.13.9.noarch", }, product_reference: "spacewalk-backend-xml-export-libs-4.0.27-3.13.9.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-backend-xmlrpc-4.0.27-3.13.9.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-backend-xmlrpc-4.0.27-3.13.9.noarch", }, product_reference: "spacewalk-backend-xmlrpc-4.0.27-3.13.9.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-base-4.0.16-3.9.8.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-base-4.0.16-3.9.8.noarch", }, product_reference: "spacewalk-base-4.0.16-3.9.8.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-base-minimal-4.0.16-3.9.8.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-base-minimal-4.0.16-3.9.8.noarch", }, product_reference: "spacewalk-base-minimal-4.0.16-3.9.8.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-base-minimal-config-4.0.16-3.9.8.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-base-minimal-config-4.0.16-3.9.8.noarch", }, product_reference: "spacewalk-base-minimal-config-4.0.16-3.9.8.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-branding-4.0.14-3.6.8.ppc64le as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.ppc64le", }, product_reference: "spacewalk-branding-4.0.14-3.6.8.ppc64le", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-branding-4.0.14-3.6.8.s390x as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.s390x", }, product_reference: "spacewalk-branding-4.0.14-3.6.8.s390x", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-branding-4.0.14-3.6.8.x86_64 as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.x86_64", }, product_reference: "spacewalk-branding-4.0.14-3.6.8.x86_64", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-certs-tools-4.0.12-3.6.8.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-certs-tools-4.0.12-3.6.8.noarch", }, product_reference: "spacewalk-certs-tools-4.0.12-3.6.8.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-client-tools-4.0.10-3.6.8.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-client-tools-4.0.10-3.6.8.noarch", }, product_reference: "spacewalk-client-tools-4.0.10-3.6.8.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-config-4.0.13-3.3.7.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-config-4.0.13-3.3.7.noarch", }, product_reference: "spacewalk-config-4.0.13-3.3.7.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-html-4.0.16-3.9.8.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-html-4.0.16-3.9.8.noarch", }, product_reference: "spacewalk-html-4.0.16-3.9.8.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-java-4.0.25-3.10.5.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-java-4.0.25-3.10.5.noarch", }, product_reference: "spacewalk-java-4.0.25-3.10.5.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-java-config-4.0.25-3.10.5.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-java-config-4.0.25-3.10.5.noarch", }, product_reference: "spacewalk-java-config-4.0.25-3.10.5.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-java-lib-4.0.25-3.10.5.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-java-lib-4.0.25-3.10.5.noarch", }, product_reference: "spacewalk-java-lib-4.0.25-3.10.5.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-java-postgresql-4.0.25-3.10.5.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-java-postgresql-4.0.25-3.10.5.noarch", }, product_reference: "spacewalk-java-postgresql-4.0.25-3.10.5.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-setup-4.0.11-3.6.7.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-setup-4.0.11-3.6.7.noarch", }, product_reference: "spacewalk-setup-4.0.11-3.6.7.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-taskomatic-4.0.25-3.10.5.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-taskomatic-4.0.25-3.10.5.noarch", }, product_reference: "spacewalk-taskomatic-4.0.25-3.10.5.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "spacewalk-utils-4.0.13-3.6.8.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:spacewalk-utils-4.0.13-3.6.8.noarch", }, product_reference: "spacewalk-utils-4.0.13-3.6.8.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "susemanager-4.0.17-3.6.9.ppc64le as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.ppc64le", }, product_reference: "susemanager-4.0.17-3.6.9.ppc64le", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "susemanager-4.0.17-3.6.9.s390x as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.s390x", }, product_reference: "susemanager-4.0.17-3.6.9.s390x", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "susemanager-4.0.17-3.6.9.x86_64 as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.x86_64", }, product_reference: "susemanager-4.0.17-3.6.9.x86_64", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "susemanager-doc-indexes-4.0-10.9.8.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:susemanager-doc-indexes-4.0-10.9.8.noarch", }, product_reference: "susemanager-doc-indexes-4.0-10.9.8.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "susemanager-docs_en-4.0-10.9.7.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:susemanager-docs_en-4.0-10.9.7.noarch", }, product_reference: "susemanager-docs_en-4.0-10.9.7.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "susemanager-docs_en-pdf-4.0-10.9.7.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:susemanager-docs_en-pdf-4.0-10.9.7.noarch", }, product_reference: "susemanager-docs_en-pdf-4.0-10.9.7.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "susemanager-retail-tools-1.0.1568808472.be9f236-3.6.7.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:susemanager-retail-tools-1.0.1568808472.be9f236-3.6.7.noarch", }, product_reference: "susemanager-retail-tools-1.0.1568808472.be9f236-3.6.7.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "susemanager-schema-4.0.16-3.8.5.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:susemanager-schema-4.0.16-3.8.5.noarch", }, product_reference: "susemanager-schema-4.0.16-3.8.5.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "susemanager-sls-4.0.22-3.10.4.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:susemanager-sls-4.0.22-3.10.4.noarch", }, product_reference: "susemanager-sls-4.0.22-3.10.4.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "susemanager-sync-data-4.0.13-3.6.7.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:susemanager-sync-data-4.0.13-3.6.7.noarch", }, product_reference: "susemanager-sync-data-4.0.13-3.6.7.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "susemanager-tools-4.0.17-3.6.9.ppc64le as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.ppc64le", }, product_reference: "susemanager-tools-4.0.17-3.6.9.ppc64le", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "susemanager-tools-4.0.17-3.6.9.s390x as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.s390x", }, product_reference: "susemanager-tools-4.0.17-3.6.9.s390x", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "susemanager-tools-4.0.17-3.6.9.x86_64 as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.x86_64", }, product_reference: "susemanager-tools-4.0.17-3.6.9.x86_64", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "susemanager-web-libs-4.0.16-3.9.8.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:susemanager-web-libs-4.0.16-3.9.8.noarch", }, product_reference: "susemanager-web-libs-4.0.16-3.9.8.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "tika-core-1.22-3.3.7.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:tika-core-1.22-3.3.7.noarch", }, product_reference: "tika-core-1.22-3.3.7.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "virtual-host-gatherer-1.0.19-3.3.8.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:virtual-host-gatherer-1.0.19-3.3.8.noarch", }, product_reference: "virtual-host-gatherer-1.0.19-3.3.8.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "virtual-host-gatherer-Kubernetes-1.0.19-3.3.8.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:virtual-host-gatherer-Kubernetes-1.0.19-3.3.8.noarch", }, product_reference: "virtual-host-gatherer-Kubernetes-1.0.19-3.3.8.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "virtual-host-gatherer-VMware-1.0.19-3.3.8.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:virtual-host-gatherer-VMware-1.0.19-3.3.8.noarch", }, product_reference: "virtual-host-gatherer-VMware-1.0.19-3.3.8.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, { category: "default_component_of", full_product_name: { name: "virtual-host-gatherer-libcloud-1.0.19-3.3.8.noarch as component of SUSE Manager Server Module 4.0", product_id: "SUSE Manager Server Module 4.0:virtual-host-gatherer-libcloud-1.0.19-3.3.8.noarch", }, product_reference: "virtual-host-gatherer-libcloud-1.0.19-3.3.8.noarch", relates_to_product_reference: "SUSE Manager Server Module 4.0", }, ], }, vulnerabilities: [ { cve: "CVE-2019-10088", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-10088", }, ], notes: [ { category: "general", text: "A carefully crafted or corrupt zip file can cause an OOM in Apache Tika's RecursiveParserWrapper in versions 1.7-1.21. Users should upgrade to 1.22 or later.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Manager Server Module 4.0:cobbler-3.0.0+git20190806.32c4bae0-7.3.7.noarch", "SUSE Manager Server Module 4.0:cpu-mitigations-formula-0.1-4.6.7.noarch", "SUSE Manager Server Module 4.0:mgr-osa-dispatcher-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.ppc64le", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.s390x", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.x86_64", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.ppc64le", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.s390x", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.x86_64", "SUSE Manager Server Module 4.0:pgjdbc-ng-0.7.1-3.3.8.noarch", "SUSE Manager Server Module 4.0:prometheus-exporters-formula-0.4-3.3.7.noarch", "SUSE Manager Server Module 4.0:pxe-default-image-sle15-4.0.0-20191106084601.noarch", "SUSE Manager Server Module 4.0:py26-compat-salt-2016.11.10-10.8.8.noarch", "SUSE Manager Server Module 4.0:python3-mgr-osa-common-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-mgr-osa-dispatcher-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-backend-libs-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-certs-tools-4.0.12-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-client-tools-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-susemanager-retail-1.0.1568808472.be9f236-3.6.7.noarch", "SUSE Manager Server Module 4.0:python3-urlgrabber-3.10.2.1py2_3-6.22.6.noarch", "SUSE Manager Server Module 4.0:spacecmd-4.0.16-3.6.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-admin-4.0.8-3.3.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-app-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-applet-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-common-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-tool-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-iss-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-iss-export-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-package-push-server-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-server-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-sql-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-sql-postgresql-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-tools-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-xml-export-libs-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-xmlrpc-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-minimal-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-minimal-config-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.ppc64le", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.s390x", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.x86_64", "SUSE Manager Server Module 4.0:spacewalk-certs-tools-4.0.12-3.6.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-client-tools-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-config-4.0.13-3.3.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-html-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-config-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-lib-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-postgresql-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-setup-4.0.11-3.6.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-taskomatic-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-utils-4.0.13-3.6.8.noarch", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.ppc64le", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.s390x", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.x86_64", "SUSE Manager Server Module 4.0:susemanager-doc-indexes-4.0-10.9.8.noarch", "SUSE Manager Server Module 4.0:susemanager-docs_en-4.0-10.9.7.noarch", "SUSE Manager Server Module 4.0:susemanager-docs_en-pdf-4.0-10.9.7.noarch", "SUSE Manager Server Module 4.0:susemanager-retail-tools-1.0.1568808472.be9f236-3.6.7.noarch", "SUSE Manager Server Module 4.0:susemanager-schema-4.0.16-3.8.5.noarch", "SUSE Manager Server Module 4.0:susemanager-sls-4.0.22-3.10.4.noarch", "SUSE Manager Server Module 4.0:susemanager-sync-data-4.0.13-3.6.7.noarch", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.ppc64le", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.s390x", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.x86_64", "SUSE Manager Server Module 4.0:susemanager-web-libs-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:tika-core-1.22-3.3.7.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-Kubernetes-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-VMware-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-libcloud-1.0.19-3.3.8.noarch", ], }, references: [ { category: "external", summary: "CVE-2019-10088", url: "https://www.suse.com/security/cve/CVE-2019-10088", }, { category: "external", summary: "SUSE Bug 1144500 for CVE-2019-10088", url: "https://bugzilla.suse.com/1144500", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Manager Server Module 4.0:cobbler-3.0.0+git20190806.32c4bae0-7.3.7.noarch", "SUSE Manager Server Module 4.0:cpu-mitigations-formula-0.1-4.6.7.noarch", "SUSE Manager Server Module 4.0:mgr-osa-dispatcher-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.ppc64le", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.s390x", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.x86_64", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.ppc64le", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.s390x", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.x86_64", "SUSE Manager Server Module 4.0:pgjdbc-ng-0.7.1-3.3.8.noarch", "SUSE Manager Server Module 4.0:prometheus-exporters-formula-0.4-3.3.7.noarch", "SUSE Manager Server Module 4.0:pxe-default-image-sle15-4.0.0-20191106084601.noarch", "SUSE Manager Server Module 4.0:py26-compat-salt-2016.11.10-10.8.8.noarch", "SUSE Manager Server Module 4.0:python3-mgr-osa-common-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-mgr-osa-dispatcher-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-backend-libs-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-certs-tools-4.0.12-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-client-tools-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-susemanager-retail-1.0.1568808472.be9f236-3.6.7.noarch", "SUSE Manager Server Module 4.0:python3-urlgrabber-3.10.2.1py2_3-6.22.6.noarch", "SUSE Manager Server Module 4.0:spacecmd-4.0.16-3.6.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-admin-4.0.8-3.3.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-app-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-applet-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-common-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-tool-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-iss-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-iss-export-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-package-push-server-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-server-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-sql-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-sql-postgresql-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-tools-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-xml-export-libs-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-xmlrpc-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-minimal-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-minimal-config-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.ppc64le", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.s390x", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.x86_64", "SUSE Manager Server Module 4.0:spacewalk-certs-tools-4.0.12-3.6.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-client-tools-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-config-4.0.13-3.3.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-html-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-config-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-lib-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-postgresql-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-setup-4.0.11-3.6.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-taskomatic-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-utils-4.0.13-3.6.8.noarch", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.ppc64le", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.s390x", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.x86_64", "SUSE Manager Server Module 4.0:susemanager-doc-indexes-4.0-10.9.8.noarch", "SUSE Manager Server Module 4.0:susemanager-docs_en-4.0-10.9.7.noarch", "SUSE Manager Server Module 4.0:susemanager-docs_en-pdf-4.0-10.9.7.noarch", "SUSE Manager Server Module 4.0:susemanager-retail-tools-1.0.1568808472.be9f236-3.6.7.noarch", "SUSE Manager Server Module 4.0:susemanager-schema-4.0.16-3.8.5.noarch", "SUSE Manager Server Module 4.0:susemanager-sls-4.0.22-3.10.4.noarch", "SUSE Manager Server Module 4.0:susemanager-sync-data-4.0.13-3.6.7.noarch", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.ppc64le", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.s390x", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.x86_64", "SUSE Manager Server Module 4.0:susemanager-web-libs-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:tika-core-1.22-3.3.7.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-Kubernetes-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-VMware-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-libcloud-1.0.19-3.3.8.noarch", ], }, ], scores: [ { cvss_v3: { baseScore: 3.3, baseSeverity: "LOW", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "SUSE Manager Server Module 4.0:cobbler-3.0.0+git20190806.32c4bae0-7.3.7.noarch", "SUSE Manager Server Module 4.0:cpu-mitigations-formula-0.1-4.6.7.noarch", "SUSE Manager Server Module 4.0:mgr-osa-dispatcher-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.ppc64le", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.s390x", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.x86_64", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.ppc64le", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.s390x", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.x86_64", "SUSE Manager Server Module 4.0:pgjdbc-ng-0.7.1-3.3.8.noarch", "SUSE Manager Server Module 4.0:prometheus-exporters-formula-0.4-3.3.7.noarch", "SUSE Manager Server Module 4.0:pxe-default-image-sle15-4.0.0-20191106084601.noarch", "SUSE Manager Server Module 4.0:py26-compat-salt-2016.11.10-10.8.8.noarch", "SUSE Manager Server Module 4.0:python3-mgr-osa-common-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-mgr-osa-dispatcher-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-backend-libs-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-certs-tools-4.0.12-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-client-tools-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-susemanager-retail-1.0.1568808472.be9f236-3.6.7.noarch", "SUSE Manager Server Module 4.0:python3-urlgrabber-3.10.2.1py2_3-6.22.6.noarch", "SUSE Manager Server Module 4.0:spacecmd-4.0.16-3.6.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-admin-4.0.8-3.3.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-app-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-applet-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-common-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-tool-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-iss-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-iss-export-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-package-push-server-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-server-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-sql-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-sql-postgresql-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-tools-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-xml-export-libs-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-xmlrpc-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-minimal-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-minimal-config-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.ppc64le", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.s390x", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.x86_64", "SUSE Manager Server Module 4.0:spacewalk-certs-tools-4.0.12-3.6.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-client-tools-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-config-4.0.13-3.3.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-html-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-config-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-lib-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-postgresql-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-setup-4.0.11-3.6.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-taskomatic-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-utils-4.0.13-3.6.8.noarch", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.ppc64le", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.s390x", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.x86_64", "SUSE Manager Server Module 4.0:susemanager-doc-indexes-4.0-10.9.8.noarch", "SUSE Manager Server Module 4.0:susemanager-docs_en-4.0-10.9.7.noarch", "SUSE Manager Server Module 4.0:susemanager-docs_en-pdf-4.0-10.9.7.noarch", "SUSE Manager Server Module 4.0:susemanager-retail-tools-1.0.1568808472.be9f236-3.6.7.noarch", "SUSE Manager Server Module 4.0:susemanager-schema-4.0.16-3.8.5.noarch", "SUSE Manager Server Module 4.0:susemanager-sls-4.0.22-3.10.4.noarch", "SUSE Manager Server Module 4.0:susemanager-sync-data-4.0.13-3.6.7.noarch", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.ppc64le", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.s390x", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.x86_64", "SUSE Manager Server Module 4.0:susemanager-web-libs-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:tika-core-1.22-3.3.7.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-Kubernetes-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-VMware-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-libcloud-1.0.19-3.3.8.noarch", ], }, ], threats: [ { category: "impact", date: "2019-11-07T16:52:47Z", details: "low", }, ], title: "CVE-2019-10088", }, { cve: "CVE-2019-10093", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-10093", }, ], notes: [ { category: "general", text: "In Apache Tika 1.19 to 1.21, a carefully crafted 2003ml or 2006ml file could consume all available SAXParsers in the pool and lead to very long hangs. Apache Tika users should upgrade to 1.22 or later.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Manager Server Module 4.0:cobbler-3.0.0+git20190806.32c4bae0-7.3.7.noarch", "SUSE Manager Server Module 4.0:cpu-mitigations-formula-0.1-4.6.7.noarch", "SUSE Manager Server Module 4.0:mgr-osa-dispatcher-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.ppc64le", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.s390x", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.x86_64", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.ppc64le", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.s390x", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.x86_64", "SUSE Manager Server Module 4.0:pgjdbc-ng-0.7.1-3.3.8.noarch", "SUSE Manager Server Module 4.0:prometheus-exporters-formula-0.4-3.3.7.noarch", "SUSE Manager Server Module 4.0:pxe-default-image-sle15-4.0.0-20191106084601.noarch", "SUSE Manager Server Module 4.0:py26-compat-salt-2016.11.10-10.8.8.noarch", "SUSE Manager Server Module 4.0:python3-mgr-osa-common-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-mgr-osa-dispatcher-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-backend-libs-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-certs-tools-4.0.12-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-client-tools-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-susemanager-retail-1.0.1568808472.be9f236-3.6.7.noarch", "SUSE Manager Server Module 4.0:python3-urlgrabber-3.10.2.1py2_3-6.22.6.noarch", "SUSE Manager Server Module 4.0:spacecmd-4.0.16-3.6.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-admin-4.0.8-3.3.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-app-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-applet-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-common-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-tool-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-iss-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-iss-export-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-package-push-server-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-server-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-sql-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-sql-postgresql-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-tools-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-xml-export-libs-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-xmlrpc-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-minimal-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-minimal-config-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.ppc64le", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.s390x", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.x86_64", "SUSE Manager Server Module 4.0:spacewalk-certs-tools-4.0.12-3.6.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-client-tools-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-config-4.0.13-3.3.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-html-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-config-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-lib-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-postgresql-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-setup-4.0.11-3.6.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-taskomatic-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-utils-4.0.13-3.6.8.noarch", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.ppc64le", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.s390x", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.x86_64", "SUSE Manager Server Module 4.0:susemanager-doc-indexes-4.0-10.9.8.noarch", "SUSE Manager Server Module 4.0:susemanager-docs_en-4.0-10.9.7.noarch", "SUSE Manager Server Module 4.0:susemanager-docs_en-pdf-4.0-10.9.7.noarch", "SUSE Manager Server Module 4.0:susemanager-retail-tools-1.0.1568808472.be9f236-3.6.7.noarch", "SUSE Manager Server Module 4.0:susemanager-schema-4.0.16-3.8.5.noarch", "SUSE Manager Server Module 4.0:susemanager-sls-4.0.22-3.10.4.noarch", "SUSE Manager Server Module 4.0:susemanager-sync-data-4.0.13-3.6.7.noarch", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.ppc64le", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.s390x", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.x86_64", "SUSE Manager Server Module 4.0:susemanager-web-libs-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:tika-core-1.22-3.3.7.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-Kubernetes-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-VMware-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-libcloud-1.0.19-3.3.8.noarch", ], }, references: [ { category: "external", summary: "CVE-2019-10093", url: "https://www.suse.com/security/cve/CVE-2019-10093", }, { category: "external", summary: "SUSE Bug 1144510 for CVE-2019-10093", url: "https://bugzilla.suse.com/1144510", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Manager Server Module 4.0:cobbler-3.0.0+git20190806.32c4bae0-7.3.7.noarch", "SUSE Manager Server Module 4.0:cpu-mitigations-formula-0.1-4.6.7.noarch", "SUSE Manager Server Module 4.0:mgr-osa-dispatcher-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.ppc64le", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.s390x", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.x86_64", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.ppc64le", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.s390x", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.x86_64", "SUSE Manager Server Module 4.0:pgjdbc-ng-0.7.1-3.3.8.noarch", "SUSE Manager Server Module 4.0:prometheus-exporters-formula-0.4-3.3.7.noarch", "SUSE Manager Server Module 4.0:pxe-default-image-sle15-4.0.0-20191106084601.noarch", "SUSE Manager Server Module 4.0:py26-compat-salt-2016.11.10-10.8.8.noarch", "SUSE Manager Server Module 4.0:python3-mgr-osa-common-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-mgr-osa-dispatcher-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-backend-libs-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-certs-tools-4.0.12-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-client-tools-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-susemanager-retail-1.0.1568808472.be9f236-3.6.7.noarch", "SUSE Manager Server Module 4.0:python3-urlgrabber-3.10.2.1py2_3-6.22.6.noarch", "SUSE Manager Server Module 4.0:spacecmd-4.0.16-3.6.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-admin-4.0.8-3.3.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-app-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-applet-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-common-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-tool-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-iss-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-iss-export-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-package-push-server-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-server-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-sql-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-sql-postgresql-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-tools-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-xml-export-libs-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-xmlrpc-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-minimal-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-minimal-config-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.ppc64le", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.s390x", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.x86_64", "SUSE Manager Server Module 4.0:spacewalk-certs-tools-4.0.12-3.6.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-client-tools-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-config-4.0.13-3.3.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-html-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-config-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-lib-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-postgresql-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-setup-4.0.11-3.6.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-taskomatic-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-utils-4.0.13-3.6.8.noarch", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.ppc64le", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.s390x", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.x86_64", "SUSE Manager Server Module 4.0:susemanager-doc-indexes-4.0-10.9.8.noarch", "SUSE Manager Server Module 4.0:susemanager-docs_en-4.0-10.9.7.noarch", "SUSE Manager Server Module 4.0:susemanager-docs_en-pdf-4.0-10.9.7.noarch", "SUSE Manager Server Module 4.0:susemanager-retail-tools-1.0.1568808472.be9f236-3.6.7.noarch", "SUSE Manager Server Module 4.0:susemanager-schema-4.0.16-3.8.5.noarch", "SUSE Manager Server Module 4.0:susemanager-sls-4.0.22-3.10.4.noarch", "SUSE Manager Server Module 4.0:susemanager-sync-data-4.0.13-3.6.7.noarch", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.ppc64le", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.s390x", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.x86_64", "SUSE Manager Server Module 4.0:susemanager-web-libs-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:tika-core-1.22-3.3.7.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-Kubernetes-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-VMware-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-libcloud-1.0.19-3.3.8.noarch", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "SUSE Manager Server Module 4.0:cobbler-3.0.0+git20190806.32c4bae0-7.3.7.noarch", "SUSE Manager Server Module 4.0:cpu-mitigations-formula-0.1-4.6.7.noarch", "SUSE Manager Server Module 4.0:mgr-osa-dispatcher-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.ppc64le", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.s390x", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.x86_64", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.ppc64le", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.s390x", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.x86_64", "SUSE Manager Server Module 4.0:pgjdbc-ng-0.7.1-3.3.8.noarch", "SUSE Manager Server Module 4.0:prometheus-exporters-formula-0.4-3.3.7.noarch", "SUSE Manager Server Module 4.0:pxe-default-image-sle15-4.0.0-20191106084601.noarch", "SUSE Manager Server Module 4.0:py26-compat-salt-2016.11.10-10.8.8.noarch", "SUSE Manager Server Module 4.0:python3-mgr-osa-common-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-mgr-osa-dispatcher-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-backend-libs-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-certs-tools-4.0.12-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-client-tools-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-susemanager-retail-1.0.1568808472.be9f236-3.6.7.noarch", "SUSE Manager Server Module 4.0:python3-urlgrabber-3.10.2.1py2_3-6.22.6.noarch", "SUSE Manager Server Module 4.0:spacecmd-4.0.16-3.6.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-admin-4.0.8-3.3.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-app-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-applet-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-common-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-tool-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-iss-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-iss-export-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-package-push-server-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-server-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-sql-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-sql-postgresql-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-tools-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-xml-export-libs-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-xmlrpc-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-minimal-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-minimal-config-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.ppc64le", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.s390x", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.x86_64", "SUSE Manager Server Module 4.0:spacewalk-certs-tools-4.0.12-3.6.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-client-tools-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-config-4.0.13-3.3.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-html-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-config-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-lib-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-postgresql-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-setup-4.0.11-3.6.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-taskomatic-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-utils-4.0.13-3.6.8.noarch", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.ppc64le", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.s390x", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.x86_64", "SUSE Manager Server Module 4.0:susemanager-doc-indexes-4.0-10.9.8.noarch", "SUSE Manager Server Module 4.0:susemanager-docs_en-4.0-10.9.7.noarch", "SUSE Manager Server Module 4.0:susemanager-docs_en-pdf-4.0-10.9.7.noarch", "SUSE Manager Server Module 4.0:susemanager-retail-tools-1.0.1568808472.be9f236-3.6.7.noarch", "SUSE Manager Server Module 4.0:susemanager-schema-4.0.16-3.8.5.noarch", "SUSE Manager Server Module 4.0:susemanager-sls-4.0.22-3.10.4.noarch", "SUSE Manager Server Module 4.0:susemanager-sync-data-4.0.13-3.6.7.noarch", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.ppc64le", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.s390x", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.x86_64", "SUSE Manager Server Module 4.0:susemanager-web-libs-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:tika-core-1.22-3.3.7.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-Kubernetes-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-VMware-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-libcloud-1.0.19-3.3.8.noarch", ], }, ], threats: [ { category: "impact", date: "2019-11-07T16:52:47Z", details: "moderate", }, ], title: "CVE-2019-10093", }, { cve: "CVE-2019-10094", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-10094", }, ], notes: [ { category: "general", text: "A carefully crafted package/compressed file that, when unzipped/uncompressed yields the same file (a quine), causes a StackOverflowError in Apache Tika's RecursiveParserWrapper in versions 1.7-1.21. Apache Tika users should upgrade to 1.22 or later.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Manager Server Module 4.0:cobbler-3.0.0+git20190806.32c4bae0-7.3.7.noarch", "SUSE Manager Server Module 4.0:cpu-mitigations-formula-0.1-4.6.7.noarch", "SUSE Manager Server Module 4.0:mgr-osa-dispatcher-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.ppc64le", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.s390x", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.x86_64", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.ppc64le", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.s390x", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.x86_64", "SUSE Manager Server Module 4.0:pgjdbc-ng-0.7.1-3.3.8.noarch", "SUSE Manager Server Module 4.0:prometheus-exporters-formula-0.4-3.3.7.noarch", "SUSE Manager Server Module 4.0:pxe-default-image-sle15-4.0.0-20191106084601.noarch", "SUSE Manager Server Module 4.0:py26-compat-salt-2016.11.10-10.8.8.noarch", "SUSE Manager Server Module 4.0:python3-mgr-osa-common-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-mgr-osa-dispatcher-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-backend-libs-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-certs-tools-4.0.12-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-client-tools-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-susemanager-retail-1.0.1568808472.be9f236-3.6.7.noarch", "SUSE Manager Server Module 4.0:python3-urlgrabber-3.10.2.1py2_3-6.22.6.noarch", "SUSE Manager Server Module 4.0:spacecmd-4.0.16-3.6.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-admin-4.0.8-3.3.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-app-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-applet-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-common-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-tool-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-iss-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-iss-export-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-package-push-server-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-server-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-sql-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-sql-postgresql-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-tools-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-xml-export-libs-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-xmlrpc-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-minimal-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-minimal-config-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.ppc64le", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.s390x", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.x86_64", "SUSE Manager Server Module 4.0:spacewalk-certs-tools-4.0.12-3.6.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-client-tools-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-config-4.0.13-3.3.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-html-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-config-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-lib-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-postgresql-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-setup-4.0.11-3.6.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-taskomatic-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-utils-4.0.13-3.6.8.noarch", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.ppc64le", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.s390x", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.x86_64", "SUSE Manager Server Module 4.0:susemanager-doc-indexes-4.0-10.9.8.noarch", "SUSE Manager Server Module 4.0:susemanager-docs_en-4.0-10.9.7.noarch", "SUSE Manager Server Module 4.0:susemanager-docs_en-pdf-4.0-10.9.7.noarch", "SUSE Manager Server Module 4.0:susemanager-retail-tools-1.0.1568808472.be9f236-3.6.7.noarch", "SUSE Manager Server Module 4.0:susemanager-schema-4.0.16-3.8.5.noarch", "SUSE Manager Server Module 4.0:susemanager-sls-4.0.22-3.10.4.noarch", "SUSE Manager Server Module 4.0:susemanager-sync-data-4.0.13-3.6.7.noarch", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.ppc64le", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.s390x", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.x86_64", "SUSE Manager Server Module 4.0:susemanager-web-libs-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:tika-core-1.22-3.3.7.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-Kubernetes-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-VMware-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-libcloud-1.0.19-3.3.8.noarch", ], }, references: [ { category: "external", summary: "CVE-2019-10094", url: "https://www.suse.com/security/cve/CVE-2019-10094", }, { category: "external", summary: "SUSE Bug 1144515 for CVE-2019-10094", url: "https://bugzilla.suse.com/1144515", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Manager Server Module 4.0:cobbler-3.0.0+git20190806.32c4bae0-7.3.7.noarch", "SUSE Manager Server Module 4.0:cpu-mitigations-formula-0.1-4.6.7.noarch", "SUSE Manager Server Module 4.0:mgr-osa-dispatcher-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.ppc64le", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.s390x", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.x86_64", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.ppc64le", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.s390x", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.x86_64", "SUSE Manager Server Module 4.0:pgjdbc-ng-0.7.1-3.3.8.noarch", "SUSE Manager Server Module 4.0:prometheus-exporters-formula-0.4-3.3.7.noarch", "SUSE Manager Server Module 4.0:pxe-default-image-sle15-4.0.0-20191106084601.noarch", "SUSE Manager Server Module 4.0:py26-compat-salt-2016.11.10-10.8.8.noarch", "SUSE Manager Server Module 4.0:python3-mgr-osa-common-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-mgr-osa-dispatcher-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-backend-libs-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-certs-tools-4.0.12-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-client-tools-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-susemanager-retail-1.0.1568808472.be9f236-3.6.7.noarch", "SUSE Manager Server Module 4.0:python3-urlgrabber-3.10.2.1py2_3-6.22.6.noarch", "SUSE Manager Server Module 4.0:spacecmd-4.0.16-3.6.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-admin-4.0.8-3.3.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-app-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-applet-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-common-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-tool-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-iss-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-iss-export-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-package-push-server-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-server-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-sql-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-sql-postgresql-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-tools-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-xml-export-libs-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-xmlrpc-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-minimal-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-minimal-config-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.ppc64le", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.s390x", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.x86_64", "SUSE Manager Server Module 4.0:spacewalk-certs-tools-4.0.12-3.6.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-client-tools-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-config-4.0.13-3.3.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-html-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-config-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-lib-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-postgresql-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-setup-4.0.11-3.6.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-taskomatic-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-utils-4.0.13-3.6.8.noarch", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.ppc64le", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.s390x", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.x86_64", "SUSE Manager Server Module 4.0:susemanager-doc-indexes-4.0-10.9.8.noarch", "SUSE Manager Server Module 4.0:susemanager-docs_en-4.0-10.9.7.noarch", "SUSE Manager Server Module 4.0:susemanager-docs_en-pdf-4.0-10.9.7.noarch", "SUSE Manager Server Module 4.0:susemanager-retail-tools-1.0.1568808472.be9f236-3.6.7.noarch", "SUSE Manager Server Module 4.0:susemanager-schema-4.0.16-3.8.5.noarch", "SUSE Manager Server Module 4.0:susemanager-sls-4.0.22-3.10.4.noarch", "SUSE Manager Server Module 4.0:susemanager-sync-data-4.0.13-3.6.7.noarch", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.ppc64le", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.s390x", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.x86_64", "SUSE Manager Server Module 4.0:susemanager-web-libs-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:tika-core-1.22-3.3.7.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-Kubernetes-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-VMware-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-libcloud-1.0.19-3.3.8.noarch", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.0", }, products: [ "SUSE Manager Server Module 4.0:cobbler-3.0.0+git20190806.32c4bae0-7.3.7.noarch", "SUSE Manager Server Module 4.0:cpu-mitigations-formula-0.1-4.6.7.noarch", "SUSE Manager Server Module 4.0:mgr-osa-dispatcher-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.ppc64le", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.s390x", "SUSE Manager Server Module 4.0:patterns-suma_retail-4.0-9.3.8.x86_64", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.ppc64le", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.s390x", "SUSE Manager Server Module 4.0:patterns-suma_server-4.0-9.3.8.x86_64", "SUSE Manager Server Module 4.0:pgjdbc-ng-0.7.1-3.3.8.noarch", "SUSE Manager Server Module 4.0:prometheus-exporters-formula-0.4-3.3.7.noarch", "SUSE Manager Server Module 4.0:pxe-default-image-sle15-4.0.0-20191106084601.noarch", "SUSE Manager Server Module 4.0:py26-compat-salt-2016.11.10-10.8.8.noarch", "SUSE Manager Server Module 4.0:python3-mgr-osa-common-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-mgr-osa-dispatcher-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-backend-libs-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-certs-tools-4.0.12-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-spacewalk-client-tools-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:python3-susemanager-retail-1.0.1568808472.be9f236-3.6.7.noarch", "SUSE Manager Server Module 4.0:python3-urlgrabber-3.10.2.1py2_3-6.22.6.noarch", "SUSE Manager Server Module 4.0:spacecmd-4.0.16-3.6.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-admin-4.0.8-3.3.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-app-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-applet-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-common-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-tool-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-iss-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-iss-export-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-package-push-server-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-server-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-sql-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-sql-postgresql-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-tools-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-xml-export-libs-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-backend-xmlrpc-4.0.27-3.13.9.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-minimal-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-base-minimal-config-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.ppc64le", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.s390x", "SUSE Manager Server Module 4.0:spacewalk-branding-4.0.14-3.6.8.x86_64", "SUSE Manager Server Module 4.0:spacewalk-certs-tools-4.0.12-3.6.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-client-tools-4.0.10-3.6.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-config-4.0.13-3.3.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-html-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-config-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-lib-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-java-postgresql-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-setup-4.0.11-3.6.7.noarch", "SUSE Manager Server Module 4.0:spacewalk-taskomatic-4.0.25-3.10.5.noarch", "SUSE Manager Server Module 4.0:spacewalk-utils-4.0.13-3.6.8.noarch", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.ppc64le", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.s390x", "SUSE Manager Server Module 4.0:susemanager-4.0.17-3.6.9.x86_64", "SUSE Manager Server Module 4.0:susemanager-doc-indexes-4.0-10.9.8.noarch", "SUSE Manager Server Module 4.0:susemanager-docs_en-4.0-10.9.7.noarch", "SUSE Manager Server Module 4.0:susemanager-docs_en-pdf-4.0-10.9.7.noarch", "SUSE Manager Server Module 4.0:susemanager-retail-tools-1.0.1568808472.be9f236-3.6.7.noarch", "SUSE Manager Server Module 4.0:susemanager-schema-4.0.16-3.8.5.noarch", "SUSE Manager Server Module 4.0:susemanager-sls-4.0.22-3.10.4.noarch", "SUSE Manager Server Module 4.0:susemanager-sync-data-4.0.13-3.6.7.noarch", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.ppc64le", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.s390x", "SUSE Manager Server Module 4.0:susemanager-tools-4.0.17-3.6.9.x86_64", "SUSE Manager Server Module 4.0:susemanager-web-libs-4.0.16-3.9.8.noarch", "SUSE Manager Server Module 4.0:tika-core-1.22-3.3.7.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-Kubernetes-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-VMware-1.0.19-3.3.8.noarch", "SUSE Manager Server Module 4.0:virtual-host-gatherer-libcloud-1.0.19-3.3.8.noarch", ], }, ], threats: [ { category: "impact", date: "2019-11-07T16:52:47Z", details: "moderate", }, ], title: "CVE-2019-10094", }, ], }
gsd-2019-10093
Vulnerability from gsd
Modified
2023-12-13 01:23
Details
In Apache Tika 1.19 to 1.21, a carefully crafted 2003ml or 2006ml file could consume all available SAXParsers in the pool and lead to very long hangs. Apache Tika users should upgrade to 1.22 or later.
Aliases
Aliases
{ GSD: { alias: "CVE-2019-10093", description: "In Apache Tika 1.19 to 1.21, a carefully crafted 2003ml or 2006ml file could consume all available SAXParsers in the pool and lead to very long hangs. Apache Tika users should upgrade to 1.22 or later.", id: "GSD-2019-10093", references: [ "https://www.suse.com/security/cve/CVE-2019-10093.html", ], }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2019-10093", ], details: "In Apache Tika 1.19 to 1.21, a carefully crafted 2003ml or 2006ml file could consume all available SAXParsers in the pool and lead to very long hangs. Apache Tika users should upgrade to 1.22 or later.", id: "GSD-2019-10093", modified: "2023-12-13T01:23:59.953327Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "security@apache.org", ID: "CVE-2019-10093", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Apache Tika", version: { version_data: [ { version_value: "1.19 to 1.21", }, ], }, }, ], }, vendor_name: "Apache", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "In Apache Tika 1.19 to 1.21, a carefully crafted 2003ml or 2006ml file could consume all available SAXParsers in the pool and lead to very long hangs. Apache Tika users should upgrade to 1.22 or later.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "DoS", }, ], }, ], }, references: { reference_data: [ { name: "https://lists.apache.org/thread.html/a5a44eff1b9eda3bc69d22943a1030c43d376380c75d3ab04d0c1a21@%3Cdev.tika.apache.org%3E", refsource: "CONFIRM", url: "https://lists.apache.org/thread.html/a5a44eff1b9eda3bc69d22943a1030c43d376380c75d3ab04d0c1a21@%3Cdev.tika.apache.org%3E", }, { name: "[tika-dev] 20190809 security fixes for CVE-2019-10088 and CVE-2019-1009{3,4}", refsource: "MLIST", url: "https://lists.apache.org/thread.html/fb6c84fd387de997e5e366d50b0ca331a328c466432c80f8c5eed33d@%3Cdev.tika.apache.org%3E", }, { name: "[tika-dev] 20190812 Re: security fixes for CVE-2019-10088 and CVE-2019-1009{3,4}", refsource: "MLIST", url: "https://lists.apache.org/thread.html/da9ee189d1756f8508d0f2386d8e25aca5a6df541739829232be8a94@%3Cdev.tika.apache.org%3E", }, { name: "[tika-dev] 20190813 Re: security fixes for CVE-2019-10088 and CVE-2019-1009{3,4}", refsource: "MLIST", url: "https://lists.apache.org/thread.html/39723d8227b248781898c200aa24b154683673287b150a204b83787d@%3Cdev.tika.apache.org%3E", }, { name: "https://security.netapp.com/advisory/ntap-20190828-0004/", refsource: "CONFIRM", url: "https://security.netapp.com/advisory/ntap-20190828-0004/", }, { name: "https://www.oracle.com/security-alerts/cpujan2020.html", refsource: "MISC", url: "https://www.oracle.com/security-alerts/cpujan2020.html", }, { name: "[lucene-solr-user] 20200320 CVEs (vulnerabilities) that apply to Solr 8.4.1", refsource: "MLIST", url: "https://lists.apache.org/thread.html/r204ba2a9ea750f38d789d2bb429cc0925ad6133deea7cbc3001d96b5@%3Csolr-user.lucene.apache.org%3E", }, { name: "https://www.oracle.com/security-alerts/cpuapr2020.html", refsource: "MISC", url: "https://www.oracle.com/security-alerts/cpuapr2020.html", }, ], }, }, "gitlab.com": { advisories: [ { affected_range: "[1.19,1.21]", affected_versions: "All versions starting from 1.19 up to 1.21", credit: "Tim Allison on the Apache Tika team", cvss_v2: "AV:N/AC:M/Au:N/C:N/I:N/A:P", cvss_v3: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", cwe_ids: [ "CWE-1035", "CWE-770", "CWE-937", ], date: "2019-08-12", description: "In Apache Tika, a carefully crafted `2003ml` or `2006ml` file could consume all available `SAXParsers` in the pool and lead to very long hangs.", fixed_versions: [ "1.22", ], identifier: "CVE-2019-10093", identifiers: [ "CVE-2019-10093", ], not_impacted: "All versions before 1.19, all versions after 1.21", package_slug: "maven/org.apache.tika/tika-core", pubdate: "2019-08-02", solution: "Upgrade to version 1.22 or above.", title: "Uncontrolled Resource Consumption", urls: [ "https://nvd.nist.gov/vuln/detail/CVE-2019-10093", "https://lists.apache.org/thread.html/a5a44eff1b9eda3bc69d22943a1030c43d376380c75d3ab04d0c1a21@%3Cdev.tika.apache.org%3E", "https://lists.apache.org/thread.html/fb6c84fd387de997e5e366d50b0ca331a328c466432c80f8c5eed33d@%3Cdev.tika.apache.org%3E", ], uuid: "37fb7634-0e4f-4511-9c62-dff356589b70", }, { affected_range: "[1.19,1.22)", affected_versions: "All versions starting from 1.19 before 1.22", cvss_v2: "AV:N/AC:M/Au:N/C:N/I:N/A:P", cvss_v3: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", cwe_ids: [ "CWE-1035", "CWE-770", "CWE-937", ], date: "2021-05-05", description: "In Apache Tika 1.19 to 1.21, a carefully crafted 2003ml or 2006ml file could consume all available SAXParsers in the pool and lead to very long hangs. Apache Tika users should upgrade to 1.22 or later.", fixed_versions: [ "1.22", ], identifier: "CVE-2019-10093", identifiers: [ "GHSA-4mq5-mj59-qq9c", "CVE-2019-10093", ], not_impacted: "All versions before 1.19, all versions starting from 1.22", package_slug: "maven/org.apache.tika/tika-parsers", pubdate: "2019-08-06", solution: "Upgrade to version 1.22 or above.", title: "Allocation of Resources Without Limits or Throttling", urls: [ "https://nvd.nist.gov/vuln/detail/CVE-2019-10093", "https://lists.apache.org/thread.html/a5a44eff1b9eda3bc69d22943a1030c43d376380c75d3ab04d0c1a21@%3Cdev.tika.apache.org%3E", "https://lists.apache.org/thread.html/39723d8227b248781898c200aa24b154683673287b150a204b83787d@%3Cdev.tika.apache.org%3E", "https://lists.apache.org/thread.html/da9ee189d1756f8508d0f2386d8e25aca5a6df541739829232be8a94@%3Cdev.tika.apache.org%3E", "https://lists.apache.org/thread.html/fb6c84fd387de997e5e366d50b0ca331a328c466432c80f8c5eed33d@%3Cdev.tika.apache.org%3E", "https://lists.apache.org/thread.html/r204ba2a9ea750f38d789d2bb429cc0925ad6133deea7cbc3001d96b5@%3Csolr-user.lucene.apache.org%3E", "https://security.netapp.com/advisory/ntap-20190828-0004/", "https://www.oracle.com/security-alerts/cpuapr2020.html", "https://www.oracle.com/security-alerts/cpujan2020.html", "https://github.com/advisories/GHSA-4mq5-mj59-qq9c", ], uuid: "320ec618-3f52-4660-a8e1-47b70e4b321d", }, ], }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:apache:tika:*:*:*:*:*:*:*:*", cpe_name: [], versionEndIncluding: "1.21", versionStartIncluding: "1.19", vulnerable: true, }, ], operator: "OR", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "security@apache.org", ID: "CVE-2019-10093", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: "In Apache Tika 1.19 to 1.21, a carefully crafted 2003ml or 2006ml file could consume all available SAXParsers in the pool and lead to very long hangs. Apache Tika users should upgrade to 1.22 or later.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "CWE-770", }, ], }, ], }, references: { reference_data: [ { name: "https://lists.apache.org/thread.html/a5a44eff1b9eda3bc69d22943a1030c43d376380c75d3ab04d0c1a21@%3Cdev.tika.apache.org%3E", refsource: "CONFIRM", tags: [ "Mailing List", "Vendor Advisory", ], url: "https://lists.apache.org/thread.html/a5a44eff1b9eda3bc69d22943a1030c43d376380c75d3ab04d0c1a21@%3Cdev.tika.apache.org%3E", }, { name: "[tika-dev] 20190809 security fixes for CVE-2019-10088 and CVE-2019-1009{3,4}", refsource: "MLIST", tags: [ "Mailing List", "Patch", "Vendor Advisory", ], url: "https://lists.apache.org/thread.html/fb6c84fd387de997e5e366d50b0ca331a328c466432c80f8c5eed33d@%3Cdev.tika.apache.org%3E", }, { name: "[tika-dev] 20190812 Re: security fixes for CVE-2019-10088 and CVE-2019-1009{3,4}", refsource: "MLIST", tags: [], url: "https://lists.apache.org/thread.html/da9ee189d1756f8508d0f2386d8e25aca5a6df541739829232be8a94@%3Cdev.tika.apache.org%3E", }, { name: "[tika-dev] 20190813 Re: security fixes for CVE-2019-10088 and CVE-2019-1009{3,4}", refsource: "MLIST", tags: [], url: "https://lists.apache.org/thread.html/39723d8227b248781898c200aa24b154683673287b150a204b83787d@%3Cdev.tika.apache.org%3E", }, { name: "https://security.netapp.com/advisory/ntap-20190828-0004/", refsource: "CONFIRM", tags: [], url: "https://security.netapp.com/advisory/ntap-20190828-0004/", }, { name: "https://www.oracle.com/security-alerts/cpujan2020.html", refsource: "MISC", tags: [], url: "https://www.oracle.com/security-alerts/cpujan2020.html", }, { name: "[lucene-solr-user] 20200320 CVEs (vulnerabilities) that apply to Solr 8.4.1", refsource: "MLIST", tags: [], url: "https://lists.apache.org/thread.html/r204ba2a9ea750f38d789d2bb429cc0925ad6133deea7cbc3001d96b5@%3Csolr-user.lucene.apache.org%3E", }, { name: "N/A", refsource: "N/A", tags: [], url: "https://www.oracle.com/security-alerts/cpuapr2020.html", }, ], }, }, impact: { baseMetricV2: { acInsufInfo: false, cvssV2: { accessComplexity: "MEDIUM", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 4.3, confidentialityImpact: "NONE", integrityImpact: "NONE", vectorString: "AV:N/AC:M/Au:N/C:N/I:N/A:P", version: "2.0", }, exploitabilityScore: 8.6, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "MEDIUM", userInteractionRequired: true, }, baseMetricV3: { cvssV3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.0", }, exploitabilityScore: 2.8, impactScore: 3.6, }, }, lastModifiedDate: "2020-08-24T17:37Z", publishedDate: "2019-08-02T19:15Z", }, }, }
fkie_cve-2019-10093
Vulnerability from fkie_nvd
Published
2019-08-02 19:15
Modified
2024-11-21 04:18
Severity ?
Summary
In Apache Tika 1.19 to 1.21, a carefully crafted 2003ml or 2006ml file could consume all available SAXParsers in the pool and lead to very long hangs. Apache Tika users should upgrade to 1.22 or later.
References
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:apache:tika:*:*:*:*:*:*:*:*", matchCriteriaId: "3DBE0816-FF04-4428-BADE-975A0FDC3714", versionEndIncluding: "1.21", versionStartIncluding: "1.19", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "In Apache Tika 1.19 to 1.21, a carefully crafted 2003ml or 2006ml file could consume all available SAXParsers in the pool and lead to very long hangs. Apache Tika users should upgrade to 1.22 or later.", }, { lang: "es", value: "En Tika de Apache versiones 1.19 hasta 1.21, un archivo 2003ml o 2006ml cuidadosamente diseñado podría consumir todos los SAXParsers disponibles en el grupo y conllevar a suspensiones muy largas. Los usuarios de Tika de Apache deben actualizar a la versión 1.22 o posterior.", }, ], id: "CVE-2019-10093", lastModified: "2024-11-21T04:18:23.460", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "MEDIUM", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 4.3, confidentialityImpact: "NONE", integrityImpact: "NONE", vectorString: "AV:N/AC:M/Au:N/C:N/I:N/A:P", version: "2.0", }, exploitabilityScore: 8.6, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: true, }, ], cvssMetricV30: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.0", }, exploitabilityScore: 2.8, impactScore: 3.6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2019-08-02T19:15:11.780", references: [ { source: "security@apache.org", url: "https://lists.apache.org/thread.html/39723d8227b248781898c200aa24b154683673287b150a204b83787d%40%3Cdev.tika.apache.org%3E", }, { source: "security@apache.org", url: "https://lists.apache.org/thread.html/a5a44eff1b9eda3bc69d22943a1030c43d376380c75d3ab04d0c1a21%40%3Cdev.tika.apache.org%3E", }, { source: "security@apache.org", url: "https://lists.apache.org/thread.html/da9ee189d1756f8508d0f2386d8e25aca5a6df541739829232be8a94%40%3Cdev.tika.apache.org%3E", }, { source: "security@apache.org", url: "https://lists.apache.org/thread.html/fb6c84fd387de997e5e366d50b0ca331a328c466432c80f8c5eed33d%40%3Cdev.tika.apache.org%3E", }, { source: "security@apache.org", url: "https://lists.apache.org/thread.html/r204ba2a9ea750f38d789d2bb429cc0925ad6133deea7cbc3001d96b5%40%3Csolr-user.lucene.apache.org%3E", }, { source: "security@apache.org", url: "https://security.netapp.com/advisory/ntap-20190828-0004/", }, { source: "security@apache.org", url: "https://www.oracle.com/security-alerts/cpuapr2020.html", }, { source: "security@apache.org", url: "https://www.oracle.com/security-alerts/cpujan2020.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.apache.org/thread.html/39723d8227b248781898c200aa24b154683673287b150a204b83787d%40%3Cdev.tika.apache.org%3E", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.apache.org/thread.html/a5a44eff1b9eda3bc69d22943a1030c43d376380c75d3ab04d0c1a21%40%3Cdev.tika.apache.org%3E", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.apache.org/thread.html/da9ee189d1756f8508d0f2386d8e25aca5a6df541739829232be8a94%40%3Cdev.tika.apache.org%3E", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.apache.org/thread.html/fb6c84fd387de997e5e366d50b0ca331a328c466432c80f8c5eed33d%40%3Cdev.tika.apache.org%3E", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://lists.apache.org/thread.html/r204ba2a9ea750f38d789d2bb429cc0925ad6133deea7cbc3001d96b5%40%3Csolr-user.lucene.apache.org%3E", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://security.netapp.com/advisory/ntap-20190828-0004/", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://www.oracle.com/security-alerts/cpuapr2020.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://www.oracle.com/security-alerts/cpujan2020.html", }, ], sourceIdentifier: "security@apache.org", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-770", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
ghsa-4mq5-mj59-qq9c
Vulnerability from github
Published
2019-08-06 01:43
Modified
2021-05-05 22:55
Severity ?
Summary
Allocation of Resources Without Limits or Throttling in Apache Tika
Details
In Apache Tika 1.19 to 1.21, a carefully crafted 2003ml or 2006ml file could consume all available SAXParsers in the pool and lead to very long hangs. Apache Tika users should upgrade to 1.22 or later.
{ affected: [ { package: { ecosystem: "Maven", name: "org.apache.tika:tika-parsers", }, ranges: [ { events: [ { introduced: "1.19", }, { fixed: "1.22", }, ], type: "ECOSYSTEM", }, ], }, ], aliases: [ "CVE-2019-10093", ], database_specific: { cwe_ids: [ "CWE-770", ], github_reviewed: true, github_reviewed_at: "2019-08-06T01:42:09Z", nvd_published_at: "2019-08-02T19:15:00Z", severity: "MODERATE", }, details: "In Apache Tika 1.19 to 1.21, a carefully crafted 2003ml or 2006ml file could consume all available SAXParsers in the pool and lead to very long hangs. Apache Tika users should upgrade to 1.22 or later.", id: "GHSA-4mq5-mj59-qq9c", modified: "2021-05-05T22:55:27Z", published: "2019-08-06T01:43:38Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2019-10093", }, { type: "WEB", url: "https://lists.apache.org/thread.html/39723d8227b248781898c200aa24b154683673287b150a204b83787d@%3Cdev.tika.apache.org%3E", }, { type: "WEB", url: "https://lists.apache.org/thread.html/a5a44eff1b9eda3bc69d22943a1030c43d376380c75d3ab04d0c1a21@%3Cdev.tika.apache.org%3E", }, { type: "WEB", url: "https://lists.apache.org/thread.html/da9ee189d1756f8508d0f2386d8e25aca5a6df541739829232be8a94@%3Cdev.tika.apache.org%3E", }, { type: "WEB", url: "https://lists.apache.org/thread.html/fb6c84fd387de997e5e366d50b0ca331a328c466432c80f8c5eed33d@%3Cdev.tika.apache.org%3E", }, { type: "WEB", url: "https://lists.apache.org/thread.html/r204ba2a9ea750f38d789d2bb429cc0925ad6133deea7cbc3001d96b5@%3Csolr-user.lucene.apache.org%3E", }, { type: "WEB", url: "https://security.netapp.com/advisory/ntap-20190828-0004", }, { type: "WEB", url: "https://www.oracle.com/security-alerts/cpuapr2020.html", }, { type: "WEB", url: "https://www.oracle.com/security-alerts/cpujan2020.html", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", type: "CVSS_V3", }, ], summary: "Allocation of Resources Without Limits or Throttling in Apache Tika", }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.