Oval Definition:oval:org.opensuse.security:def:66090
Revision Date:2020-12-01Version:1
Title:Security update for SUSE Manager 4.0 (Critical)
Description:

This security update for SUSE Manager 4.0 provides the following fixes:

py26-compat-salt:

- Properly validate eauth credentials and tokens on SSH calls made by Salt API (bsc#1178319, bsc#1178362, bsc#1178361, CVE-2020-25592, CVE-2020-17490, CVE-2020-16846)

spacewalk-java:

- Use correct eauth module and credentials for Salt SSH calls. (bsc#1178319, CVE-2020-25592)
Family:unixClass:patch
Status:Reference(s):1119835
1146403
1178319
1178361
1178362
CVE-2018-20105
CVE-2020-16846
CVE-2020-17490
CVE-2020-25592
SUSE-SU-2020:0578-1
SUSE-SU-2020:3250-1
Platform(s):SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for SUSE Manager Server 4.0
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND yast2-rmt-1.3.0-3.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for SUSE Manager Server 4.0 is installed
  • AND Package Information
  • py26-compat-salt-2016.11.10-10.17 is installed
  • OR spacewalk-java-4.0.39-3.45 is installed
  • OR spacewalk-java-config-4.0.39-3.45 is installed
  • OR spacewalk-java-lib-4.0.39-3.45 is installed
  • OR spacewalk-java-postgresql-4.0.39-3.45 is installed
  • OR spacewalk-taskomatic-4.0.39-3.45 is installed
    • BACK