Oval Definition:oval:org.opensuse.security:def:83854
Revision Date:2018-08-14Version:1
Title:Security update for grafana, kafka, logstash, openstack-monasca-installer (Moderate)
Description:

This update for grafana, kafka, logstash, openstack-monasca-installer fixes the following issues:

Security issues fixed:

- CVE-2018-12099: grafana: Fix XSS vulnerabilities in dashboard links (bsc#1096985). - CVE-2018-3817: logstash: Fix inadvertently logging of sensitive information (bsc#1090849).

Bug fixes:

- bsc#1095603: Disable jmxremote debugging. - bsc#1097847: Make time series database schema setup conditional. - bsc#1094448: Set log rotation options. - bsc#1090336: Add complete set of elasticsearch performance tunables. - bsc#1101366: Fix build issues with s390x, ppc64le and aarch64. - Fix various spec errors affecting Leap 15 and Tumbleweed
Family:unixClass:patch
Status:Reference(s):1090336
1090849
1094448
1095603
1096985
1097847
1101366
CVE-2018-12099
CVE-2018-3817
SUSE-SU-2018:2317-1
Platform(s):SUSE OpenStack Cloud 8
Product(s):
Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • grafana-4.5.1-4.3.1 is installed
  • OR kafka-0.9.0.1-5.3.1 is installed
  • OR logstash-2.4.1-5.4.1 is installed
  • OR openstack-monasca-installer-20180622_15.06-3.6.1 is installed
    • BACK