Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2019-10136 (GCVE-0-2019-10136)
Vulnerability from cvelistv5
Published
2019-07-02 19:29
Modified
2024-08-04 22:10
Severity ?
VLAI Severity ?
EPSS score ?
CWE
Summary
It was found that Spacewalk, all versions through 2.9, did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum.
References
| ► | URL | Tags | |||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| spacewalkproject | spacewalk |
Version: spacewalk all through 2.9 |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T22:10:09.975Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10136"
},
{
"name": "109029",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/109029"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "spacewalk",
"vendor": "spacewalkproject",
"versions": [
{
"status": "affected",
"version": "spacewalk all through 2.9"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "It was found that Spacewalk, all versions through 2.9, did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum."
}
],
"metrics": [
{
"cvssV3_0": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-347",
"description": "CWE-347",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-07-04T15:06:04",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10136"
},
{
"name": "109029",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/109029"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2019-10136",
"datePublished": "2019-07-02T19:29:42",
"dateReserved": "2019-03-27T00:00:00",
"dateUpdated": "2024-08-04T22:10:09.975Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2019-10136\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2019-07-02T20:15:11.370\",\"lastModified\":\"2024-11-21T04:18:29.543\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"It was found that Spacewalk, all versions through 2.9, did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum.\"},{\"lang\":\"es\",\"value\":\"Se encontr\u00f3 que Spacewalk, en todas las versiones hasta la 2.8, no computaba de forma segura las sumas de comprobaci\u00f3n de token del cliente. Un atacante con un conjunto de encabezados v\u00e1lidos, pero expirados y autenticados, podr\u00eda mover algunos d\u00edgitos, extendiendo artificialmente la validez de la sesi\u00f3n sin modificar la suma de comprobaci\u00f3n.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\",\"baseScore\":4.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":1.4},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\",\"baseScore\":4.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":1.4}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:S/C:P/I:N/A:N\",\"baseScore\":4.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-347\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-347\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:satellite:5.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4F86C3C-B99C-44C6-97D7-163DC3F59687\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:spacewalk:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.9\",\"matchCriteriaId\":\"8F4D92AC-1EBC-4E45-A682-6D77E361F353\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/109029\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10136\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/109029\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10136\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]}]}}"
}
}
suse-su-2019:2317-1
Vulnerability from csaf_suse
Published
2019-09-06 07:15
Modified
2019-09-06 07:15
Summary
Security update for SUSE Manager Client Tools
Notes
Title of the patch
Security update for SUSE Manager Client Tools
Description of the patch
This update fixes the following issues:
golang-github-prometheus-prometheus:
- Add support for Uyuni/SUSE Manager service discovery
+ Added 0003-Add-Uyuni-service-discovery
- Readded _service file removed in error.
- Update to 2.11.1
+ Bug Fix:
* Fix potential panic when prometheus is watching multiple zookeeper paths.
- Update to 2.11.0
+ Bug Fix:
* resolve race condition in maxGauge.
* Fix ZooKeeper connection leak.
* Improved atomicity of .tmp block replacement during compaction for usual case.
* Fix 'unknown series references' after clean shutdown.
* Re-calculate block size when calling block.Delete.
* Fix unsafe snapshots with head block.
* prometheus_tsdb_compactions_failed_total is now incremented on any compaction failure.
+ Changes:
* Remove max_retries from queue_config (it has been unused since rewriting remote-write to utilize the write-ahead-log)
* The meta file BlockStats no longer holds size information. This is now dynamically calculated and kept in memory. It also includes the meta file size which was not included before
* Renamed metric from prometheus_tsdb_wal_reader_corruption_errors to prometheus_tsdb_wal_reader_corruption_errors_total
+ Features:
* Add option to use Alertmanager API v2.
* Added humanizePercentage function for templates.
* Include InitContainers in Kubernetes Service Discovery.
* Provide option to compress WAL records using Snappy.
+ Enhancements:
* Create new clean segment when starting the WAL.
* Reduce allocations in PromQL aggregations.
* Add storage warnings to LabelValues and LabelNames API results.
* Add prometheus_http_requests_total metric.
* Enable openbsd/arm build.
* Remote-write allocation improvements.
* Query performance improvement: Efficient iteration and search in HashForLabels and HashWithoutLabels.
* Allow injection of arbitrary headers in promtool.
* Allow passing external_labels in alert unit tests groups.
* Allows globs for rules when unit testing.
* Improved postings intersection matching.
* Reduced disk usage for WAL for small setups.
* Optimize queries using regexp for set lookups.
- Rebase patch002-Default-settings.patch
- Update to 2.10.0:
+ Bug Fixes:
* TSDB: Don't panic when running out of disk space and recover nicely from the condition
* TSDB: Correctly handle empty labels.
* TSDB: Don't crash on an unknown tombstone reference.
* Storage/remote: Remove queue-manager specific metrics if queue no longer exists.
* PromQL: Correctly display {__name__='a'}.
* Discovery/kubernetes: Use service rather than ingress as the name for the service workqueue.
* Discovery/azure: Don't panic on a VM with a public IP.
* Web: Fixed Content-Type for js and css instead of using /etc/mime.types.
* API: Encode alert values as string to correctly represent Inf/NaN.
+ Features:
* Template expansion: Make external labels available as $externalLabels in alert and console template expansion.
* TSDB: Add prometheus_tsdb_wal_segment_current metric for the WAL segment index that TSDB is currently writing to. tsdb
* Scrape: Add scrape_series_added per-scrape metric. #5546
+ Enhancements
* Discovery/kubernetes: Add labels __meta_kubernetes_endpoint_node_name and __meta_kubernetes_endpoint_hostname.
* Discovery/azure: Add label __meta_azure_machine_public_ip.
* TSDB: Simplify mergedPostings.Seek, resulting in better performance if there are many posting lists. tsdb
* Log filesystem type on startup.
* Cmd/promtool: Use POST requests for Query and QueryRange. client_golang
* Web: Sort alerts by group name.
* Console templates: Add convenience variables $rawParams, $params, $path.
- Upadte to 2.9.2
+ Bug Fixes:
* Make sure subquery range is taken into account for selection
* Exhaust every request body before closing it
* Cmd/promtool: return errors from rule evaluations
* Remote Storage: string interner should not panic in release
* Fix memory allocation regression in mergedPostings.Seek tsdb
- Update to 2.9.1
+ Bug Fixes:
* Discovery/kubernetes: fix missing label sanitization
* Remote_write: Prevent reshard concurrent with calling stop
- Update to 2.9.0
+ Feature:
* Add honor_timestamps scrape option.
+ Enhancements:
* Update Consul to support catalog.ServiceMultipleTags.
* Discovery/kubernetes: add present labels for labels/annotations.
* OpenStack SD: Add ProjectID and UserID meta labels.
* Add GODEBUG and retention to the runtime page.
* Add support for POSTing to /series endpoint.
* Support PUT methods for Lifecycle and Admin APIs.
* Scrape: Add global jitter for HA server.
* Check for cancellation on every step of a range evaluation.
* String interning for labels & values in the remote_write path.
* Don't lose the scrape cache on a failed scrape.
* Reload cert files from disk automatically. common
* Use fixed length millisecond timestamp format for logs. common
* Performance improvements for postings.
Bug Fixes:
* Remote Write: fix checkpoint reading.
* Check if label value is valid when unmarshaling external labels from YAML.
* Promparse: sort all labels when parsing.
* Reload rules: copy state on both name and labels.
* Exponentation operator to drop metric name in result of operation.
* Config: resolve more file paths.
* Promtool: resolve relative paths in alert test files.
* Set TLSHandshakeTimeout in HTTP transport. common
* Use fsync to be more resilient to machine crashes.
* Keep series that are still in WAL in checkpoints.
- Update to 2.8.1
+ Bug Fixes
* Display the job labels in /targets which was removed accidentally
- Update to 2.8.0
+ Change:
* This release uses Write-Ahead Logging (WAL) for the remote_write API. This currently causes a slight increase in memory usage, which will be addressed in future releases.
* Default time retention is used only when no size based retention is specified. These are flags where time retention is specified by the flag --storage.tsdb.retention and size retention by --storage.tsdb.retention.size.
* prometheus_tsdb_storage_blocks_bytes_total is now prometheus_tsdb_storage_blocks_bytes.
+ Feature:
* (EXPERIMENTAL) Time overlapping blocks are now allowed; vertical compaction and vertical query merge. It is an optional feature which is controlled by the --storage.tsdb.allow-overlapping-blocks flag, disabled by default.
+ Enhancements:
* Use the WAL for remote_write API.
* Query performance improvements.
* UI enhancements with upgrade to Bootstrap 4.
* Reduce time that Alertmanagers are in flux when reloaded.
* Limit number of metrics displayed on UI to 10000.
* (1) Remember All/Unhealthy choice on target-overview when reloading page. (2) Resize text-input area on Graph page on mouseclick.
* In histogram_quantile merge buckets with equivalent le values.
* Show list of offending labels in the error message in many-to-many scenarios.
* Show Storage Retention criteria in effect on /status page.
+ Bug Fixes:
+ Fix sorting of rule groups.
+ Fix support for password_file and bearer_token_file in Kubernetes SD.
+ Scrape: catch errors when creating HTTP clients
+ Adds new metrics:
prometheus_target_scrape_pools_total
prometheus_target_scrape_pools_failed_total
prometheus_target_scrape_pool_reloads_total
prometheus_target_scrape_pool_reloads_failed_total
+ Fix panic when aggregator param is not a literal.
mgr-cfg:
- Ensure bytes type when using hashlib to avoid traceback (bsc#1138822)
mgr-daemon:
- Fix systemd timer configuration on SLE12 (bsc#1142038)
mgr-osad:
- Fix obsolete for old osad packages, to allow installing mgr-osad
even by using osad at yum/zyppper install (bsc#1139453)
- Ensure bytes type when using hashlib to avoid traceback (bsc#1138822)
mgr-virtualization:
- Fix missing python 3 ugettext (bsc#1138494)
- Fix package dependencies to prevent file conflict (bsc#1143856)
rhnlib:
- Add SNI support for clients
- Fix initialize ssl connection (bsc#1144155)
- Fix bootstrapping SLE11SP4 trad client with SSL enabled (bsc#1148177)
spacecmd:
- Bugfix: referenced variable before assignment.
- Bugfix: 'dict' object has no attribute 'iteritems' (bsc#1135881)
- Add unit tests for custominfo, snippet, scap, ssm, cryptokey and distribution
- Fix missing runtime dependencies that made spacecmd return old versions of
packages in some cases, even if newer ones were available (bsc#1148311)
spacewalk-backend:
- Do not overwrite comps and module data with older versions
- Fix issue with 'dists' keyword in url hostname
- Import packages from all collections of a patch not just first one
- Ensure bytes type when using hashlib to avoid traceback
on XMLRPC call to 'registration.register_osad' (bsc#1138822)
- Do not duplicate 'http://' protocol when using proxies with 'deb'
repositories (bsc#1138313)
- Fix reposync when dealing with RedHat CDN (bsc#1138358)
- Fix for CVE-2019-10136. An attacker with a valid, but expired,
authenticated set of headers could move some digits around,
artificially extending the session validity without modifying
the checksum. (bsc#1136480)
- Prevent FileNotFoundError: repomd.xml.key traceback (bsc#1137940)
- Add journalctl output to spacewalk-debug tarballs
- Prevent unnecessary triggering of channel-repodata tasks when GPG
signing is disabled (bsc#1137715)
- Fix spacewalk-repo-sync for Ubuntu repositories in mirror case (bsc#1136029)
- Add support for ULN repositories on new Zypper based reposync.
- Don't skip Deb package tags on package import (bsc#1130040)
- For backend-libs subpackages, exclude files for the server
(already part of spacewalk-backend) to avoid conflicts (bsc#1148125)
- prevent duplicate key violates on repo-sync with long changelog
entries (bsc#1144889)
spacewalk-remote-utils:
- Add RHEL8
Patchnames
SUSE-2019-2317,SUSE-SLE-Manager-Tools-15-2019-2317,SUSE-SLE-Module-Development-Tools-OBS-15-2019-2317,SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2019-2317
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for SUSE Manager Client Tools",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThis update fixes the following issues:\n\ngolang-github-prometheus-prometheus:\n\n- Add support for Uyuni/SUSE Manager service discovery\n + Added 0003-Add-Uyuni-service-discovery \n- Readded _service file removed in error. \n- Update to 2.11.1 \n + Bug Fix:\n * Fix potential panic when prometheus is watching multiple zookeeper paths.\n- Update to 2.11.0\n + Bug Fix:\n * resolve race condition in maxGauge. \n * Fix ZooKeeper connection leak. \n * Improved atomicity of .tmp block replacement during compaction for usual case. \n * Fix \u0027unknown series references\u0027 after clean shutdown. \n * Re-calculate block size when calling block.Delete. \n * Fix unsafe snapshots with head block. \n * prometheus_tsdb_compactions_failed_total is now incremented on any compaction failure. \n + Changes:\n * Remove max_retries from queue_config (it has been unused since rewriting remote-write to utilize the write-ahead-log)\n * The meta file BlockStats no longer holds size information. This is now dynamically calculated and kept in memory. It also includes the meta file size which was not included before\n * Renamed metric from prometheus_tsdb_wal_reader_corruption_errors to prometheus_tsdb_wal_reader_corruption_errors_total\n + Features:\n * Add option to use Alertmanager API v2. \n * Added humanizePercentage function for templates. \n * Include InitContainers in Kubernetes Service Discovery. \n * Provide option to compress WAL records using Snappy. \n + Enhancements:\n * Create new clean segment when starting the WAL. \n * Reduce allocations in PromQL aggregations. \n * Add storage warnings to LabelValues and LabelNames API results. \n * Add prometheus_http_requests_total metric. \n * Enable openbsd/arm build. \n * Remote-write allocation improvements. \n * Query performance improvement: Efficient iteration and search in HashForLabels and HashWithoutLabels. \n * Allow injection of arbitrary headers in promtool. \n * Allow passing external_labels in alert unit tests groups. \n * Allows globs for rules when unit testing.\n * Improved postings intersection matching. \n * Reduced disk usage for WAL for small setups. \n * Optimize queries using regexp for set lookups. \n- Rebase patch002-Default-settings.patch \n- Update to 2.10.0:\n + Bug Fixes:\n * TSDB: Don\u0027t panic when running out of disk space and recover nicely from the condition\n * TSDB: Correctly handle empty labels.\n * TSDB: Don\u0027t crash on an unknown tombstone reference. \n * Storage/remote: Remove queue-manager specific metrics if queue no longer exists. \n * PromQL: Correctly display {__name__=\u0027a\u0027}. \n * Discovery/kubernetes: Use service rather than ingress as the name for the service workqueue. \n * Discovery/azure: Don\u0027t panic on a VM with a public IP. \n * Web: Fixed Content-Type for js and css instead of using /etc/mime.types.\n * API: Encode alert values as string to correctly represent Inf/NaN. \n + Features:\n * Template expansion: Make external labels available as $externalLabels in alert and console template expansion. \n * TSDB: Add prometheus_tsdb_wal_segment_current metric for the WAL segment index that TSDB is currently writing to. tsdb\n * Scrape: Add scrape_series_added per-scrape metric. #5546\n + Enhancements\n * Discovery/kubernetes: Add labels __meta_kubernetes_endpoint_node_name and __meta_kubernetes_endpoint_hostname. \n * Discovery/azure: Add label __meta_azure_machine_public_ip. \n * TSDB: Simplify mergedPostings.Seek, resulting in better performance if there are many posting lists. tsdb\n * Log filesystem type on startup. \n * Cmd/promtool: Use POST requests for Query and QueryRange. client_golang\n * Web: Sort alerts by group name. \n * Console templates: Add convenience variables $rawParams, $params, $path.\n- Upadte to 2.9.2\n + Bug Fixes:\n * Make sure subquery range is taken into account for selection \n * Exhaust every request body before closing it \n * Cmd/promtool: return errors from rule evaluations \n * Remote Storage: string interner should not panic in release \n * Fix memory allocation regression in mergedPostings.Seek tsdb\n- Update to 2.9.1\n + Bug Fixes:\n * Discovery/kubernetes: fix missing label sanitization \n * Remote_write: Prevent reshard concurrent with calling stop \n- Update to 2.9.0 \n + Feature: \n * Add honor_timestamps scrape option.\n + Enhancements:\t\n * Update Consul to support catalog.ServiceMultipleTags.\n * Discovery/kubernetes: add present labels for labels/annotations.\n * OpenStack SD: Add ProjectID and UserID meta labels.\n * Add GODEBUG and retention to the runtime page. \n * Add support for POSTing to /series endpoint. \n * Support PUT methods for Lifecycle and Admin APIs.\n * Scrape: Add global jitter for HA server.\n * Check for cancellation on every step of a range evaluation. \n * String interning for labels \u0026 values in the remote_write path.\n * Don\u0027t lose the scrape cache on a failed scrape.\n * Reload cert files from disk automatically. common\n * Use fixed length millisecond timestamp format for logs. common\n * Performance improvements for postings. \n Bug Fixes:\n * Remote Write: fix checkpoint reading. \n * Check if label value is valid when unmarshaling external labels from YAML. \n * Promparse: sort all labels when parsing. \n * Reload rules: copy state on both name and labels. \n * Exponentation operator to drop metric name in result of operation. \n * Config: resolve more file paths. \n * Promtool: resolve relative paths in alert test files. \n * Set TLSHandshakeTimeout in HTTP transport. common\n * Use fsync to be more resilient to machine crashes. \n * Keep series that are still in WAL in checkpoints.\n- Update to 2.8.1\n + Bug Fixes\n * Display the job labels in /targets which was removed accidentally\n- Update to 2.8.0 \n + Change:\n * This release uses Write-Ahead Logging (WAL) for the remote_write API. This currently causes a slight increase in memory usage, which will be addressed in future releases.\n * Default time retention is used only when no size based retention is specified. These are flags where time retention is specified by the flag --storage.tsdb.retention and size retention by --storage.tsdb.retention.size. \n * prometheus_tsdb_storage_blocks_bytes_total is now prometheus_tsdb_storage_blocks_bytes. \n + Feature:\n * (EXPERIMENTAL) Time overlapping blocks are now allowed; vertical compaction and vertical query merge. It is an optional feature which is controlled by the --storage.tsdb.allow-overlapping-blocks flag, disabled by default.\n + Enhancements: \n\t* Use the WAL for remote_write API.\n * Query performance improvements. \n * UI enhancements with upgrade to Bootstrap 4. \n * Reduce time that Alertmanagers are in flux when reloaded. \n * Limit number of metrics displayed on UI to 10000. \n * (1) Remember All/Unhealthy choice on target-overview when reloading page. (2) Resize text-input area on Graph page on mouseclick. \n * In histogram_quantile merge buckets with equivalent le values. \n * Show list of offending labels in the error message in many-to-many scenarios. \n * Show Storage Retention criteria in effect on /status page. \n + Bug Fixes: \n + Fix sorting of rule groups. \n + Fix support for password_file and bearer_token_file in Kubernetes SD. \n + Scrape: catch errors when creating HTTP clients \n + Adds new metrics:\n prometheus_target_scrape_pools_total\n prometheus_target_scrape_pools_failed_total\n prometheus_target_scrape_pool_reloads_total\n prometheus_target_scrape_pool_reloads_failed_total\n + Fix panic when aggregator param is not a literal.\n\nmgr-cfg:\n\n- Ensure bytes type when using hashlib to avoid traceback (bsc#1138822)\n\nmgr-daemon:\n\n- Fix systemd timer configuration on SLE12 (bsc#1142038)\n\nmgr-osad:\n\n- Fix obsolete for old osad packages, to allow installing mgr-osad\n even by using osad at yum/zyppper install (bsc#1139453)\n- Ensure bytes type when using hashlib to avoid traceback (bsc#1138822)\n\nmgr-virtualization:\n\n- Fix missing python 3 ugettext (bsc#1138494)\n- Fix package dependencies to prevent file conflict (bsc#1143856)\n\nrhnlib:\n\n- Add SNI support for clients\n- Fix initialize ssl connection (bsc#1144155)\n- Fix bootstrapping SLE11SP4 trad client with SSL enabled (bsc#1148177)\n\nspacecmd:\n\n- Bugfix: referenced variable before assignment.\n- Bugfix: \u0027dict\u0027 object has no attribute \u0027iteritems\u0027 (bsc#1135881)\n- Add unit tests for custominfo, snippet, scap, ssm, cryptokey and distribution\n- Fix missing runtime dependencies that made spacecmd return old versions of\n packages in some cases, even if newer ones were available (bsc#1148311)\n\n\nspacewalk-backend:\n\n- Do not overwrite comps and module data with older versions\n- Fix issue with \u0027dists\u0027 keyword in url hostname\n- Import packages from all collections of a patch not just first one\n- Ensure bytes type when using hashlib to avoid traceback\n on XMLRPC call to \u0027registration.register_osad\u0027 (bsc#1138822)\n- Do not duplicate \u0027http://\u0027 protocol when using proxies with \u0027deb\u0027\n repositories (bsc#1138313)\n- Fix reposync when dealing with RedHat CDN (bsc#1138358)\n- Fix for CVE-2019-10136. An attacker with a valid, but expired,\n authenticated set of headers could move some digits around,\n artificially extending the session validity without modifying\n the checksum. (bsc#1136480)\n- Prevent FileNotFoundError: repomd.xml.key traceback (bsc#1137940)\n- Add journalctl output to spacewalk-debug tarballs\n- Prevent unnecessary triggering of channel-repodata tasks when GPG\n signing is disabled (bsc#1137715)\n- Fix spacewalk-repo-sync for Ubuntu repositories in mirror case (bsc#1136029)\n- Add support for ULN repositories on new Zypper based reposync.\n- Don\u0027t skip Deb package tags on package import (bsc#1130040)\n- For backend-libs subpackages, exclude files for the server\n (already part of spacewalk-backend) to avoid conflicts (bsc#1148125)\n- prevent duplicate key violates on repo-sync with long changelog\n entries (bsc#1144889)\n\nspacewalk-remote-utils:\n\n- Add RHEL8\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2019-2317,SUSE-SLE-Manager-Tools-15-2019-2317,SUSE-SLE-Module-Development-Tools-OBS-15-2019-2317,SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2019-2317",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_2317-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2019:2317-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20192317-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2019:2317-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2019-September/005887.html"
},
{
"category": "self",
"summary": "SUSE Bug 1130040",
"url": "https://bugzilla.suse.com/1130040"
},
{
"category": "self",
"summary": "SUSE Bug 1135881",
"url": "https://bugzilla.suse.com/1135881"
},
{
"category": "self",
"summary": "SUSE Bug 1136029",
"url": "https://bugzilla.suse.com/1136029"
},
{
"category": "self",
"summary": "SUSE Bug 1136480",
"url": "https://bugzilla.suse.com/1136480"
},
{
"category": "self",
"summary": "SUSE Bug 1137715",
"url": "https://bugzilla.suse.com/1137715"
},
{
"category": "self",
"summary": "SUSE Bug 1137940",
"url": "https://bugzilla.suse.com/1137940"
},
{
"category": "self",
"summary": "SUSE Bug 1138313",
"url": "https://bugzilla.suse.com/1138313"
},
{
"category": "self",
"summary": "SUSE Bug 1138358",
"url": "https://bugzilla.suse.com/1138358"
},
{
"category": "self",
"summary": "SUSE Bug 1138494",
"url": "https://bugzilla.suse.com/1138494"
},
{
"category": "self",
"summary": "SUSE Bug 1138822",
"url": "https://bugzilla.suse.com/1138822"
},
{
"category": "self",
"summary": "SUSE Bug 1139453",
"url": "https://bugzilla.suse.com/1139453"
},
{
"category": "self",
"summary": "SUSE Bug 1142038",
"url": "https://bugzilla.suse.com/1142038"
},
{
"category": "self",
"summary": "SUSE Bug 1143856",
"url": "https://bugzilla.suse.com/1143856"
},
{
"category": "self",
"summary": "SUSE Bug 1144155",
"url": "https://bugzilla.suse.com/1144155"
},
{
"category": "self",
"summary": "SUSE Bug 1144889",
"url": "https://bugzilla.suse.com/1144889"
},
{
"category": "self",
"summary": "SUSE Bug 1148125",
"url": "https://bugzilla.suse.com/1148125"
},
{
"category": "self",
"summary": "SUSE Bug 1148177",
"url": "https://bugzilla.suse.com/1148177"
},
{
"category": "self",
"summary": "SUSE Bug 1148311",
"url": "https://bugzilla.suse.com/1148311"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-10136 page",
"url": "https://www.suse.com/security/cve/CVE-2019-10136/"
}
],
"title": "Security update for SUSE Manager Client Tools",
"tracking": {
"current_release_date": "2019-09-06T07:15:46Z",
"generator": {
"date": "2019-09-06T07:15:46Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2019:2317-1",
"initial_release_date": "2019-09-06T07:15:46Z",
"revision_history": [
{
"date": "2019-09-06T07:15:46Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.aarch64",
"product": {
"name": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.aarch64",
"product_id": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-2.11.1-3.6.2.aarch64",
"product": {
"name": "golang-github-prometheus-prometheus-2.11.1-3.6.2.aarch64",
"product_id": "golang-github-prometheus-prometheus-2.11.1-3.6.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.i586",
"product": {
"name": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.i586",
"product_id": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.i586"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-2.11.1-3.6.2.i586",
"product": {
"name": "golang-github-prometheus-prometheus-2.11.1-3.6.2.i586",
"product_id": "golang-github-prometheus-prometheus-2.11.1-3.6.2.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "mgr-cfg-4.0.9-1.6.5.noarch",
"product": {
"name": "mgr-cfg-4.0.9-1.6.5.noarch",
"product_id": "mgr-cfg-4.0.9-1.6.5.noarch"
}
},
{
"category": "product_version",
"name": "mgr-cfg-actions-4.0.9-1.6.5.noarch",
"product": {
"name": "mgr-cfg-actions-4.0.9-1.6.5.noarch",
"product_id": "mgr-cfg-actions-4.0.9-1.6.5.noarch"
}
},
{
"category": "product_version",
"name": "mgr-cfg-client-4.0.9-1.6.5.noarch",
"product": {
"name": "mgr-cfg-client-4.0.9-1.6.5.noarch",
"product_id": "mgr-cfg-client-4.0.9-1.6.5.noarch"
}
},
{
"category": "product_version",
"name": "mgr-cfg-management-4.0.9-1.6.5.noarch",
"product": {
"name": "mgr-cfg-management-4.0.9-1.6.5.noarch",
"product_id": "mgr-cfg-management-4.0.9-1.6.5.noarch"
}
},
{
"category": "product_version",
"name": "mgr-daemon-4.0.7-1.8.1.noarch",
"product": {
"name": "mgr-daemon-4.0.7-1.8.1.noarch",
"product_id": "mgr-daemon-4.0.7-1.8.1.noarch"
}
},
{
"category": "product_version",
"name": "mgr-osa-dispatcher-4.0.9-1.6.2.noarch",
"product": {
"name": "mgr-osa-dispatcher-4.0.9-1.6.2.noarch",
"product_id": "mgr-osa-dispatcher-4.0.9-1.6.2.noarch"
}
},
{
"category": "product_version",
"name": "mgr-osad-4.0.9-1.6.2.noarch",
"product": {
"name": "mgr-osad-4.0.9-1.6.2.noarch",
"product_id": "mgr-osad-4.0.9-1.6.2.noarch"
}
},
{
"category": "product_version",
"name": "mgr-virtualization-host-4.0.8-1.8.4.noarch",
"product": {
"name": "mgr-virtualization-host-4.0.8-1.8.4.noarch",
"product_id": "mgr-virtualization-host-4.0.8-1.8.4.noarch"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-4.0.9-1.6.5.noarch",
"product": {
"name": "python2-mgr-cfg-4.0.9-1.6.5.noarch",
"product_id": "python2-mgr-cfg-4.0.9-1.6.5.noarch"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-actions-4.0.9-1.6.5.noarch",
"product": {
"name": "python2-mgr-cfg-actions-4.0.9-1.6.5.noarch",
"product_id": "python2-mgr-cfg-actions-4.0.9-1.6.5.noarch"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-client-4.0.9-1.6.5.noarch",
"product": {
"name": "python2-mgr-cfg-client-4.0.9-1.6.5.noarch",
"product_id": "python2-mgr-cfg-client-4.0.9-1.6.5.noarch"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-management-4.0.9-1.6.5.noarch",
"product": {
"name": "python2-mgr-cfg-management-4.0.9-1.6.5.noarch",
"product_id": "python2-mgr-cfg-management-4.0.9-1.6.5.noarch"
}
},
{
"category": "product_version",
"name": "python2-mgr-osa-common-4.0.9-1.6.2.noarch",
"product": {
"name": "python2-mgr-osa-common-4.0.9-1.6.2.noarch",
"product_id": "python2-mgr-osa-common-4.0.9-1.6.2.noarch"
}
},
{
"category": "product_version",
"name": "python2-mgr-osa-dispatcher-4.0.9-1.6.2.noarch",
"product": {
"name": "python2-mgr-osa-dispatcher-4.0.9-1.6.2.noarch",
"product_id": "python2-mgr-osa-dispatcher-4.0.9-1.6.2.noarch"
}
},
{
"category": "product_version",
"name": "python2-mgr-osad-4.0.9-1.6.2.noarch",
"product": {
"name": "python2-mgr-osad-4.0.9-1.6.2.noarch",
"product_id": "python2-mgr-osad-4.0.9-1.6.2.noarch"
}
},
{
"category": "product_version",
"name": "python2-mgr-virtualization-common-4.0.8-1.8.4.noarch",
"product": {
"name": "python2-mgr-virtualization-common-4.0.8-1.8.4.noarch",
"product_id": "python2-mgr-virtualization-common-4.0.8-1.8.4.noarch"
}
},
{
"category": "product_version",
"name": "python2-mgr-virtualization-host-4.0.8-1.8.4.noarch",
"product": {
"name": "python2-mgr-virtualization-host-4.0.8-1.8.4.noarch",
"product_id": "python2-mgr-virtualization-host-4.0.8-1.8.4.noarch"
}
},
{
"category": "product_version",
"name": "python2-rhnlib-4.0.11-3.10.1.noarch",
"product": {
"name": "python2-rhnlib-4.0.11-3.10.1.noarch",
"product_id": "python2-rhnlib-4.0.11-3.10.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-mgr-cfg-4.0.9-1.6.5.noarch",
"product": {
"name": "python3-mgr-cfg-4.0.9-1.6.5.noarch",
"product_id": "python3-mgr-cfg-4.0.9-1.6.5.noarch"
}
},
{
"category": "product_version",
"name": "python3-mgr-cfg-actions-4.0.9-1.6.5.noarch",
"product": {
"name": "python3-mgr-cfg-actions-4.0.9-1.6.5.noarch",
"product_id": "python3-mgr-cfg-actions-4.0.9-1.6.5.noarch"
}
},
{
"category": "product_version",
"name": "python3-mgr-cfg-client-4.0.9-1.6.5.noarch",
"product": {
"name": "python3-mgr-cfg-client-4.0.9-1.6.5.noarch",
"product_id": "python3-mgr-cfg-client-4.0.9-1.6.5.noarch"
}
},
{
"category": "product_version",
"name": "python3-mgr-cfg-management-4.0.9-1.6.5.noarch",
"product": {
"name": "python3-mgr-cfg-management-4.0.9-1.6.5.noarch",
"product_id": "python3-mgr-cfg-management-4.0.9-1.6.5.noarch"
}
},
{
"category": "product_version",
"name": "python3-mgr-osa-common-4.0.9-1.6.2.noarch",
"product": {
"name": "python3-mgr-osa-common-4.0.9-1.6.2.noarch",
"product_id": "python3-mgr-osa-common-4.0.9-1.6.2.noarch"
}
},
{
"category": "product_version",
"name": "python3-mgr-osa-dispatcher-4.0.9-1.6.2.noarch",
"product": {
"name": "python3-mgr-osa-dispatcher-4.0.9-1.6.2.noarch",
"product_id": "python3-mgr-osa-dispatcher-4.0.9-1.6.2.noarch"
}
},
{
"category": "product_version",
"name": "python3-mgr-osad-4.0.9-1.6.2.noarch",
"product": {
"name": "python3-mgr-osad-4.0.9-1.6.2.noarch",
"product_id": "python3-mgr-osad-4.0.9-1.6.2.noarch"
}
},
{
"category": "product_version",
"name": "python3-mgr-virtualization-common-4.0.8-1.8.4.noarch",
"product": {
"name": "python3-mgr-virtualization-common-4.0.8-1.8.4.noarch",
"product_id": "python3-mgr-virtualization-common-4.0.8-1.8.4.noarch"
}
},
{
"category": "product_version",
"name": "python3-mgr-virtualization-host-4.0.8-1.8.4.noarch",
"product": {
"name": "python3-mgr-virtualization-host-4.0.8-1.8.4.noarch",
"product_id": "python3-mgr-virtualization-host-4.0.8-1.8.4.noarch"
}
},
{
"category": "product_version",
"name": "python3-rhnlib-4.0.11-3.10.1.noarch",
"product": {
"name": "python3-rhnlib-4.0.11-3.10.1.noarch",
"product_id": "python3-rhnlib-4.0.11-3.10.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-spacewalk-backend-libs-4.0.25-3.23.1.noarch",
"product": {
"name": "python3-spacewalk-backend-libs-4.0.25-3.23.1.noarch",
"product_id": "python3-spacewalk-backend-libs-4.0.25-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "spacecmd-4.0.14-3.26.1.noarch",
"product": {
"name": "spacecmd-4.0.14-3.26.1.noarch",
"product_id": "spacecmd-4.0.14-3.26.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-4.0.25-3.23.1.noarch",
"product": {
"name": "spacewalk-backend-4.0.25-3.23.1.noarch",
"product_id": "spacewalk-backend-4.0.25-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-app-4.0.25-3.23.1.noarch",
"product": {
"name": "spacewalk-backend-app-4.0.25-3.23.1.noarch",
"product_id": "spacewalk-backend-app-4.0.25-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-applet-4.0.25-3.23.1.noarch",
"product": {
"name": "spacewalk-backend-applet-4.0.25-3.23.1.noarch",
"product_id": "spacewalk-backend-applet-4.0.25-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-cdn-4.0.25-3.23.1.noarch",
"product": {
"name": "spacewalk-backend-cdn-4.0.25-3.23.1.noarch",
"product_id": "spacewalk-backend-cdn-4.0.25-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-4.0.25-3.23.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-4.0.25-3.23.1.noarch",
"product_id": "spacewalk-backend-config-files-4.0.25-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-common-4.0.25-3.23.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-common-4.0.25-3.23.1.noarch",
"product_id": "spacewalk-backend-config-files-common-4.0.25-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-tool-4.0.25-3.23.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-tool-4.0.25-3.23.1.noarch",
"product_id": "spacewalk-backend-config-files-tool-4.0.25-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-4.0.25-3.23.1.noarch",
"product": {
"name": "spacewalk-backend-iss-4.0.25-3.23.1.noarch",
"product_id": "spacewalk-backend-iss-4.0.25-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-export-4.0.25-3.23.1.noarch",
"product": {
"name": "spacewalk-backend-iss-export-4.0.25-3.23.1.noarch",
"product_id": "spacewalk-backend-iss-export-4.0.25-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-4.0.25-3.23.1.noarch",
"product": {
"name": "spacewalk-backend-libs-4.0.25-3.23.1.noarch",
"product_id": "spacewalk-backend-libs-4.0.25-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-package-push-server-4.0.25-3.23.1.noarch",
"product": {
"name": "spacewalk-backend-package-push-server-4.0.25-3.23.1.noarch",
"product_id": "spacewalk-backend-package-push-server-4.0.25-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-server-4.0.25-3.23.1.noarch",
"product": {
"name": "spacewalk-backend-server-4.0.25-3.23.1.noarch",
"product_id": "spacewalk-backend-server-4.0.25-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-4.0.25-3.23.1.noarch",
"product": {
"name": "spacewalk-backend-sql-4.0.25-3.23.1.noarch",
"product_id": "spacewalk-backend-sql-4.0.25-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-oracle-4.0.25-3.23.1.noarch",
"product": {
"name": "spacewalk-backend-sql-oracle-4.0.25-3.23.1.noarch",
"product_id": "spacewalk-backend-sql-oracle-4.0.25-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-postgresql-4.0.25-3.23.1.noarch",
"product": {
"name": "spacewalk-backend-sql-postgresql-4.0.25-3.23.1.noarch",
"product_id": "spacewalk-backend-sql-postgresql-4.0.25-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-tools-4.0.25-3.23.1.noarch",
"product": {
"name": "spacewalk-backend-tools-4.0.25-3.23.1.noarch",
"product_id": "spacewalk-backend-tools-4.0.25-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xml-export-libs-4.0.25-3.23.1.noarch",
"product": {
"name": "spacewalk-backend-xml-export-libs-4.0.25-3.23.1.noarch",
"product_id": "spacewalk-backend-xml-export-libs-4.0.25-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xmlrpc-4.0.25-3.23.1.noarch",
"product": {
"name": "spacewalk-backend-xmlrpc-4.0.25-3.23.1.noarch",
"product_id": "spacewalk-backend-xmlrpc-4.0.25-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-remote-utils-4.0.5-3.9.2.noarch",
"product": {
"name": "spacewalk-remote-utils-4.0.5-3.9.2.noarch",
"product_id": "spacewalk-remote-utils-4.0.5-3.9.2.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.ppc64le",
"product": {
"name": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.ppc64le",
"product_id": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-2.11.1-3.6.2.ppc64le",
"product": {
"name": "golang-github-prometheus-prometheus-2.11.1-3.6.2.ppc64le",
"product_id": "golang-github-prometheus-prometheus-2.11.1-3.6.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.s390x",
"product": {
"name": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.s390x",
"product_id": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-2.11.1-3.6.2.s390x",
"product": {
"name": "golang-github-prometheus-prometheus-2.11.1-3.6.2.s390x",
"product_id": "golang-github-prometheus-prometheus-2.11.1-3.6.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.x86_64",
"product": {
"name": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.x86_64",
"product_id": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-2.11.1-3.6.2.x86_64",
"product": {
"name": "golang-github-prometheus-prometheus-2.11.1-3.6.2.x86_64",
"product_id": "golang-github-prometheus-prometheus-2.11.1-3.6.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Manager Client Tools 15",
"product": {
"name": "SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15"
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.aarch64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-prometheus-alertmanager-0.16.2-3.3.1.aarch64"
},
"product_reference": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.ppc64le as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-prometheus-alertmanager-0.16.2-3.3.1.ppc64le"
},
"product_reference": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.s390x as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-prometheus-alertmanager-0.16.2-3.3.1.s390x"
},
"product_reference": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.x86_64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-prometheus-alertmanager-0.16.2-3.3.1.x86_64"
},
"product_reference": "golang-github-prometheus-alertmanager-0.16.2-3.3.1.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-prometheus-2.11.1-3.6.2.aarch64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-2.11.1-3.6.2.aarch64"
},
"product_reference": "golang-github-prometheus-prometheus-2.11.1-3.6.2.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-prometheus-2.11.1-3.6.2.ppc64le as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-2.11.1-3.6.2.ppc64le"
},
"product_reference": "golang-github-prometheus-prometheus-2.11.1-3.6.2.ppc64le",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-prometheus-2.11.1-3.6.2.s390x as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-2.11.1-3.6.2.s390x"
},
"product_reference": "golang-github-prometheus-prometheus-2.11.1-3.6.2.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-prometheus-2.11.1-3.6.2.x86_64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-2.11.1-3.6.2.x86_64"
},
"product_reference": "golang-github-prometheus-prometheus-2.11.1-3.6.2.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-4.0.9-1.6.5.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:mgr-cfg-4.0.9-1.6.5.noarch"
},
"product_reference": "mgr-cfg-4.0.9-1.6.5.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-actions-4.0.9-1.6.5.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:mgr-cfg-actions-4.0.9-1.6.5.noarch"
},
"product_reference": "mgr-cfg-actions-4.0.9-1.6.5.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-client-4.0.9-1.6.5.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:mgr-cfg-client-4.0.9-1.6.5.noarch"
},
"product_reference": "mgr-cfg-client-4.0.9-1.6.5.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-management-4.0.9-1.6.5.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:mgr-cfg-management-4.0.9-1.6.5.noarch"
},
"product_reference": "mgr-cfg-management-4.0.9-1.6.5.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-daemon-4.0.7-1.8.1.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:mgr-daemon-4.0.7-1.8.1.noarch"
},
"product_reference": "mgr-daemon-4.0.7-1.8.1.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-osad-4.0.9-1.6.2.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:mgr-osad-4.0.9-1.6.2.noarch"
},
"product_reference": "mgr-osad-4.0.9-1.6.2.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-virtualization-host-4.0.8-1.8.4.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:mgr-virtualization-host-4.0.8-1.8.4.noarch"
},
"product_reference": "mgr-virtualization-host-4.0.8-1.8.4.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-mgr-cfg-4.0.9-1.6.5.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:python3-mgr-cfg-4.0.9-1.6.5.noarch"
},
"product_reference": "python3-mgr-cfg-4.0.9-1.6.5.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-mgr-cfg-actions-4.0.9-1.6.5.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:python3-mgr-cfg-actions-4.0.9-1.6.5.noarch"
},
"product_reference": "python3-mgr-cfg-actions-4.0.9-1.6.5.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-mgr-cfg-client-4.0.9-1.6.5.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:python3-mgr-cfg-client-4.0.9-1.6.5.noarch"
},
"product_reference": "python3-mgr-cfg-client-4.0.9-1.6.5.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-mgr-cfg-management-4.0.9-1.6.5.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:python3-mgr-cfg-management-4.0.9-1.6.5.noarch"
},
"product_reference": "python3-mgr-cfg-management-4.0.9-1.6.5.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-mgr-osa-common-4.0.9-1.6.2.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:python3-mgr-osa-common-4.0.9-1.6.2.noarch"
},
"product_reference": "python3-mgr-osa-common-4.0.9-1.6.2.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-mgr-osad-4.0.9-1.6.2.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:python3-mgr-osad-4.0.9-1.6.2.noarch"
},
"product_reference": "python3-mgr-osad-4.0.9-1.6.2.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-mgr-virtualization-common-4.0.8-1.8.4.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:python3-mgr-virtualization-common-4.0.8-1.8.4.noarch"
},
"product_reference": "python3-mgr-virtualization-common-4.0.8-1.8.4.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-mgr-virtualization-host-4.0.8-1.8.4.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:python3-mgr-virtualization-host-4.0.8-1.8.4.noarch"
},
"product_reference": "python3-mgr-virtualization-host-4.0.8-1.8.4.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-rhnlib-4.0.11-3.10.1.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:python3-rhnlib-4.0.11-3.10.1.noarch"
},
"product_reference": "python3-rhnlib-4.0.11-3.10.1.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-spacewalk-backend-libs-4.0.25-3.23.1.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:python3-spacewalk-backend-libs-4.0.25-3.23.1.noarch"
},
"product_reference": "python3-spacewalk-backend-libs-4.0.25-3.23.1.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-4.0.14-3.26.1.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:spacecmd-4.0.14-3.26.1.noarch"
},
"product_reference": "spacecmd-4.0.14-3.26.1.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-remote-utils-4.0.5-3.9.2.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:spacewalk-remote-utils-4.0.5-3.9.2.noarch"
},
"product_reference": "spacewalk-remote-utils-4.0.5-3.9.2.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-10136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-10136"
}
],
"notes": [
{
"category": "general",
"text": "It was found that Spacewalk, all versions through 2.9, did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Manager Client Tools 15:golang-github-prometheus-alertmanager-0.16.2-3.3.1.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-alertmanager-0.16.2-3.3.1.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-alertmanager-0.16.2-3.3.1.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-alertmanager-0.16.2-3.3.1.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-2.11.1-3.6.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-2.11.1-3.6.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-2.11.1-3.6.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-2.11.1-3.6.2.x86_64",
"SUSE Manager Client Tools 15:mgr-cfg-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:mgr-cfg-actions-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:mgr-cfg-client-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:mgr-cfg-management-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:mgr-daemon-4.0.7-1.8.1.noarch",
"SUSE Manager Client Tools 15:mgr-osad-4.0.9-1.6.2.noarch",
"SUSE Manager Client Tools 15:mgr-virtualization-host-4.0.8-1.8.4.noarch",
"SUSE Manager Client Tools 15:python3-mgr-cfg-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:python3-mgr-cfg-actions-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:python3-mgr-cfg-client-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:python3-mgr-cfg-management-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:python3-mgr-osa-common-4.0.9-1.6.2.noarch",
"SUSE Manager Client Tools 15:python3-mgr-osad-4.0.9-1.6.2.noarch",
"SUSE Manager Client Tools 15:python3-mgr-virtualization-common-4.0.8-1.8.4.noarch",
"SUSE Manager Client Tools 15:python3-mgr-virtualization-host-4.0.8-1.8.4.noarch",
"SUSE Manager Client Tools 15:python3-rhnlib-4.0.11-3.10.1.noarch",
"SUSE Manager Client Tools 15:python3-spacewalk-backend-libs-4.0.25-3.23.1.noarch",
"SUSE Manager Client Tools 15:spacecmd-4.0.14-3.26.1.noarch",
"SUSE Manager Client Tools 15:spacewalk-remote-utils-4.0.5-3.9.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-10136",
"url": "https://www.suse.com/security/cve/CVE-2019-10136"
},
{
"category": "external",
"summary": "SUSE Bug 1136480 for CVE-2019-10136",
"url": "https://bugzilla.suse.com/1136480"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Manager Client Tools 15:golang-github-prometheus-alertmanager-0.16.2-3.3.1.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-alertmanager-0.16.2-3.3.1.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-alertmanager-0.16.2-3.3.1.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-alertmanager-0.16.2-3.3.1.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-2.11.1-3.6.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-2.11.1-3.6.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-2.11.1-3.6.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-2.11.1-3.6.2.x86_64",
"SUSE Manager Client Tools 15:mgr-cfg-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:mgr-cfg-actions-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:mgr-cfg-client-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:mgr-cfg-management-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:mgr-daemon-4.0.7-1.8.1.noarch",
"SUSE Manager Client Tools 15:mgr-osad-4.0.9-1.6.2.noarch",
"SUSE Manager Client Tools 15:mgr-virtualization-host-4.0.8-1.8.4.noarch",
"SUSE Manager Client Tools 15:python3-mgr-cfg-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:python3-mgr-cfg-actions-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:python3-mgr-cfg-client-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:python3-mgr-cfg-management-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:python3-mgr-osa-common-4.0.9-1.6.2.noarch",
"SUSE Manager Client Tools 15:python3-mgr-osad-4.0.9-1.6.2.noarch",
"SUSE Manager Client Tools 15:python3-mgr-virtualization-common-4.0.8-1.8.4.noarch",
"SUSE Manager Client Tools 15:python3-mgr-virtualization-host-4.0.8-1.8.4.noarch",
"SUSE Manager Client Tools 15:python3-rhnlib-4.0.11-3.10.1.noarch",
"SUSE Manager Client Tools 15:python3-spacewalk-backend-libs-4.0.25-3.23.1.noarch",
"SUSE Manager Client Tools 15:spacecmd-4.0.14-3.26.1.noarch",
"SUSE Manager Client Tools 15:spacewalk-remote-utils-4.0.5-3.9.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE Manager Client Tools 15:golang-github-prometheus-alertmanager-0.16.2-3.3.1.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-alertmanager-0.16.2-3.3.1.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-alertmanager-0.16.2-3.3.1.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-alertmanager-0.16.2-3.3.1.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-2.11.1-3.6.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-2.11.1-3.6.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-2.11.1-3.6.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-2.11.1-3.6.2.x86_64",
"SUSE Manager Client Tools 15:mgr-cfg-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:mgr-cfg-actions-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:mgr-cfg-client-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:mgr-cfg-management-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:mgr-daemon-4.0.7-1.8.1.noarch",
"SUSE Manager Client Tools 15:mgr-osad-4.0.9-1.6.2.noarch",
"SUSE Manager Client Tools 15:mgr-virtualization-host-4.0.8-1.8.4.noarch",
"SUSE Manager Client Tools 15:python3-mgr-cfg-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:python3-mgr-cfg-actions-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:python3-mgr-cfg-client-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:python3-mgr-cfg-management-4.0.9-1.6.5.noarch",
"SUSE Manager Client Tools 15:python3-mgr-osa-common-4.0.9-1.6.2.noarch",
"SUSE Manager Client Tools 15:python3-mgr-osad-4.0.9-1.6.2.noarch",
"SUSE Manager Client Tools 15:python3-mgr-virtualization-common-4.0.8-1.8.4.noarch",
"SUSE Manager Client Tools 15:python3-mgr-virtualization-host-4.0.8-1.8.4.noarch",
"SUSE Manager Client Tools 15:python3-rhnlib-4.0.11-3.10.1.noarch",
"SUSE Manager Client Tools 15:python3-spacewalk-backend-libs-4.0.25-3.23.1.noarch",
"SUSE Manager Client Tools 15:spacecmd-4.0.14-3.26.1.noarch",
"SUSE Manager Client Tools 15:spacewalk-remote-utils-4.0.5-3.9.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-06T07:15:46Z",
"details": "moderate"
}
],
"title": "CVE-2019-10136"
}
]
}
suse-su-2019:1789-1
Vulnerability from csaf_suse
Published
2019-07-09 13:21
Modified
2019-07-09 13:21
Summary
Security update for SUSE Manager Server 4.0
Notes
Title of the patch
Security update for SUSE Manager Server 4.0
Description of the patch
This update fixes the following issues:
spacewalk-backend:
- Do not duplicate 'http://' protocol when using proxies with 'deb'
repositories (bsc#1138313)
- Fix reposync when dealing with RedHat CDN (bsc#1138358)
- Fix for CVE-2019-10136. An attacker with a valid, but expired,
authenticated set of headers could move some digits around,
artificially extending the session validity without modifying
the checksum. (bsc#1136480)
spacewalk-web:
- Change WebUI version 4.0.1
susemanager-doc-indexes:
- Updated wording for prometheus section
- Jeos VM update
- Port 8050 for graphical console display
- Content life-cycle docs are not enough for customer to understand (bsc#1137955)
- Salt boot formula fails for SLES11 SP3 terminal (bsc#1136857)
- Certificate verify failed when using vmware esxi virtual host gatherer (bsc#1136561)
susemanager-docs_en:
- Updated wording for prometheus section
- Jeos VM update
- Port 8050 for graphical console display
- Content life-cycle docs are not enough for customer to understand (bsc#1137955)
- Salt boot formula fails for SLES11 SP3 terminal (bsc#1136857)
- Certificate verify failed when using vmware esxi virtual host gatherer (bsc#1136561)
susemanager-sync-data:
- Add channel family definitions for SLES12 SP3 LTSS (bsc#1139693)
- Add OPENSUSE to allowed channel_families to make
openSUSE Leap product visible in the product list (bsc#1138364)
Patchnames
SUSE-2019-1789,SUSE-SLE-Module-SUSE-Manager-Proxy-4.0-2019-1789,SUSE-SLE-Module-SUSE-Manager-Server-4.0-2019-1789
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for SUSE Manager Server 4.0",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThis update fixes the following issues:\n\nspacewalk-backend:\n\n- Do not duplicate \u0027http://\u0027 protocol when using proxies with \u0027deb\u0027\n repositories (bsc#1138313)\n- Fix reposync when dealing with RedHat CDN (bsc#1138358)\n- Fix for CVE-2019-10136. An attacker with a valid, but expired,\n authenticated set of headers could move some digits around,\n artificially extending the session validity without modifying\n the checksum. (bsc#1136480)\n\nspacewalk-web:\n\n- Change WebUI version 4.0.1\n\nsusemanager-doc-indexes:\n\n- Updated wording for prometheus section\n- Jeos VM update\n- Port 8050 for graphical console display\n- Content life-cycle docs are not enough for customer to understand (bsc#1137955)\n- Salt boot formula fails for SLES11 SP3 terminal (bsc#1136857)\n- Certificate verify failed when using vmware esxi virtual host gatherer (bsc#1136561)\n\nsusemanager-docs_en:\n\n- Updated wording for prometheus section\n- Jeos VM update\n- Port 8050 for graphical console display\n- Content life-cycle docs are not enough for customer to understand (bsc#1137955)\n- Salt boot formula fails for SLES11 SP3 terminal (bsc#1136857)\n- Certificate verify failed when using vmware esxi virtual host gatherer (bsc#1136561)\n\nsusemanager-sync-data:\n\n- Add channel family definitions for SLES12 SP3 LTSS (bsc#1139693)\n- Add OPENSUSE to allowed channel_families to make\n openSUSE Leap product visible in the product list (bsc#1138364)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2019-1789,SUSE-SLE-Module-SUSE-Manager-Proxy-4.0-2019-1789,SUSE-SLE-Module-SUSE-Manager-Server-4.0-2019-1789",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_1789-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2019:1789-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20191789-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2019:1789-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2019-July/005679.html"
},
{
"category": "self",
"summary": "SUSE Bug 1136476",
"url": "https://bugzilla.suse.com/1136476"
},
{
"category": "self",
"summary": "SUSE Bug 1136480",
"url": "https://bugzilla.suse.com/1136480"
},
{
"category": "self",
"summary": "SUSE Bug 1136561",
"url": "https://bugzilla.suse.com/1136561"
},
{
"category": "self",
"summary": "SUSE Bug 1136857",
"url": "https://bugzilla.suse.com/1136857"
},
{
"category": "self",
"summary": "SUSE Bug 1137955",
"url": "https://bugzilla.suse.com/1137955"
},
{
"category": "self",
"summary": "SUSE Bug 1138313",
"url": "https://bugzilla.suse.com/1138313"
},
{
"category": "self",
"summary": "SUSE Bug 1138358",
"url": "https://bugzilla.suse.com/1138358"
},
{
"category": "self",
"summary": "SUSE Bug 1138364",
"url": "https://bugzilla.suse.com/1138364"
},
{
"category": "self",
"summary": "SUSE Bug 1139693",
"url": "https://bugzilla.suse.com/1139693"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-10136 page",
"url": "https://www.suse.com/security/cve/CVE-2019-10136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-10137 page",
"url": "https://www.suse.com/security/cve/CVE-2019-10137/"
}
],
"title": "Security update for SUSE Manager Server 4.0",
"tracking": {
"current_release_date": "2019-07-09T13:21:45Z",
"generator": {
"date": "2019-07-09T13:21:45Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2019:1789-1",
"initial_release_date": "2019-07-09T13:21:45Z",
"revision_history": [
{
"date": "2019-07-09T13:21:45Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "python3-spacewalk-backend-libs-4.0.22-3.3.1.noarch",
"product": {
"name": "python3-spacewalk-backend-libs-4.0.22-3.3.1.noarch",
"product_id": "python3-spacewalk-backend-libs-4.0.22-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-4.0.22-3.3.1.noarch",
"product": {
"name": "spacewalk-backend-4.0.22-3.3.1.noarch",
"product_id": "spacewalk-backend-4.0.22-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-app-4.0.22-3.3.1.noarch",
"product": {
"name": "spacewalk-backend-app-4.0.22-3.3.1.noarch",
"product_id": "spacewalk-backend-app-4.0.22-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-applet-4.0.22-3.3.1.noarch",
"product": {
"name": "spacewalk-backend-applet-4.0.22-3.3.1.noarch",
"product_id": "spacewalk-backend-applet-4.0.22-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-cdn-4.0.22-3.3.1.noarch",
"product": {
"name": "spacewalk-backend-cdn-4.0.22-3.3.1.noarch",
"product_id": "spacewalk-backend-cdn-4.0.22-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-4.0.22-3.3.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-4.0.22-3.3.1.noarch",
"product_id": "spacewalk-backend-config-files-4.0.22-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-common-4.0.22-3.3.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-common-4.0.22-3.3.1.noarch",
"product_id": "spacewalk-backend-config-files-common-4.0.22-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-tool-4.0.22-3.3.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-tool-4.0.22-3.3.1.noarch",
"product_id": "spacewalk-backend-config-files-tool-4.0.22-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-4.0.22-3.3.1.noarch",
"product": {
"name": "spacewalk-backend-iss-4.0.22-3.3.1.noarch",
"product_id": "spacewalk-backend-iss-4.0.22-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-export-4.0.22-3.3.1.noarch",
"product": {
"name": "spacewalk-backend-iss-export-4.0.22-3.3.1.noarch",
"product_id": "spacewalk-backend-iss-export-4.0.22-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-4.0.22-3.3.1.noarch",
"product": {
"name": "spacewalk-backend-libs-4.0.22-3.3.1.noarch",
"product_id": "spacewalk-backend-libs-4.0.22-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-package-push-server-4.0.22-3.3.1.noarch",
"product": {
"name": "spacewalk-backend-package-push-server-4.0.22-3.3.1.noarch",
"product_id": "spacewalk-backend-package-push-server-4.0.22-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-server-4.0.22-3.3.1.noarch",
"product": {
"name": "spacewalk-backend-server-4.0.22-3.3.1.noarch",
"product_id": "spacewalk-backend-server-4.0.22-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-4.0.22-3.3.1.noarch",
"product": {
"name": "spacewalk-backend-sql-4.0.22-3.3.1.noarch",
"product_id": "spacewalk-backend-sql-4.0.22-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-oracle-4.0.22-3.3.1.noarch",
"product": {
"name": "spacewalk-backend-sql-oracle-4.0.22-3.3.1.noarch",
"product_id": "spacewalk-backend-sql-oracle-4.0.22-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-postgresql-4.0.22-3.3.1.noarch",
"product": {
"name": "spacewalk-backend-sql-postgresql-4.0.22-3.3.1.noarch",
"product_id": "spacewalk-backend-sql-postgresql-4.0.22-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-tools-4.0.22-3.3.1.noarch",
"product": {
"name": "spacewalk-backend-tools-4.0.22-3.3.1.noarch",
"product_id": "spacewalk-backend-tools-4.0.22-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xml-export-libs-4.0.22-3.3.1.noarch",
"product": {
"name": "spacewalk-backend-xml-export-libs-4.0.22-3.3.1.noarch",
"product_id": "spacewalk-backend-xml-export-libs-4.0.22-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xmlrpc-4.0.22-3.3.1.noarch",
"product": {
"name": "spacewalk-backend-xmlrpc-4.0.22-3.3.1.noarch",
"product_id": "spacewalk-backend-xmlrpc-4.0.22-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-4.0.14-3.3.1.noarch",
"product": {
"name": "spacewalk-base-4.0.14-3.3.1.noarch",
"product_id": "spacewalk-base-4.0.14-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-minimal-4.0.14-3.3.1.noarch",
"product": {
"name": "spacewalk-base-minimal-4.0.14-3.3.1.noarch",
"product_id": "spacewalk-base-minimal-4.0.14-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-minimal-config-4.0.14-3.3.1.noarch",
"product": {
"name": "spacewalk-base-minimal-config-4.0.14-3.3.1.noarch",
"product_id": "spacewalk-base-minimal-config-4.0.14-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-dobby-4.0.14-3.3.1.noarch",
"product": {
"name": "spacewalk-dobby-4.0.14-3.3.1.noarch",
"product_id": "spacewalk-dobby-4.0.14-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-html-4.0.14-3.3.1.noarch",
"product": {
"name": "spacewalk-html-4.0.14-3.3.1.noarch",
"product_id": "spacewalk-html-4.0.14-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-broker-4.0.12-3.3.1.noarch",
"product": {
"name": "spacewalk-proxy-broker-4.0.12-3.3.1.noarch",
"product_id": "spacewalk-proxy-broker-4.0.12-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-common-4.0.12-3.3.1.noarch",
"product": {
"name": "spacewalk-proxy-common-4.0.12-3.3.1.noarch",
"product_id": "spacewalk-proxy-common-4.0.12-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-management-4.0.12-3.3.1.noarch",
"product": {
"name": "spacewalk-proxy-management-4.0.12-3.3.1.noarch",
"product_id": "spacewalk-proxy-management-4.0.12-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-package-manager-4.0.12-3.3.1.noarch",
"product": {
"name": "spacewalk-proxy-package-manager-4.0.12-3.3.1.noarch",
"product_id": "spacewalk-proxy-package-manager-4.0.12-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-redirect-4.0.12-3.3.1.noarch",
"product": {
"name": "spacewalk-proxy-redirect-4.0.12-3.3.1.noarch",
"product_id": "spacewalk-proxy-redirect-4.0.12-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-salt-4.0.12-3.3.1.noarch",
"product": {
"name": "spacewalk-proxy-salt-4.0.12-3.3.1.noarch",
"product_id": "spacewalk-proxy-salt-4.0.12-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-doc-indexes-4.0-10.3.1.noarch",
"product": {
"name": "susemanager-doc-indexes-4.0-10.3.1.noarch",
"product_id": "susemanager-doc-indexes-4.0-10.3.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-docs_en-4.0-10.3.1.noarch",
"product": {
"name": "susemanager-docs_en-4.0-10.3.1.noarch",
"product_id": "susemanager-docs_en-4.0-10.3.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-docs_en-pdf-4.0-10.3.1.noarch",
"product": {
"name": "susemanager-docs_en-pdf-4.0-10.3.1.noarch",
"product_id": "susemanager-docs_en-pdf-4.0-10.3.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-sync-data-4.0.12-3.3.1.noarch",
"product": {
"name": "susemanager-sync-data-4.0.12-3.3.1.noarch",
"product_id": "susemanager-sync-data-4.0.12-3.3.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-web-libs-4.0.14-3.3.1.noarch",
"product": {
"name": "susemanager-web-libs-4.0.14-3.3.1.noarch",
"product_id": "susemanager-web-libs-4.0.14-3.3.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Manager Proxy Module 4.0",
"product": {
"name": "SUSE Manager Proxy Module 4.0",
"product_id": "SUSE Manager Proxy Module 4.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-suse-manager-proxy:4.0"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Server Module 4.0",
"product": {
"name": "SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-suse-manager-server:4.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-spacewalk-backend-libs-4.0.22-3.3.1.noarch as component of SUSE Manager Proxy Module 4.0",
"product_id": "SUSE Manager Proxy Module 4.0:python3-spacewalk-backend-libs-4.0.22-3.3.1.noarch"
},
"product_reference": "python3-spacewalk-backend-libs-4.0.22-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-4.0.22-3.3.1.noarch as component of SUSE Manager Proxy Module 4.0",
"product_id": "SUSE Manager Proxy Module 4.0:spacewalk-backend-4.0.22-3.3.1.noarch"
},
"product_reference": "spacewalk-backend-4.0.22-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-4.0.14-3.3.1.noarch as component of SUSE Manager Proxy Module 4.0",
"product_id": "SUSE Manager Proxy Module 4.0:spacewalk-base-minimal-4.0.14-3.3.1.noarch"
},
"product_reference": "spacewalk-base-minimal-4.0.14-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-config-4.0.14-3.3.1.noarch as component of SUSE Manager Proxy Module 4.0",
"product_id": "SUSE Manager Proxy Module 4.0:spacewalk-base-minimal-config-4.0.14-3.3.1.noarch"
},
"product_reference": "spacewalk-base-minimal-config-4.0.14-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-proxy-broker-4.0.12-3.3.1.noarch as component of SUSE Manager Proxy Module 4.0",
"product_id": "SUSE Manager Proxy Module 4.0:spacewalk-proxy-broker-4.0.12-3.3.1.noarch"
},
"product_reference": "spacewalk-proxy-broker-4.0.12-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-proxy-common-4.0.12-3.3.1.noarch as component of SUSE Manager Proxy Module 4.0",
"product_id": "SUSE Manager Proxy Module 4.0:spacewalk-proxy-common-4.0.12-3.3.1.noarch"
},
"product_reference": "spacewalk-proxy-common-4.0.12-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-proxy-management-4.0.12-3.3.1.noarch as component of SUSE Manager Proxy Module 4.0",
"product_id": "SUSE Manager Proxy Module 4.0:spacewalk-proxy-management-4.0.12-3.3.1.noarch"
},
"product_reference": "spacewalk-proxy-management-4.0.12-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-proxy-package-manager-4.0.12-3.3.1.noarch as component of SUSE Manager Proxy Module 4.0",
"product_id": "SUSE Manager Proxy Module 4.0:spacewalk-proxy-package-manager-4.0.12-3.3.1.noarch"
},
"product_reference": "spacewalk-proxy-package-manager-4.0.12-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-proxy-redirect-4.0.12-3.3.1.noarch as component of SUSE Manager Proxy Module 4.0",
"product_id": "SUSE Manager Proxy Module 4.0:spacewalk-proxy-redirect-4.0.12-3.3.1.noarch"
},
"product_reference": "spacewalk-proxy-redirect-4.0.12-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-proxy-salt-4.0.12-3.3.1.noarch as component of SUSE Manager Proxy Module 4.0",
"product_id": "SUSE Manager Proxy Module 4.0:spacewalk-proxy-salt-4.0.12-3.3.1.noarch"
},
"product_reference": "spacewalk-proxy-salt-4.0.12-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-spacewalk-backend-libs-4.0.22-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:python3-spacewalk-backend-libs-4.0.22-3.3.1.noarch"
},
"product_reference": "python3-spacewalk-backend-libs-4.0.22-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-4.0.22-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:spacewalk-backend-4.0.22-3.3.1.noarch"
},
"product_reference": "spacewalk-backend-4.0.22-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-app-4.0.22-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:spacewalk-backend-app-4.0.22-3.3.1.noarch"
},
"product_reference": "spacewalk-backend-app-4.0.22-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-applet-4.0.22-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:spacewalk-backend-applet-4.0.22-3.3.1.noarch"
},
"product_reference": "spacewalk-backend-applet-4.0.22-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-4.0.22-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-4.0.22-3.3.1.noarch"
},
"product_reference": "spacewalk-backend-config-files-4.0.22-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-common-4.0.22-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-common-4.0.22-3.3.1.noarch"
},
"product_reference": "spacewalk-backend-config-files-common-4.0.22-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-tool-4.0.22-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:spacewalk-backend-config-files-tool-4.0.22-3.3.1.noarch"
},
"product_reference": "spacewalk-backend-config-files-tool-4.0.22-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-4.0.22-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:spacewalk-backend-iss-4.0.22-3.3.1.noarch"
},
"product_reference": "spacewalk-backend-iss-4.0.22-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-export-4.0.22-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:spacewalk-backend-iss-export-4.0.22-3.3.1.noarch"
},
"product_reference": "spacewalk-backend-iss-export-4.0.22-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-package-push-server-4.0.22-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:spacewalk-backend-package-push-server-4.0.22-3.3.1.noarch"
},
"product_reference": "spacewalk-backend-package-push-server-4.0.22-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-server-4.0.22-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:spacewalk-backend-server-4.0.22-3.3.1.noarch"
},
"product_reference": "spacewalk-backend-server-4.0.22-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-4.0.22-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:spacewalk-backend-sql-4.0.22-3.3.1.noarch"
},
"product_reference": "spacewalk-backend-sql-4.0.22-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-postgresql-4.0.22-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:spacewalk-backend-sql-postgresql-4.0.22-3.3.1.noarch"
},
"product_reference": "spacewalk-backend-sql-postgresql-4.0.22-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-tools-4.0.22-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:spacewalk-backend-tools-4.0.22-3.3.1.noarch"
},
"product_reference": "spacewalk-backend-tools-4.0.22-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xml-export-libs-4.0.22-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:spacewalk-backend-xml-export-libs-4.0.22-3.3.1.noarch"
},
"product_reference": "spacewalk-backend-xml-export-libs-4.0.22-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xmlrpc-4.0.22-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:spacewalk-backend-xmlrpc-4.0.22-3.3.1.noarch"
},
"product_reference": "spacewalk-backend-xmlrpc-4.0.22-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-4.0.14-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:spacewalk-base-4.0.14-3.3.1.noarch"
},
"product_reference": "spacewalk-base-4.0.14-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-4.0.14-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:spacewalk-base-minimal-4.0.14-3.3.1.noarch"
},
"product_reference": "spacewalk-base-minimal-4.0.14-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-config-4.0.14-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:spacewalk-base-minimal-config-4.0.14-3.3.1.noarch"
},
"product_reference": "spacewalk-base-minimal-config-4.0.14-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-html-4.0.14-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:spacewalk-html-4.0.14-3.3.1.noarch"
},
"product_reference": "spacewalk-html-4.0.14-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-doc-indexes-4.0-10.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:susemanager-doc-indexes-4.0-10.3.1.noarch"
},
"product_reference": "susemanager-doc-indexes-4.0-10.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-docs_en-4.0-10.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:susemanager-docs_en-4.0-10.3.1.noarch"
},
"product_reference": "susemanager-docs_en-4.0-10.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-docs_en-pdf-4.0-10.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:susemanager-docs_en-pdf-4.0-10.3.1.noarch"
},
"product_reference": "susemanager-docs_en-pdf-4.0-10.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-sync-data-4.0.12-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:susemanager-sync-data-4.0.12-3.3.1.noarch"
},
"product_reference": "susemanager-sync-data-4.0.12-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-web-libs-4.0.14-3.3.1.noarch as component of SUSE Manager Server Module 4.0",
"product_id": "SUSE Manager Server Module 4.0:susemanager-web-libs-4.0.14-3.3.1.noarch"
},
"product_reference": "susemanager-web-libs-4.0.14-3.3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server Module 4.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-10136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-10136"
}
],
"notes": [
{
"category": "general",
"text": "It was found that Spacewalk, all versions through 2.9, did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Manager Proxy Module 4.0:python3-spacewalk-backend-libs-4.0.22-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-backend-4.0.22-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-base-minimal-4.0.14-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-base-minimal-config-4.0.14-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-broker-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-common-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-management-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-package-manager-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-redirect-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-salt-4.0.12-3.3.1.noarch",
"SUSE Manager Server Module 4.0:python3-spacewalk-backend-libs-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-app-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-applet-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-config-files-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-config-files-common-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-config-files-tool-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-iss-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-iss-export-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-package-push-server-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-server-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-sql-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-sql-postgresql-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-tools-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-xml-export-libs-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-xmlrpc-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-base-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-base-minimal-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-base-minimal-config-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-html-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-doc-indexes-4.0-10.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-docs_en-4.0-10.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-docs_en-pdf-4.0-10.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-sync-data-4.0.12-3.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-web-libs-4.0.14-3.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-10136",
"url": "https://www.suse.com/security/cve/CVE-2019-10136"
},
{
"category": "external",
"summary": "SUSE Bug 1136480 for CVE-2019-10136",
"url": "https://bugzilla.suse.com/1136480"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Manager Proxy Module 4.0:python3-spacewalk-backend-libs-4.0.22-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-backend-4.0.22-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-base-minimal-4.0.14-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-base-minimal-config-4.0.14-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-broker-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-common-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-management-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-package-manager-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-redirect-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-salt-4.0.12-3.3.1.noarch",
"SUSE Manager Server Module 4.0:python3-spacewalk-backend-libs-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-app-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-applet-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-config-files-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-config-files-common-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-config-files-tool-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-iss-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-iss-export-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-package-push-server-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-server-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-sql-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-sql-postgresql-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-tools-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-xml-export-libs-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-xmlrpc-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-base-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-base-minimal-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-base-minimal-config-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-html-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-doc-indexes-4.0-10.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-docs_en-4.0-10.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-docs_en-pdf-4.0-10.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-sync-data-4.0.12-3.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-web-libs-4.0.14-3.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE Manager Proxy Module 4.0:python3-spacewalk-backend-libs-4.0.22-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-backend-4.0.22-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-base-minimal-4.0.14-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-base-minimal-config-4.0.14-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-broker-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-common-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-management-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-package-manager-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-redirect-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-salt-4.0.12-3.3.1.noarch",
"SUSE Manager Server Module 4.0:python3-spacewalk-backend-libs-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-app-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-applet-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-config-files-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-config-files-common-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-config-files-tool-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-iss-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-iss-export-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-package-push-server-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-server-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-sql-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-sql-postgresql-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-tools-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-xml-export-libs-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-xmlrpc-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-base-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-base-minimal-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-base-minimal-config-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-html-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-doc-indexes-4.0-10.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-docs_en-4.0-10.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-docs_en-pdf-4.0-10.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-sync-data-4.0.12-3.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-web-libs-4.0.14-3.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-07-09T13:21:45Z",
"details": "moderate"
}
],
"title": "CVE-2019-10136"
},
{
"cve": "CVE-2019-10137",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-10137"
}
],
"notes": [
{
"category": "general",
"text": "A path traversal flaw was found in spacewalk-proxy, all versions through 2.9, in the way the proxy processes cached client tokens. A remote, unauthenticated attacker could use this flaw to test the existence of arbitrary files, if they have access to the proxy\u0027s filesystem, or can execute arbitrary code in the context of the httpd process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Manager Proxy Module 4.0:python3-spacewalk-backend-libs-4.0.22-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-backend-4.0.22-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-base-minimal-4.0.14-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-base-minimal-config-4.0.14-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-broker-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-common-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-management-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-package-manager-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-redirect-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-salt-4.0.12-3.3.1.noarch",
"SUSE Manager Server Module 4.0:python3-spacewalk-backend-libs-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-app-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-applet-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-config-files-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-config-files-common-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-config-files-tool-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-iss-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-iss-export-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-package-push-server-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-server-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-sql-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-sql-postgresql-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-tools-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-xml-export-libs-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-xmlrpc-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-base-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-base-minimal-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-base-minimal-config-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-html-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-doc-indexes-4.0-10.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-docs_en-4.0-10.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-docs_en-pdf-4.0-10.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-sync-data-4.0.12-3.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-web-libs-4.0.14-3.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-10137",
"url": "https://www.suse.com/security/cve/CVE-2019-10137"
},
{
"category": "external",
"summary": "SUSE Bug 1136476 for CVE-2019-10137",
"url": "https://bugzilla.suse.com/1136476"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Manager Proxy Module 4.0:python3-spacewalk-backend-libs-4.0.22-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-backend-4.0.22-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-base-minimal-4.0.14-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-base-minimal-config-4.0.14-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-broker-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-common-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-management-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-package-manager-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-redirect-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-salt-4.0.12-3.3.1.noarch",
"SUSE Manager Server Module 4.0:python3-spacewalk-backend-libs-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-app-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-applet-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-config-files-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-config-files-common-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-config-files-tool-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-iss-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-iss-export-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-package-push-server-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-server-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-sql-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-sql-postgresql-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-tools-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-xml-export-libs-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-xmlrpc-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-base-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-base-minimal-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-base-minimal-config-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-html-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-doc-indexes-4.0-10.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-docs_en-4.0-10.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-docs_en-pdf-4.0-10.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-sync-data-4.0.12-3.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-web-libs-4.0.14-3.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Manager Proxy Module 4.0:python3-spacewalk-backend-libs-4.0.22-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-backend-4.0.22-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-base-minimal-4.0.14-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-base-minimal-config-4.0.14-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-broker-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-common-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-management-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-package-manager-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-redirect-4.0.12-3.3.1.noarch",
"SUSE Manager Proxy Module 4.0:spacewalk-proxy-salt-4.0.12-3.3.1.noarch",
"SUSE Manager Server Module 4.0:python3-spacewalk-backend-libs-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-app-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-applet-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-config-files-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-config-files-common-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-config-files-tool-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-iss-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-iss-export-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-package-push-server-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-server-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-sql-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-sql-postgresql-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-tools-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-xml-export-libs-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-backend-xmlrpc-4.0.22-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-base-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-base-minimal-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-base-minimal-config-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:spacewalk-html-4.0.14-3.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-doc-indexes-4.0-10.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-docs_en-4.0-10.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-docs_en-pdf-4.0-10.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-sync-data-4.0.12-3.3.1.noarch",
"SUSE Manager Server Module 4.0:susemanager-web-libs-4.0.14-3.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-07-09T13:21:45Z",
"details": "moderate"
}
],
"title": "CVE-2019-10137"
}
]
}
suse-su-2019:1790-1
Vulnerability from csaf_suse
Published
2019-07-09 13:22
Modified
2019-07-09 13:22
Summary
Security update for SUSE Manager Server 3.2
Notes
Title of the patch
Security update for SUSE Manager Server 3.2
Description of the patch
This update fixes the following issues:
release-notes-susemanager:
- Fix invalid characters in ncurses mode (bsc#1102770)
spacewalk-backend:
- Fix for CVE-2019-10136. An attacker with a valid, but expired,
authenticated set of headers could move some digits around,
artificially extending the session validity without modifying
the checksum. (bsc#1136480)
spacewalk-web:
- Change WebUI string version to 3.2.9
Patchnames
SUSE-2019-1790,SUSE-SUSE-Manager-Proxy-3.2-2019-1790,SUSE-SUSE-Manager-Server-3.2-2019-1790
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for SUSE Manager Server 3.2",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThis update fixes the following issues:\n\nrelease-notes-susemanager:\n\n- Fix invalid characters in ncurses mode (bsc#1102770)\n\nspacewalk-backend:\n\n- Fix for CVE-2019-10136. An attacker with a valid, but expired,\n authenticated set of headers could move some digits around,\n artificially extending the session validity without modifying\n the checksum. (bsc#1136480)\n\nspacewalk-web:\n\n- Change WebUI string version to 3.2.9\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2019-1790,SUSE-SUSE-Manager-Proxy-3.2-2019-1790,SUSE-SUSE-Manager-Server-3.2-2019-1790",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_1790-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2019:1790-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20191790-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2019:1790-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2019-July/005676.html"
},
{
"category": "self",
"summary": "SUSE Bug 1102770",
"url": "https://bugzilla.suse.com/1102770"
},
{
"category": "self",
"summary": "SUSE Bug 1136476",
"url": "https://bugzilla.suse.com/1136476"
},
{
"category": "self",
"summary": "SUSE Bug 1136480",
"url": "https://bugzilla.suse.com/1136480"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-10136 page",
"url": "https://www.suse.com/security/cve/CVE-2019-10136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-10137 page",
"url": "https://www.suse.com/security/cve/CVE-2019-10137/"
}
],
"title": "Security update for SUSE Manager Server 3.2",
"tracking": {
"current_release_date": "2019-07-09T13:22:02Z",
"generator": {
"date": "2019-07-09T13:22:02Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2019:1790-1",
"initial_release_date": "2019-07-09T13:22:02Z",
"revision_history": [
{
"date": "2019-07-09T13:22:02Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "release-notes-susemanager-3.2.9-6.35.1.aarch64",
"product": {
"name": "release-notes-susemanager-3.2.9-6.35.1.aarch64",
"product_id": "release-notes-susemanager-3.2.9-6.35.1.aarch64"
}
},
{
"category": "product_version",
"name": "release-notes-susemanager-proxy-3.2.9-0.16.27.1.aarch64",
"product": {
"name": "release-notes-susemanager-proxy-3.2.9-0.16.27.1.aarch64",
"product_id": "release-notes-susemanager-proxy-3.2.9-0.16.27.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "spacewalk-backend-2.8.57.17-3.33.1.noarch",
"product": {
"name": "spacewalk-backend-2.8.57.17-3.33.1.noarch",
"product_id": "spacewalk-backend-2.8.57.17-3.33.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-app-2.8.57.17-3.33.1.noarch",
"product": {
"name": "spacewalk-backend-app-2.8.57.17-3.33.1.noarch",
"product_id": "spacewalk-backend-app-2.8.57.17-3.33.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-applet-2.8.57.17-3.33.1.noarch",
"product": {
"name": "spacewalk-backend-applet-2.8.57.17-3.33.1.noarch",
"product_id": "spacewalk-backend-applet-2.8.57.17-3.33.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-cdn-2.8.57.17-3.33.1.noarch",
"product": {
"name": "spacewalk-backend-cdn-2.8.57.17-3.33.1.noarch",
"product_id": "spacewalk-backend-cdn-2.8.57.17-3.33.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-2.8.57.17-3.33.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-2.8.57.17-3.33.1.noarch",
"product_id": "spacewalk-backend-config-files-2.8.57.17-3.33.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-common-2.8.57.17-3.33.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-common-2.8.57.17-3.33.1.noarch",
"product_id": "spacewalk-backend-config-files-common-2.8.57.17-3.33.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-tool-2.8.57.17-3.33.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-tool-2.8.57.17-3.33.1.noarch",
"product_id": "spacewalk-backend-config-files-tool-2.8.57.17-3.33.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-2.8.57.17-3.33.1.noarch",
"product": {
"name": "spacewalk-backend-iss-2.8.57.17-3.33.1.noarch",
"product_id": "spacewalk-backend-iss-2.8.57.17-3.33.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-export-2.8.57.17-3.33.1.noarch",
"product": {
"name": "spacewalk-backend-iss-export-2.8.57.17-3.33.1.noarch",
"product_id": "spacewalk-backend-iss-export-2.8.57.17-3.33.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-2.8.57.17-3.33.1.noarch",
"product": {
"name": "spacewalk-backend-libs-2.8.57.17-3.33.1.noarch",
"product_id": "spacewalk-backend-libs-2.8.57.17-3.33.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-package-push-server-2.8.57.17-3.33.1.noarch",
"product": {
"name": "spacewalk-backend-package-push-server-2.8.57.17-3.33.1.noarch",
"product_id": "spacewalk-backend-package-push-server-2.8.57.17-3.33.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-server-2.8.57.17-3.33.1.noarch",
"product": {
"name": "spacewalk-backend-server-2.8.57.17-3.33.1.noarch",
"product_id": "spacewalk-backend-server-2.8.57.17-3.33.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-2.8.57.17-3.33.1.noarch",
"product": {
"name": "spacewalk-backend-sql-2.8.57.17-3.33.1.noarch",
"product_id": "spacewalk-backend-sql-2.8.57.17-3.33.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-oracle-2.8.57.17-3.33.1.noarch",
"product": {
"name": "spacewalk-backend-sql-oracle-2.8.57.17-3.33.1.noarch",
"product_id": "spacewalk-backend-sql-oracle-2.8.57.17-3.33.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-postgresql-2.8.57.17-3.33.1.noarch",
"product": {
"name": "spacewalk-backend-sql-postgresql-2.8.57.17-3.33.1.noarch",
"product_id": "spacewalk-backend-sql-postgresql-2.8.57.17-3.33.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-tools-2.8.57.17-3.33.1.noarch",
"product": {
"name": "spacewalk-backend-tools-2.8.57.17-3.33.1.noarch",
"product_id": "spacewalk-backend-tools-2.8.57.17-3.33.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xml-export-libs-2.8.57.17-3.33.1.noarch",
"product": {
"name": "spacewalk-backend-xml-export-libs-2.8.57.17-3.33.1.noarch",
"product_id": "spacewalk-backend-xml-export-libs-2.8.57.17-3.33.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xmlrpc-2.8.57.17-3.33.1.noarch",
"product": {
"name": "spacewalk-backend-xmlrpc-2.8.57.17-3.33.1.noarch",
"product_id": "spacewalk-backend-xmlrpc-2.8.57.17-3.33.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-2.8.7.17-3.30.1.noarch",
"product": {
"name": "spacewalk-base-2.8.7.17-3.30.1.noarch",
"product_id": "spacewalk-base-2.8.7.17-3.30.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-minimal-2.8.7.17-3.30.1.noarch",
"product": {
"name": "spacewalk-base-minimal-2.8.7.17-3.30.1.noarch",
"product_id": "spacewalk-base-minimal-2.8.7.17-3.30.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-minimal-config-2.8.7.17-3.30.1.noarch",
"product": {
"name": "spacewalk-base-minimal-config-2.8.7.17-3.30.1.noarch",
"product_id": "spacewalk-base-minimal-config-2.8.7.17-3.30.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-dobby-2.8.7.17-3.30.1.noarch",
"product": {
"name": "spacewalk-dobby-2.8.7.17-3.30.1.noarch",
"product_id": "spacewalk-dobby-2.8.7.17-3.30.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-html-2.8.7.17-3.30.1.noarch",
"product": {
"name": "spacewalk-html-2.8.7.17-3.30.1.noarch",
"product_id": "spacewalk-html-2.8.7.17-3.30.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-broker-2.8.5.6-3.11.1.noarch",
"product": {
"name": "spacewalk-proxy-broker-2.8.5.6-3.11.1.noarch",
"product_id": "spacewalk-proxy-broker-2.8.5.6-3.11.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-common-2.8.5.6-3.11.1.noarch",
"product": {
"name": "spacewalk-proxy-common-2.8.5.6-3.11.1.noarch",
"product_id": "spacewalk-proxy-common-2.8.5.6-3.11.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-management-2.8.5.6-3.11.1.noarch",
"product": {
"name": "spacewalk-proxy-management-2.8.5.6-3.11.1.noarch",
"product_id": "spacewalk-proxy-management-2.8.5.6-3.11.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-package-manager-2.8.5.6-3.11.1.noarch",
"product": {
"name": "spacewalk-proxy-package-manager-2.8.5.6-3.11.1.noarch",
"product_id": "spacewalk-proxy-package-manager-2.8.5.6-3.11.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-redirect-2.8.5.6-3.11.1.noarch",
"product": {
"name": "spacewalk-proxy-redirect-2.8.5.6-3.11.1.noarch",
"product_id": "spacewalk-proxy-redirect-2.8.5.6-3.11.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-salt-2.8.5.6-3.11.1.noarch",
"product": {
"name": "spacewalk-proxy-salt-2.8.5.6-3.11.1.noarch",
"product_id": "spacewalk-proxy-salt-2.8.5.6-3.11.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-web-libs-2.8.7.17-3.30.1.noarch",
"product": {
"name": "susemanager-web-libs-2.8.7.17-3.30.1.noarch",
"product_id": "susemanager-web-libs-2.8.7.17-3.30.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "release-notes-susemanager-3.2.9-6.35.1.ppc64le",
"product": {
"name": "release-notes-susemanager-3.2.9-6.35.1.ppc64le",
"product_id": "release-notes-susemanager-3.2.9-6.35.1.ppc64le"
}
},
{
"category": "product_version",
"name": "release-notes-susemanager-proxy-3.2.9-0.16.27.1.ppc64le",
"product": {
"name": "release-notes-susemanager-proxy-3.2.9-0.16.27.1.ppc64le",
"product_id": "release-notes-susemanager-proxy-3.2.9-0.16.27.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "release-notes-susemanager-3.2.9-6.35.1.s390x",
"product": {
"name": "release-notes-susemanager-3.2.9-6.35.1.s390x",
"product_id": "release-notes-susemanager-3.2.9-6.35.1.s390x"
}
},
{
"category": "product_version",
"name": "release-notes-susemanager-proxy-3.2.9-0.16.27.1.s390x",
"product": {
"name": "release-notes-susemanager-proxy-3.2.9-0.16.27.1.s390x",
"product_id": "release-notes-susemanager-proxy-3.2.9-0.16.27.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "release-notes-susemanager-3.2.9-6.35.1.x86_64",
"product": {
"name": "release-notes-susemanager-3.2.9-6.35.1.x86_64",
"product_id": "release-notes-susemanager-3.2.9-6.35.1.x86_64"
}
},
{
"category": "product_version",
"name": "release-notes-susemanager-proxy-3.2.9-0.16.27.1.x86_64",
"product": {
"name": "release-notes-susemanager-proxy-3.2.9-0.16.27.1.x86_64",
"product_id": "release-notes-susemanager-proxy-3.2.9-0.16.27.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Manager Proxy 3.2",
"product": {
"name": "SUSE Manager Proxy 3.2",
"product_id": "SUSE Manager Proxy 3.2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-proxy:3.2"
}
}
},
{
"category": "product_name",
"name": "SUSE Manager Server 3.2",
"product": {
"name": "SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-server:3.2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "release-notes-susemanager-proxy-3.2.9-0.16.27.1.x86_64 as component of SUSE Manager Proxy 3.2",
"product_id": "SUSE Manager Proxy 3.2:release-notes-susemanager-proxy-3.2.9-0.16.27.1.x86_64"
},
"product_reference": "release-notes-susemanager-proxy-3.2.9-0.16.27.1.x86_64",
"relates_to_product_reference": "SUSE Manager Proxy 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-2.8.57.17-3.33.1.noarch as component of SUSE Manager Proxy 3.2",
"product_id": "SUSE Manager Proxy 3.2:spacewalk-backend-2.8.57.17-3.33.1.noarch"
},
"product_reference": "spacewalk-backend-2.8.57.17-3.33.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-2.8.57.17-3.33.1.noarch as component of SUSE Manager Proxy 3.2",
"product_id": "SUSE Manager Proxy 3.2:spacewalk-backend-libs-2.8.57.17-3.33.1.noarch"
},
"product_reference": "spacewalk-backend-libs-2.8.57.17-3.33.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-2.8.7.17-3.30.1.noarch as component of SUSE Manager Proxy 3.2",
"product_id": "SUSE Manager Proxy 3.2:spacewalk-base-minimal-2.8.7.17-3.30.1.noarch"
},
"product_reference": "spacewalk-base-minimal-2.8.7.17-3.30.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-config-2.8.7.17-3.30.1.noarch as component of SUSE Manager Proxy 3.2",
"product_id": "SUSE Manager Proxy 3.2:spacewalk-base-minimal-config-2.8.7.17-3.30.1.noarch"
},
"product_reference": "spacewalk-base-minimal-config-2.8.7.17-3.30.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-proxy-broker-2.8.5.6-3.11.1.noarch as component of SUSE Manager Proxy 3.2",
"product_id": "SUSE Manager Proxy 3.2:spacewalk-proxy-broker-2.8.5.6-3.11.1.noarch"
},
"product_reference": "spacewalk-proxy-broker-2.8.5.6-3.11.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-proxy-common-2.8.5.6-3.11.1.noarch as component of SUSE Manager Proxy 3.2",
"product_id": "SUSE Manager Proxy 3.2:spacewalk-proxy-common-2.8.5.6-3.11.1.noarch"
},
"product_reference": "spacewalk-proxy-common-2.8.5.6-3.11.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-proxy-management-2.8.5.6-3.11.1.noarch as component of SUSE Manager Proxy 3.2",
"product_id": "SUSE Manager Proxy 3.2:spacewalk-proxy-management-2.8.5.6-3.11.1.noarch"
},
"product_reference": "spacewalk-proxy-management-2.8.5.6-3.11.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-proxy-package-manager-2.8.5.6-3.11.1.noarch as component of SUSE Manager Proxy 3.2",
"product_id": "SUSE Manager Proxy 3.2:spacewalk-proxy-package-manager-2.8.5.6-3.11.1.noarch"
},
"product_reference": "spacewalk-proxy-package-manager-2.8.5.6-3.11.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-proxy-redirect-2.8.5.6-3.11.1.noarch as component of SUSE Manager Proxy 3.2",
"product_id": "SUSE Manager Proxy 3.2:spacewalk-proxy-redirect-2.8.5.6-3.11.1.noarch"
},
"product_reference": "spacewalk-proxy-redirect-2.8.5.6-3.11.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-proxy-salt-2.8.5.6-3.11.1.noarch as component of SUSE Manager Proxy 3.2",
"product_id": "SUSE Manager Proxy 3.2:spacewalk-proxy-salt-2.8.5.6-3.11.1.noarch"
},
"product_reference": "spacewalk-proxy-salt-2.8.5.6-3.11.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-web-libs-2.8.7.17-3.30.1.noarch as component of SUSE Manager Proxy 3.2",
"product_id": "SUSE Manager Proxy 3.2:susemanager-web-libs-2.8.7.17-3.30.1.noarch"
},
"product_reference": "susemanager-web-libs-2.8.7.17-3.30.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "release-notes-susemanager-3.2.9-6.35.1.ppc64le as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1.ppc64le"
},
"product_reference": "release-notes-susemanager-3.2.9-6.35.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "release-notes-susemanager-3.2.9-6.35.1.s390x as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1.s390x"
},
"product_reference": "release-notes-susemanager-3.2.9-6.35.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "release-notes-susemanager-3.2.9-6.35.1.x86_64 as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1.x86_64"
},
"product_reference": "release-notes-susemanager-3.2.9-6.35.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-2.8.57.17-3.33.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:spacewalk-backend-2.8.57.17-3.33.1.noarch"
},
"product_reference": "spacewalk-backend-2.8.57.17-3.33.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-app-2.8.57.17-3.33.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:spacewalk-backend-app-2.8.57.17-3.33.1.noarch"
},
"product_reference": "spacewalk-backend-app-2.8.57.17-3.33.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-applet-2.8.57.17-3.33.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:spacewalk-backend-applet-2.8.57.17-3.33.1.noarch"
},
"product_reference": "spacewalk-backend-applet-2.8.57.17-3.33.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-2.8.57.17-3.33.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:spacewalk-backend-config-files-2.8.57.17-3.33.1.noarch"
},
"product_reference": "spacewalk-backend-config-files-2.8.57.17-3.33.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-common-2.8.57.17-3.33.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:spacewalk-backend-config-files-common-2.8.57.17-3.33.1.noarch"
},
"product_reference": "spacewalk-backend-config-files-common-2.8.57.17-3.33.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-tool-2.8.57.17-3.33.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:spacewalk-backend-config-files-tool-2.8.57.17-3.33.1.noarch"
},
"product_reference": "spacewalk-backend-config-files-tool-2.8.57.17-3.33.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-2.8.57.17-3.33.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:spacewalk-backend-iss-2.8.57.17-3.33.1.noarch"
},
"product_reference": "spacewalk-backend-iss-2.8.57.17-3.33.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-export-2.8.57.17-3.33.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:spacewalk-backend-iss-export-2.8.57.17-3.33.1.noarch"
},
"product_reference": "spacewalk-backend-iss-export-2.8.57.17-3.33.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-2.8.57.17-3.33.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:spacewalk-backend-libs-2.8.57.17-3.33.1.noarch"
},
"product_reference": "spacewalk-backend-libs-2.8.57.17-3.33.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-package-push-server-2.8.57.17-3.33.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:spacewalk-backend-package-push-server-2.8.57.17-3.33.1.noarch"
},
"product_reference": "spacewalk-backend-package-push-server-2.8.57.17-3.33.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-server-2.8.57.17-3.33.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:spacewalk-backend-server-2.8.57.17-3.33.1.noarch"
},
"product_reference": "spacewalk-backend-server-2.8.57.17-3.33.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-2.8.57.17-3.33.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:spacewalk-backend-sql-2.8.57.17-3.33.1.noarch"
},
"product_reference": "spacewalk-backend-sql-2.8.57.17-3.33.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-oracle-2.8.57.17-3.33.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:spacewalk-backend-sql-oracle-2.8.57.17-3.33.1.noarch"
},
"product_reference": "spacewalk-backend-sql-oracle-2.8.57.17-3.33.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-postgresql-2.8.57.17-3.33.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:spacewalk-backend-sql-postgresql-2.8.57.17-3.33.1.noarch"
},
"product_reference": "spacewalk-backend-sql-postgresql-2.8.57.17-3.33.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-tools-2.8.57.17-3.33.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:spacewalk-backend-tools-2.8.57.17-3.33.1.noarch"
},
"product_reference": "spacewalk-backend-tools-2.8.57.17-3.33.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xml-export-libs-2.8.57.17-3.33.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:spacewalk-backend-xml-export-libs-2.8.57.17-3.33.1.noarch"
},
"product_reference": "spacewalk-backend-xml-export-libs-2.8.57.17-3.33.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xmlrpc-2.8.57.17-3.33.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:spacewalk-backend-xmlrpc-2.8.57.17-3.33.1.noarch"
},
"product_reference": "spacewalk-backend-xmlrpc-2.8.57.17-3.33.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-2.8.7.17-3.30.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:spacewalk-base-2.8.7.17-3.30.1.noarch"
},
"product_reference": "spacewalk-base-2.8.7.17-3.30.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-2.8.7.17-3.30.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:spacewalk-base-minimal-2.8.7.17-3.30.1.noarch"
},
"product_reference": "spacewalk-base-minimal-2.8.7.17-3.30.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-config-2.8.7.17-3.30.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:spacewalk-base-minimal-config-2.8.7.17-3.30.1.noarch"
},
"product_reference": "spacewalk-base-minimal-config-2.8.7.17-3.30.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-html-2.8.7.17-3.30.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:spacewalk-html-2.8.7.17-3.30.1.noarch"
},
"product_reference": "spacewalk-html-2.8.7.17-3.30.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-web-libs-2.8.7.17-3.30.1.noarch as component of SUSE Manager Server 3.2",
"product_id": "SUSE Manager Server 3.2:susemanager-web-libs-2.8.7.17-3.30.1.noarch"
},
"product_reference": "susemanager-web-libs-2.8.7.17-3.30.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-10136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-10136"
}
],
"notes": [
{
"category": "general",
"text": "It was found that Spacewalk, all versions through 2.9, did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Manager Proxy 3.2:release-notes-susemanager-proxy-3.2.9-0.16.27.1.x86_64",
"SUSE Manager Proxy 3.2:spacewalk-backend-2.8.57.17-3.33.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-backend-libs-2.8.57.17-3.33.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-base-minimal-2.8.7.17-3.30.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-base-minimal-config-2.8.7.17-3.30.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-broker-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-common-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-management-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-package-manager-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-redirect-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-salt-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:susemanager-web-libs-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1.ppc64le",
"SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1.s390x",
"SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1.x86_64",
"SUSE Manager Server 3.2:spacewalk-backend-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-app-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-applet-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-config-files-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-config-files-common-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-config-files-tool-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-iss-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-iss-export-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-libs-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-package-push-server-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-server-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-sql-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-sql-oracle-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-sql-postgresql-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-tools-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-xml-export-libs-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-xmlrpc-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-base-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:spacewalk-base-minimal-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:spacewalk-base-minimal-config-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:spacewalk-html-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:susemanager-web-libs-2.8.7.17-3.30.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-10136",
"url": "https://www.suse.com/security/cve/CVE-2019-10136"
},
{
"category": "external",
"summary": "SUSE Bug 1136480 for CVE-2019-10136",
"url": "https://bugzilla.suse.com/1136480"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Manager Proxy 3.2:release-notes-susemanager-proxy-3.2.9-0.16.27.1.x86_64",
"SUSE Manager Proxy 3.2:spacewalk-backend-2.8.57.17-3.33.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-backend-libs-2.8.57.17-3.33.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-base-minimal-2.8.7.17-3.30.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-base-minimal-config-2.8.7.17-3.30.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-broker-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-common-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-management-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-package-manager-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-redirect-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-salt-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:susemanager-web-libs-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1.ppc64le",
"SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1.s390x",
"SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1.x86_64",
"SUSE Manager Server 3.2:spacewalk-backend-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-app-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-applet-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-config-files-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-config-files-common-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-config-files-tool-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-iss-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-iss-export-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-libs-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-package-push-server-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-server-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-sql-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-sql-oracle-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-sql-postgresql-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-tools-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-xml-export-libs-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-xmlrpc-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-base-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:spacewalk-base-minimal-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:spacewalk-base-minimal-config-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:spacewalk-html-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:susemanager-web-libs-2.8.7.17-3.30.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE Manager Proxy 3.2:release-notes-susemanager-proxy-3.2.9-0.16.27.1.x86_64",
"SUSE Manager Proxy 3.2:spacewalk-backend-2.8.57.17-3.33.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-backend-libs-2.8.57.17-3.33.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-base-minimal-2.8.7.17-3.30.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-base-minimal-config-2.8.7.17-3.30.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-broker-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-common-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-management-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-package-manager-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-redirect-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-salt-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:susemanager-web-libs-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1.ppc64le",
"SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1.s390x",
"SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1.x86_64",
"SUSE Manager Server 3.2:spacewalk-backend-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-app-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-applet-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-config-files-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-config-files-common-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-config-files-tool-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-iss-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-iss-export-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-libs-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-package-push-server-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-server-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-sql-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-sql-oracle-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-sql-postgresql-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-tools-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-xml-export-libs-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-xmlrpc-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-base-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:spacewalk-base-minimal-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:spacewalk-base-minimal-config-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:spacewalk-html-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:susemanager-web-libs-2.8.7.17-3.30.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-07-09T13:22:02Z",
"details": "moderate"
}
],
"title": "CVE-2019-10136"
},
{
"cve": "CVE-2019-10137",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-10137"
}
],
"notes": [
{
"category": "general",
"text": "A path traversal flaw was found in spacewalk-proxy, all versions through 2.9, in the way the proxy processes cached client tokens. A remote, unauthenticated attacker could use this flaw to test the existence of arbitrary files, if they have access to the proxy\u0027s filesystem, or can execute arbitrary code in the context of the httpd process.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Manager Proxy 3.2:release-notes-susemanager-proxy-3.2.9-0.16.27.1.x86_64",
"SUSE Manager Proxy 3.2:spacewalk-backend-2.8.57.17-3.33.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-backend-libs-2.8.57.17-3.33.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-base-minimal-2.8.7.17-3.30.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-base-minimal-config-2.8.7.17-3.30.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-broker-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-common-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-management-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-package-manager-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-redirect-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-salt-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:susemanager-web-libs-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1.ppc64le",
"SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1.s390x",
"SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1.x86_64",
"SUSE Manager Server 3.2:spacewalk-backend-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-app-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-applet-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-config-files-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-config-files-common-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-config-files-tool-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-iss-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-iss-export-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-libs-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-package-push-server-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-server-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-sql-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-sql-oracle-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-sql-postgresql-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-tools-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-xml-export-libs-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-xmlrpc-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-base-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:spacewalk-base-minimal-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:spacewalk-base-minimal-config-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:spacewalk-html-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:susemanager-web-libs-2.8.7.17-3.30.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-10137",
"url": "https://www.suse.com/security/cve/CVE-2019-10137"
},
{
"category": "external",
"summary": "SUSE Bug 1136476 for CVE-2019-10137",
"url": "https://bugzilla.suse.com/1136476"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Manager Proxy 3.2:release-notes-susemanager-proxy-3.2.9-0.16.27.1.x86_64",
"SUSE Manager Proxy 3.2:spacewalk-backend-2.8.57.17-3.33.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-backend-libs-2.8.57.17-3.33.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-base-minimal-2.8.7.17-3.30.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-base-minimal-config-2.8.7.17-3.30.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-broker-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-common-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-management-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-package-manager-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-redirect-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-salt-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:susemanager-web-libs-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1.ppc64le",
"SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1.s390x",
"SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1.x86_64",
"SUSE Manager Server 3.2:spacewalk-backend-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-app-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-applet-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-config-files-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-config-files-common-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-config-files-tool-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-iss-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-iss-export-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-libs-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-package-push-server-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-server-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-sql-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-sql-oracle-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-sql-postgresql-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-tools-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-xml-export-libs-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-xmlrpc-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-base-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:spacewalk-base-minimal-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:spacewalk-base-minimal-config-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:spacewalk-html-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:susemanager-web-libs-2.8.7.17-3.30.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Manager Proxy 3.2:release-notes-susemanager-proxy-3.2.9-0.16.27.1.x86_64",
"SUSE Manager Proxy 3.2:spacewalk-backend-2.8.57.17-3.33.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-backend-libs-2.8.57.17-3.33.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-base-minimal-2.8.7.17-3.30.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-base-minimal-config-2.8.7.17-3.30.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-broker-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-common-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-management-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-package-manager-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-redirect-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:spacewalk-proxy-salt-2.8.5.6-3.11.1.noarch",
"SUSE Manager Proxy 3.2:susemanager-web-libs-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1.ppc64le",
"SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1.s390x",
"SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1.x86_64",
"SUSE Manager Server 3.2:spacewalk-backend-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-app-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-applet-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-config-files-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-config-files-common-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-config-files-tool-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-iss-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-iss-export-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-libs-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-package-push-server-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-server-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-sql-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-sql-oracle-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-sql-postgresql-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-tools-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-xml-export-libs-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-backend-xmlrpc-2.8.57.17-3.33.1.noarch",
"SUSE Manager Server 3.2:spacewalk-base-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:spacewalk-base-minimal-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:spacewalk-base-minimal-config-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:spacewalk-html-2.8.7.17-3.30.1.noarch",
"SUSE Manager Server 3.2:susemanager-web-libs-2.8.7.17-3.30.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-07-09T13:22:02Z",
"details": "moderate"
}
],
"title": "CVE-2019-10137"
}
]
}
suse-su-2019:14163-1
Vulnerability from csaf_suse
Published
2019-09-05 15:32
Modified
2019-09-05 15:32
Summary
Security update for SUSE Manager Client Tools
Notes
Title of the patch
Security update for SUSE Manager Client Tools
Description of the patch
This update fixes the following issues:
mgr-cfg:
- Ensure bytes type when using hashlib to avoid traceback (bsc#1138822)
mgr-daemon:
- Fix systemd timer configuration on SLE12 (bsc#1142038)
mgr-osad:
- Fix obsolete for old osad packages, to allow installing mgr-osad
even by using osad at yum/zyppper install (bsc#1139453)
- Ensure bytes type when using hashlib to avoid traceback (bsc#1138822)
mgr-virtualization:
- Fix missing python 3 ugettext (bsc#1138494)
- Fix package dependencies to prevent file conflict (bsc#1143856)
rhnlib:
- Add SNI support for clients
- Fix initialize ssl connection (bsc#1144155)
- Fix bootstrapping SLE11SP4 trad client with SSL enabled (bsc#1148177)
python-gzipstream:
- SPEC cleanup
- add makefile and pylint configuration
- Add Uyuni URL to package
- Bump version to 4.0.0 (bsc#1104034)
- Fix copyright for the package specfile (bsc#1103696)
spacecmd:
- Bugfix: referenced variable before assignment.
- Bugfix: 'dict' object has no attribute 'iteritems' (bsc#1135881)
- Add unit tests for custominfo, snippet, scap, ssm, cryptokey and distribution
- Fix missing runtime dependencies that made spacecmd return old versions of
packages in some cases, even if newer ones were available (bsc#1148311)
spacewalk-backend:
- Do not overwrite comps and module data with older versions
- Fix issue with 'dists' keyword in url hostname
- Import packages from all collections of a patch not just first one
- Ensure bytes type when using hashlib to avoid traceback
on XMLRPC call to 'registration.register_osad' (bsc#1138822)
- Do not duplicate 'http://' protocol when using proxies with 'deb'
repositories (bsc#1138313)
- Fix reposync when dealing with RedHat CDN (bsc#1138358)
- Fix for CVE-2019-10136. An attacker with a valid, but expired,
authenticated set of headers could move some digits around,
artificially extending the session validity without modifying
the checksum. (bsc#1136480)
- Prevent FileNotFoundError: repomd.xml.key traceback (bsc#1137940)
- Add journalctl output to spacewalk-debug tarballs
- Prevent unnecessary triggering of channel-repodata tasks when GPG
signing is disabled (bsc#1137715)
- Fix spacewalk-repo-sync for Ubuntu repositories in mirror case (bsc#1136029)
- Add support for ULN repositories on new Zypper based reposync.
- Don't skip Deb package tags on package import (bsc#1130040)
- For backend-libs subpackages, exclude files for the server
(already part of spacewalk-backend) to avoid conflicts (bsc#1148125)
- prevent duplicate key violates on repo-sync with long changelog
entries (bsc#1144889)
spacewalk-remote-utils:
- Add RHEL8
Patchnames
slesctsp3-client-tools-201907-14163,slesctsp4-client-tools-201907-14163
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for SUSE Manager Client Tools",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThis update fixes the following issues:\n\nmgr-cfg:\n\n- Ensure bytes type when using hashlib to avoid traceback (bsc#1138822)\n\nmgr-daemon:\n\n- Fix systemd timer configuration on SLE12 (bsc#1142038)\n\nmgr-osad:\n\n- Fix obsolete for old osad packages, to allow installing mgr-osad\n even by using osad at yum/zyppper install (bsc#1139453)\n- Ensure bytes type when using hashlib to avoid traceback (bsc#1138822)\n\nmgr-virtualization:\n\n- Fix missing python 3 ugettext (bsc#1138494)\n- Fix package dependencies to prevent file conflict (bsc#1143856)\n\nrhnlib:\n\n- Add SNI support for clients\n- Fix initialize ssl connection (bsc#1144155)\n- Fix bootstrapping SLE11SP4 trad client with SSL enabled (bsc#1148177)\n \npython-gzipstream:\n\n- SPEC cleanup\n- add makefile and pylint configuration\n- Add Uyuni URL to package\n- Bump version to 4.0.0 (bsc#1104034)\n- Fix copyright for the package specfile (bsc#1103696)\n\nspacecmd:\n\n- Bugfix: referenced variable before assignment.\n- Bugfix: \u0027dict\u0027 object has no attribute \u0027iteritems\u0027 (bsc#1135881)\n- Add unit tests for custominfo, snippet, scap, ssm, cryptokey and distribution\n- Fix missing runtime dependencies that made spacecmd return old versions of\n packages in some cases, even if newer ones were available (bsc#1148311)\n\n\nspacewalk-backend:\n\n- Do not overwrite comps and module data with older versions\n- Fix issue with \u0027dists\u0027 keyword in url hostname\n- Import packages from all collections of a patch not just first one\n- Ensure bytes type when using hashlib to avoid traceback\n on XMLRPC call to \u0027registration.register_osad\u0027 (bsc#1138822)\n- Do not duplicate \u0027http://\u0027 protocol when using proxies with \u0027deb\u0027\n repositories (bsc#1138313)\n- Fix reposync when dealing with RedHat CDN (bsc#1138358)\n- Fix for CVE-2019-10136. An attacker with a valid, but expired,\n authenticated set of headers could move some digits around,\n artificially extending the session validity without modifying\n the checksum. (bsc#1136480)\n- Prevent FileNotFoundError: repomd.xml.key traceback (bsc#1137940)\n- Add journalctl output to spacewalk-debug tarballs\n- Prevent unnecessary triggering of channel-repodata tasks when GPG\n signing is disabled (bsc#1137715)\n- Fix spacewalk-repo-sync for Ubuntu repositories in mirror case (bsc#1136029)\n- Add support for ULN repositories on new Zypper based reposync.\n- Don\u0027t skip Deb package tags on package import (bsc#1130040)\n- For backend-libs subpackages, exclude files for the server\n (already part of spacewalk-backend) to avoid conflicts (bsc#1148125)\n- prevent duplicate key violates on repo-sync with long changelog\n entries (bsc#1144889)\n\nspacewalk-remote-utils:\n\n- Add RHEL8\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "slesctsp3-client-tools-201907-14163,slesctsp4-client-tools-201907-14163",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_14163-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2019:14163-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-201914163-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2019:14163-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2019-September/005884.html"
},
{
"category": "self",
"summary": "SUSE Bug 1103696",
"url": "https://bugzilla.suse.com/1103696"
},
{
"category": "self",
"summary": "SUSE Bug 1104034",
"url": "https://bugzilla.suse.com/1104034"
},
{
"category": "self",
"summary": "SUSE Bug 1130040",
"url": "https://bugzilla.suse.com/1130040"
},
{
"category": "self",
"summary": "SUSE Bug 1135881",
"url": "https://bugzilla.suse.com/1135881"
},
{
"category": "self",
"summary": "SUSE Bug 1136029",
"url": "https://bugzilla.suse.com/1136029"
},
{
"category": "self",
"summary": "SUSE Bug 1136480",
"url": "https://bugzilla.suse.com/1136480"
},
{
"category": "self",
"summary": "SUSE Bug 1137715",
"url": "https://bugzilla.suse.com/1137715"
},
{
"category": "self",
"summary": "SUSE Bug 1137940",
"url": "https://bugzilla.suse.com/1137940"
},
{
"category": "self",
"summary": "SUSE Bug 1138313",
"url": "https://bugzilla.suse.com/1138313"
},
{
"category": "self",
"summary": "SUSE Bug 1138358",
"url": "https://bugzilla.suse.com/1138358"
},
{
"category": "self",
"summary": "SUSE Bug 1138494",
"url": "https://bugzilla.suse.com/1138494"
},
{
"category": "self",
"summary": "SUSE Bug 1138822",
"url": "https://bugzilla.suse.com/1138822"
},
{
"category": "self",
"summary": "SUSE Bug 1139453",
"url": "https://bugzilla.suse.com/1139453"
},
{
"category": "self",
"summary": "SUSE Bug 1142038",
"url": "https://bugzilla.suse.com/1142038"
},
{
"category": "self",
"summary": "SUSE Bug 1143856",
"url": "https://bugzilla.suse.com/1143856"
},
{
"category": "self",
"summary": "SUSE Bug 1144155",
"url": "https://bugzilla.suse.com/1144155"
},
{
"category": "self",
"summary": "SUSE Bug 1144889",
"url": "https://bugzilla.suse.com/1144889"
},
{
"category": "self",
"summary": "SUSE Bug 1148125",
"url": "https://bugzilla.suse.com/1148125"
},
{
"category": "self",
"summary": "SUSE Bug 1148177",
"url": "https://bugzilla.suse.com/1148177"
},
{
"category": "self",
"summary": "SUSE Bug 1148311",
"url": "https://bugzilla.suse.com/1148311"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-10136 page",
"url": "https://www.suse.com/security/cve/CVE-2019-10136/"
}
],
"title": "Security update for SUSE Manager Client Tools",
"tracking": {
"current_release_date": "2019-09-05T15:32:15Z",
"generator": {
"date": "2019-09-05T15:32:15Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2019:14163-1",
"initial_release_date": "2019-09-05T15:32:15Z",
"revision_history": [
{
"date": "2019-09-05T15:32:15Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "mgr-cfg-4.0.9-5.6.3.i586",
"product": {
"name": "mgr-cfg-4.0.9-5.6.3.i586",
"product_id": "mgr-cfg-4.0.9-5.6.3.i586"
}
},
{
"category": "product_version",
"name": "mgr-cfg-actions-4.0.9-5.6.3.i586",
"product": {
"name": "mgr-cfg-actions-4.0.9-5.6.3.i586",
"product_id": "mgr-cfg-actions-4.0.9-5.6.3.i586"
}
},
{
"category": "product_version",
"name": "mgr-cfg-client-4.0.9-5.6.3.i586",
"product": {
"name": "mgr-cfg-client-4.0.9-5.6.3.i586",
"product_id": "mgr-cfg-client-4.0.9-5.6.3.i586"
}
},
{
"category": "product_version",
"name": "mgr-cfg-management-4.0.9-5.6.3.i586",
"product": {
"name": "mgr-cfg-management-4.0.9-5.6.3.i586",
"product_id": "mgr-cfg-management-4.0.9-5.6.3.i586"
}
},
{
"category": "product_version",
"name": "mgr-daemon-4.0.7-5.8.2.i586",
"product": {
"name": "mgr-daemon-4.0.7-5.8.2.i586",
"product_id": "mgr-daemon-4.0.7-5.8.2.i586"
}
},
{
"category": "product_version",
"name": "mgr-osad-4.0.9-5.6.2.i586",
"product": {
"name": "mgr-osad-4.0.9-5.6.2.i586",
"product_id": "mgr-osad-4.0.9-5.6.2.i586"
}
},
{
"category": "product_version",
"name": "mgr-virtualization-host-4.0.8-5.8.3.i586",
"product": {
"name": "mgr-virtualization-host-4.0.8-5.8.3.i586",
"product_id": "mgr-virtualization-host-4.0.8-5.8.3.i586"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-4.0.9-5.6.3.i586",
"product": {
"name": "python2-mgr-cfg-4.0.9-5.6.3.i586",
"product_id": "python2-mgr-cfg-4.0.9-5.6.3.i586"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-actions-4.0.9-5.6.3.i586",
"product": {
"name": "python2-mgr-cfg-actions-4.0.9-5.6.3.i586",
"product_id": "python2-mgr-cfg-actions-4.0.9-5.6.3.i586"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-client-4.0.9-5.6.3.i586",
"product": {
"name": "python2-mgr-cfg-client-4.0.9-5.6.3.i586",
"product_id": "python2-mgr-cfg-client-4.0.9-5.6.3.i586"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-management-4.0.9-5.6.3.i586",
"product": {
"name": "python2-mgr-cfg-management-4.0.9-5.6.3.i586",
"product_id": "python2-mgr-cfg-management-4.0.9-5.6.3.i586"
}
},
{
"category": "product_version",
"name": "python2-mgr-osa-common-4.0.9-5.6.2.i586",
"product": {
"name": "python2-mgr-osa-common-4.0.9-5.6.2.i586",
"product_id": "python2-mgr-osa-common-4.0.9-5.6.2.i586"
}
},
{
"category": "product_version",
"name": "python2-mgr-osad-4.0.9-5.6.2.i586",
"product": {
"name": "python2-mgr-osad-4.0.9-5.6.2.i586",
"product_id": "python2-mgr-osad-4.0.9-5.6.2.i586"
}
},
{
"category": "product_version",
"name": "python2-mgr-virtualization-common-4.0.8-5.8.3.i586",
"product": {
"name": "python2-mgr-virtualization-common-4.0.8-5.8.3.i586",
"product_id": "python2-mgr-virtualization-common-4.0.8-5.8.3.i586"
}
},
{
"category": "product_version",
"name": "python2-mgr-virtualization-host-4.0.8-5.8.3.i586",
"product": {
"name": "python2-mgr-virtualization-host-4.0.8-5.8.3.i586",
"product_id": "python2-mgr-virtualization-host-4.0.8-5.8.3.i586"
}
},
{
"category": "product_version",
"name": "python2-rhnlib-4.0.11-12.16.1.i586",
"product": {
"name": "python2-rhnlib-4.0.11-12.16.1.i586",
"product_id": "python2-rhnlib-4.0.11-12.16.1.i586"
}
},
{
"category": "product_version",
"name": "spacecmd-4.0.14-18.51.1.i586",
"product": {
"name": "spacecmd-4.0.14-18.51.1.i586",
"product_id": "spacecmd-4.0.14-18.51.1.i586"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-4.0.25-28.42.1.i586",
"product": {
"name": "spacewalk-backend-libs-4.0.25-28.42.1.i586",
"product_id": "spacewalk-backend-libs-4.0.25-28.42.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "mgr-cfg-4.0.9-5.6.3.ia64",
"product": {
"name": "mgr-cfg-4.0.9-5.6.3.ia64",
"product_id": "mgr-cfg-4.0.9-5.6.3.ia64"
}
},
{
"category": "product_version",
"name": "mgr-cfg-actions-4.0.9-5.6.3.ia64",
"product": {
"name": "mgr-cfg-actions-4.0.9-5.6.3.ia64",
"product_id": "mgr-cfg-actions-4.0.9-5.6.3.ia64"
}
},
{
"category": "product_version",
"name": "mgr-cfg-client-4.0.9-5.6.3.ia64",
"product": {
"name": "mgr-cfg-client-4.0.9-5.6.3.ia64",
"product_id": "mgr-cfg-client-4.0.9-5.6.3.ia64"
}
},
{
"category": "product_version",
"name": "mgr-cfg-management-4.0.9-5.6.3.ia64",
"product": {
"name": "mgr-cfg-management-4.0.9-5.6.3.ia64",
"product_id": "mgr-cfg-management-4.0.9-5.6.3.ia64"
}
},
{
"category": "product_version",
"name": "mgr-daemon-4.0.7-5.8.2.ia64",
"product": {
"name": "mgr-daemon-4.0.7-5.8.2.ia64",
"product_id": "mgr-daemon-4.0.7-5.8.2.ia64"
}
},
{
"category": "product_version",
"name": "mgr-osad-4.0.9-5.6.2.ia64",
"product": {
"name": "mgr-osad-4.0.9-5.6.2.ia64",
"product_id": "mgr-osad-4.0.9-5.6.2.ia64"
}
},
{
"category": "product_version",
"name": "mgr-virtualization-host-4.0.8-5.8.3.ia64",
"product": {
"name": "mgr-virtualization-host-4.0.8-5.8.3.ia64",
"product_id": "mgr-virtualization-host-4.0.8-5.8.3.ia64"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-4.0.9-5.6.3.ia64",
"product": {
"name": "python2-mgr-cfg-4.0.9-5.6.3.ia64",
"product_id": "python2-mgr-cfg-4.0.9-5.6.3.ia64"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-actions-4.0.9-5.6.3.ia64",
"product": {
"name": "python2-mgr-cfg-actions-4.0.9-5.6.3.ia64",
"product_id": "python2-mgr-cfg-actions-4.0.9-5.6.3.ia64"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-client-4.0.9-5.6.3.ia64",
"product": {
"name": "python2-mgr-cfg-client-4.0.9-5.6.3.ia64",
"product_id": "python2-mgr-cfg-client-4.0.9-5.6.3.ia64"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-management-4.0.9-5.6.3.ia64",
"product": {
"name": "python2-mgr-cfg-management-4.0.9-5.6.3.ia64",
"product_id": "python2-mgr-cfg-management-4.0.9-5.6.3.ia64"
}
},
{
"category": "product_version",
"name": "python2-mgr-osa-common-4.0.9-5.6.2.ia64",
"product": {
"name": "python2-mgr-osa-common-4.0.9-5.6.2.ia64",
"product_id": "python2-mgr-osa-common-4.0.9-5.6.2.ia64"
}
},
{
"category": "product_version",
"name": "python2-mgr-osad-4.0.9-5.6.2.ia64",
"product": {
"name": "python2-mgr-osad-4.0.9-5.6.2.ia64",
"product_id": "python2-mgr-osad-4.0.9-5.6.2.ia64"
}
},
{
"category": "product_version",
"name": "python2-mgr-virtualization-common-4.0.8-5.8.3.ia64",
"product": {
"name": "python2-mgr-virtualization-common-4.0.8-5.8.3.ia64",
"product_id": "python2-mgr-virtualization-common-4.0.8-5.8.3.ia64"
}
},
{
"category": "product_version",
"name": "python2-mgr-virtualization-host-4.0.8-5.8.3.ia64",
"product": {
"name": "python2-mgr-virtualization-host-4.0.8-5.8.3.ia64",
"product_id": "python2-mgr-virtualization-host-4.0.8-5.8.3.ia64"
}
},
{
"category": "product_version",
"name": "python2-rhnlib-4.0.11-12.16.1.ia64",
"product": {
"name": "python2-rhnlib-4.0.11-12.16.1.ia64",
"product_id": "python2-rhnlib-4.0.11-12.16.1.ia64"
}
},
{
"category": "product_version",
"name": "spacecmd-4.0.14-18.51.1.ia64",
"product": {
"name": "spacecmd-4.0.14-18.51.1.ia64",
"product_id": "spacecmd-4.0.14-18.51.1.ia64"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-4.0.25-28.42.1.ia64",
"product": {
"name": "spacewalk-backend-libs-4.0.25-28.42.1.ia64",
"product_id": "spacewalk-backend-libs-4.0.25-28.42.1.ia64"
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "spacewalk-remote-utils-4.0.5-6.12.2.noarch",
"product": {
"name": "spacewalk-remote-utils-4.0.5-6.12.2.noarch",
"product_id": "spacewalk-remote-utils-4.0.5-6.12.2.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "mgr-cfg-4.0.9-5.6.3.ppc64",
"product": {
"name": "mgr-cfg-4.0.9-5.6.3.ppc64",
"product_id": "mgr-cfg-4.0.9-5.6.3.ppc64"
}
},
{
"category": "product_version",
"name": "mgr-cfg-actions-4.0.9-5.6.3.ppc64",
"product": {
"name": "mgr-cfg-actions-4.0.9-5.6.3.ppc64",
"product_id": "mgr-cfg-actions-4.0.9-5.6.3.ppc64"
}
},
{
"category": "product_version",
"name": "mgr-cfg-client-4.0.9-5.6.3.ppc64",
"product": {
"name": "mgr-cfg-client-4.0.9-5.6.3.ppc64",
"product_id": "mgr-cfg-client-4.0.9-5.6.3.ppc64"
}
},
{
"category": "product_version",
"name": "mgr-cfg-management-4.0.9-5.6.3.ppc64",
"product": {
"name": "mgr-cfg-management-4.0.9-5.6.3.ppc64",
"product_id": "mgr-cfg-management-4.0.9-5.6.3.ppc64"
}
},
{
"category": "product_version",
"name": "mgr-daemon-4.0.7-5.8.2.ppc64",
"product": {
"name": "mgr-daemon-4.0.7-5.8.2.ppc64",
"product_id": "mgr-daemon-4.0.7-5.8.2.ppc64"
}
},
{
"category": "product_version",
"name": "mgr-osad-4.0.9-5.6.2.ppc64",
"product": {
"name": "mgr-osad-4.0.9-5.6.2.ppc64",
"product_id": "mgr-osad-4.0.9-5.6.2.ppc64"
}
},
{
"category": "product_version",
"name": "mgr-virtualization-host-4.0.8-5.8.3.ppc64",
"product": {
"name": "mgr-virtualization-host-4.0.8-5.8.3.ppc64",
"product_id": "mgr-virtualization-host-4.0.8-5.8.3.ppc64"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-4.0.9-5.6.3.ppc64",
"product": {
"name": "python2-mgr-cfg-4.0.9-5.6.3.ppc64",
"product_id": "python2-mgr-cfg-4.0.9-5.6.3.ppc64"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-actions-4.0.9-5.6.3.ppc64",
"product": {
"name": "python2-mgr-cfg-actions-4.0.9-5.6.3.ppc64",
"product_id": "python2-mgr-cfg-actions-4.0.9-5.6.3.ppc64"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-client-4.0.9-5.6.3.ppc64",
"product": {
"name": "python2-mgr-cfg-client-4.0.9-5.6.3.ppc64",
"product_id": "python2-mgr-cfg-client-4.0.9-5.6.3.ppc64"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-management-4.0.9-5.6.3.ppc64",
"product": {
"name": "python2-mgr-cfg-management-4.0.9-5.6.3.ppc64",
"product_id": "python2-mgr-cfg-management-4.0.9-5.6.3.ppc64"
}
},
{
"category": "product_version",
"name": "python2-mgr-osa-common-4.0.9-5.6.2.ppc64",
"product": {
"name": "python2-mgr-osa-common-4.0.9-5.6.2.ppc64",
"product_id": "python2-mgr-osa-common-4.0.9-5.6.2.ppc64"
}
},
{
"category": "product_version",
"name": "python2-mgr-osad-4.0.9-5.6.2.ppc64",
"product": {
"name": "python2-mgr-osad-4.0.9-5.6.2.ppc64",
"product_id": "python2-mgr-osad-4.0.9-5.6.2.ppc64"
}
},
{
"category": "product_version",
"name": "python2-mgr-virtualization-common-4.0.8-5.8.3.ppc64",
"product": {
"name": "python2-mgr-virtualization-common-4.0.8-5.8.3.ppc64",
"product_id": "python2-mgr-virtualization-common-4.0.8-5.8.3.ppc64"
}
},
{
"category": "product_version",
"name": "python2-mgr-virtualization-host-4.0.8-5.8.3.ppc64",
"product": {
"name": "python2-mgr-virtualization-host-4.0.8-5.8.3.ppc64",
"product_id": "python2-mgr-virtualization-host-4.0.8-5.8.3.ppc64"
}
},
{
"category": "product_version",
"name": "python2-rhnlib-4.0.11-12.16.1.ppc64",
"product": {
"name": "python2-rhnlib-4.0.11-12.16.1.ppc64",
"product_id": "python2-rhnlib-4.0.11-12.16.1.ppc64"
}
},
{
"category": "product_version",
"name": "spacecmd-4.0.14-18.51.1.ppc64",
"product": {
"name": "spacecmd-4.0.14-18.51.1.ppc64",
"product_id": "spacecmd-4.0.14-18.51.1.ppc64"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-4.0.25-28.42.1.ppc64",
"product": {
"name": "spacewalk-backend-libs-4.0.25-28.42.1.ppc64",
"product_id": "spacewalk-backend-libs-4.0.25-28.42.1.ppc64"
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "mgr-cfg-4.0.9-5.6.3.s390x",
"product": {
"name": "mgr-cfg-4.0.9-5.6.3.s390x",
"product_id": "mgr-cfg-4.0.9-5.6.3.s390x"
}
},
{
"category": "product_version",
"name": "mgr-cfg-actions-4.0.9-5.6.3.s390x",
"product": {
"name": "mgr-cfg-actions-4.0.9-5.6.3.s390x",
"product_id": "mgr-cfg-actions-4.0.9-5.6.3.s390x"
}
},
{
"category": "product_version",
"name": "mgr-cfg-client-4.0.9-5.6.3.s390x",
"product": {
"name": "mgr-cfg-client-4.0.9-5.6.3.s390x",
"product_id": "mgr-cfg-client-4.0.9-5.6.3.s390x"
}
},
{
"category": "product_version",
"name": "mgr-cfg-management-4.0.9-5.6.3.s390x",
"product": {
"name": "mgr-cfg-management-4.0.9-5.6.3.s390x",
"product_id": "mgr-cfg-management-4.0.9-5.6.3.s390x"
}
},
{
"category": "product_version",
"name": "mgr-daemon-4.0.7-5.8.2.s390x",
"product": {
"name": "mgr-daemon-4.0.7-5.8.2.s390x",
"product_id": "mgr-daemon-4.0.7-5.8.2.s390x"
}
},
{
"category": "product_version",
"name": "mgr-osad-4.0.9-5.6.2.s390x",
"product": {
"name": "mgr-osad-4.0.9-5.6.2.s390x",
"product_id": "mgr-osad-4.0.9-5.6.2.s390x"
}
},
{
"category": "product_version",
"name": "mgr-virtualization-host-4.0.8-5.8.3.s390x",
"product": {
"name": "mgr-virtualization-host-4.0.8-5.8.3.s390x",
"product_id": "mgr-virtualization-host-4.0.8-5.8.3.s390x"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-4.0.9-5.6.3.s390x",
"product": {
"name": "python2-mgr-cfg-4.0.9-5.6.3.s390x",
"product_id": "python2-mgr-cfg-4.0.9-5.6.3.s390x"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-actions-4.0.9-5.6.3.s390x",
"product": {
"name": "python2-mgr-cfg-actions-4.0.9-5.6.3.s390x",
"product_id": "python2-mgr-cfg-actions-4.0.9-5.6.3.s390x"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-client-4.0.9-5.6.3.s390x",
"product": {
"name": "python2-mgr-cfg-client-4.0.9-5.6.3.s390x",
"product_id": "python2-mgr-cfg-client-4.0.9-5.6.3.s390x"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-management-4.0.9-5.6.3.s390x",
"product": {
"name": "python2-mgr-cfg-management-4.0.9-5.6.3.s390x",
"product_id": "python2-mgr-cfg-management-4.0.9-5.6.3.s390x"
}
},
{
"category": "product_version",
"name": "python2-mgr-osa-common-4.0.9-5.6.2.s390x",
"product": {
"name": "python2-mgr-osa-common-4.0.9-5.6.2.s390x",
"product_id": "python2-mgr-osa-common-4.0.9-5.6.2.s390x"
}
},
{
"category": "product_version",
"name": "python2-mgr-osad-4.0.9-5.6.2.s390x",
"product": {
"name": "python2-mgr-osad-4.0.9-5.6.2.s390x",
"product_id": "python2-mgr-osad-4.0.9-5.6.2.s390x"
}
},
{
"category": "product_version",
"name": "python2-mgr-virtualization-common-4.0.8-5.8.3.s390x",
"product": {
"name": "python2-mgr-virtualization-common-4.0.8-5.8.3.s390x",
"product_id": "python2-mgr-virtualization-common-4.0.8-5.8.3.s390x"
}
},
{
"category": "product_version",
"name": "python2-mgr-virtualization-host-4.0.8-5.8.3.s390x",
"product": {
"name": "python2-mgr-virtualization-host-4.0.8-5.8.3.s390x",
"product_id": "python2-mgr-virtualization-host-4.0.8-5.8.3.s390x"
}
},
{
"category": "product_version",
"name": "python2-rhnlib-4.0.11-12.16.1.s390x",
"product": {
"name": "python2-rhnlib-4.0.11-12.16.1.s390x",
"product_id": "python2-rhnlib-4.0.11-12.16.1.s390x"
}
},
{
"category": "product_version",
"name": "spacecmd-4.0.14-18.51.1.s390x",
"product": {
"name": "spacecmd-4.0.14-18.51.1.s390x",
"product_id": "spacecmd-4.0.14-18.51.1.s390x"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-4.0.25-28.42.1.s390x",
"product": {
"name": "spacewalk-backend-libs-4.0.25-28.42.1.s390x",
"product_id": "spacewalk-backend-libs-4.0.25-28.42.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "mgr-cfg-4.0.9-5.6.3.x86_64",
"product": {
"name": "mgr-cfg-4.0.9-5.6.3.x86_64",
"product_id": "mgr-cfg-4.0.9-5.6.3.x86_64"
}
},
{
"category": "product_version",
"name": "mgr-cfg-actions-4.0.9-5.6.3.x86_64",
"product": {
"name": "mgr-cfg-actions-4.0.9-5.6.3.x86_64",
"product_id": "mgr-cfg-actions-4.0.9-5.6.3.x86_64"
}
},
{
"category": "product_version",
"name": "mgr-cfg-client-4.0.9-5.6.3.x86_64",
"product": {
"name": "mgr-cfg-client-4.0.9-5.6.3.x86_64",
"product_id": "mgr-cfg-client-4.0.9-5.6.3.x86_64"
}
},
{
"category": "product_version",
"name": "mgr-cfg-management-4.0.9-5.6.3.x86_64",
"product": {
"name": "mgr-cfg-management-4.0.9-5.6.3.x86_64",
"product_id": "mgr-cfg-management-4.0.9-5.6.3.x86_64"
}
},
{
"category": "product_version",
"name": "mgr-daemon-4.0.7-5.8.2.x86_64",
"product": {
"name": "mgr-daemon-4.0.7-5.8.2.x86_64",
"product_id": "mgr-daemon-4.0.7-5.8.2.x86_64"
}
},
{
"category": "product_version",
"name": "mgr-osad-4.0.9-5.6.2.x86_64",
"product": {
"name": "mgr-osad-4.0.9-5.6.2.x86_64",
"product_id": "mgr-osad-4.0.9-5.6.2.x86_64"
}
},
{
"category": "product_version",
"name": "mgr-virtualization-host-4.0.8-5.8.3.x86_64",
"product": {
"name": "mgr-virtualization-host-4.0.8-5.8.3.x86_64",
"product_id": "mgr-virtualization-host-4.0.8-5.8.3.x86_64"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-4.0.9-5.6.3.x86_64",
"product": {
"name": "python2-mgr-cfg-4.0.9-5.6.3.x86_64",
"product_id": "python2-mgr-cfg-4.0.9-5.6.3.x86_64"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-actions-4.0.9-5.6.3.x86_64",
"product": {
"name": "python2-mgr-cfg-actions-4.0.9-5.6.3.x86_64",
"product_id": "python2-mgr-cfg-actions-4.0.9-5.6.3.x86_64"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-client-4.0.9-5.6.3.x86_64",
"product": {
"name": "python2-mgr-cfg-client-4.0.9-5.6.3.x86_64",
"product_id": "python2-mgr-cfg-client-4.0.9-5.6.3.x86_64"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-management-4.0.9-5.6.3.x86_64",
"product": {
"name": "python2-mgr-cfg-management-4.0.9-5.6.3.x86_64",
"product_id": "python2-mgr-cfg-management-4.0.9-5.6.3.x86_64"
}
},
{
"category": "product_version",
"name": "python2-mgr-osa-common-4.0.9-5.6.2.x86_64",
"product": {
"name": "python2-mgr-osa-common-4.0.9-5.6.2.x86_64",
"product_id": "python2-mgr-osa-common-4.0.9-5.6.2.x86_64"
}
},
{
"category": "product_version",
"name": "python2-mgr-osad-4.0.9-5.6.2.x86_64",
"product": {
"name": "python2-mgr-osad-4.0.9-5.6.2.x86_64",
"product_id": "python2-mgr-osad-4.0.9-5.6.2.x86_64"
}
},
{
"category": "product_version",
"name": "python2-mgr-virtualization-common-4.0.8-5.8.3.x86_64",
"product": {
"name": "python2-mgr-virtualization-common-4.0.8-5.8.3.x86_64",
"product_id": "python2-mgr-virtualization-common-4.0.8-5.8.3.x86_64"
}
},
{
"category": "product_version",
"name": "python2-mgr-virtualization-host-4.0.8-5.8.3.x86_64",
"product": {
"name": "python2-mgr-virtualization-host-4.0.8-5.8.3.x86_64",
"product_id": "python2-mgr-virtualization-host-4.0.8-5.8.3.x86_64"
}
},
{
"category": "product_version",
"name": "python2-rhnlib-4.0.11-12.16.1.x86_64",
"product": {
"name": "python2-rhnlib-4.0.11-12.16.1.x86_64",
"product_id": "python2-rhnlib-4.0.11-12.16.1.x86_64"
}
},
{
"category": "product_version",
"name": "spacecmd-4.0.14-18.51.1.x86_64",
"product": {
"name": "spacecmd-4.0.14-18.51.1.x86_64",
"product_id": "spacecmd-4.0.14-18.51.1.x86_64"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-4.0.25-28.42.1.x86_64",
"product": {
"name": "spacewalk-backend-libs-4.0.25-28.42.1.x86_64",
"product_id": "spacewalk-backend-libs-4.0.25-28.42.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_identification_helper": {
"cpe": "cpe:/a:suse:sle-clienttools:11:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_identification_helper": {
"cpe": "cpe:/a:suse:sle-clienttools:11:sp4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-4.0.9-5.6.3.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.i586"
},
"product_reference": "mgr-cfg-4.0.9-5.6.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-4.0.9-5.6.3.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.ia64"
},
"product_reference": "mgr-cfg-4.0.9-5.6.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-4.0.9-5.6.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.ppc64"
},
"product_reference": "mgr-cfg-4.0.9-5.6.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-4.0.9-5.6.3.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.s390x"
},
"product_reference": "mgr-cfg-4.0.9-5.6.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-4.0.9-5.6.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.x86_64"
},
"product_reference": "mgr-cfg-4.0.9-5.6.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-actions-4.0.9-5.6.3.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.i586"
},
"product_reference": "mgr-cfg-actions-4.0.9-5.6.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-actions-4.0.9-5.6.3.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.ia64"
},
"product_reference": "mgr-cfg-actions-4.0.9-5.6.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-actions-4.0.9-5.6.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.ppc64"
},
"product_reference": "mgr-cfg-actions-4.0.9-5.6.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-actions-4.0.9-5.6.3.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.s390x"
},
"product_reference": "mgr-cfg-actions-4.0.9-5.6.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-actions-4.0.9-5.6.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.x86_64"
},
"product_reference": "mgr-cfg-actions-4.0.9-5.6.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-client-4.0.9-5.6.3.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.i586"
},
"product_reference": "mgr-cfg-client-4.0.9-5.6.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-client-4.0.9-5.6.3.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.ia64"
},
"product_reference": "mgr-cfg-client-4.0.9-5.6.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-client-4.0.9-5.6.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.ppc64"
},
"product_reference": "mgr-cfg-client-4.0.9-5.6.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-client-4.0.9-5.6.3.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.s390x"
},
"product_reference": "mgr-cfg-client-4.0.9-5.6.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-client-4.0.9-5.6.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.x86_64"
},
"product_reference": "mgr-cfg-client-4.0.9-5.6.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-management-4.0.9-5.6.3.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.i586"
},
"product_reference": "mgr-cfg-management-4.0.9-5.6.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-management-4.0.9-5.6.3.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.ia64"
},
"product_reference": "mgr-cfg-management-4.0.9-5.6.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-management-4.0.9-5.6.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.ppc64"
},
"product_reference": "mgr-cfg-management-4.0.9-5.6.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-management-4.0.9-5.6.3.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.s390x"
},
"product_reference": "mgr-cfg-management-4.0.9-5.6.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-management-4.0.9-5.6.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.x86_64"
},
"product_reference": "mgr-cfg-management-4.0.9-5.6.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-daemon-4.0.7-5.8.2.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.i586"
},
"product_reference": "mgr-daemon-4.0.7-5.8.2.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-daemon-4.0.7-5.8.2.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.ia64"
},
"product_reference": "mgr-daemon-4.0.7-5.8.2.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-daemon-4.0.7-5.8.2.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.ppc64"
},
"product_reference": "mgr-daemon-4.0.7-5.8.2.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-daemon-4.0.7-5.8.2.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.s390x"
},
"product_reference": "mgr-daemon-4.0.7-5.8.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-daemon-4.0.7-5.8.2.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.x86_64"
},
"product_reference": "mgr-daemon-4.0.7-5.8.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-osad-4.0.9-5.6.2.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.i586"
},
"product_reference": "mgr-osad-4.0.9-5.6.2.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-osad-4.0.9-5.6.2.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.ia64"
},
"product_reference": "mgr-osad-4.0.9-5.6.2.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-osad-4.0.9-5.6.2.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.ppc64"
},
"product_reference": "mgr-osad-4.0.9-5.6.2.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-osad-4.0.9-5.6.2.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.s390x"
},
"product_reference": "mgr-osad-4.0.9-5.6.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-osad-4.0.9-5.6.2.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.x86_64"
},
"product_reference": "mgr-osad-4.0.9-5.6.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-virtualization-host-4.0.8-5.8.3.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.i586"
},
"product_reference": "mgr-virtualization-host-4.0.8-5.8.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-virtualization-host-4.0.8-5.8.3.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.ia64"
},
"product_reference": "mgr-virtualization-host-4.0.8-5.8.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-virtualization-host-4.0.8-5.8.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.ppc64"
},
"product_reference": "mgr-virtualization-host-4.0.8-5.8.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-virtualization-host-4.0.8-5.8.3.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.s390x"
},
"product_reference": "mgr-virtualization-host-4.0.8-5.8.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-virtualization-host-4.0.8-5.8.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.x86_64"
},
"product_reference": "mgr-virtualization-host-4.0.8-5.8.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-4.0.9-5.6.3.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.i586"
},
"product_reference": "python2-mgr-cfg-4.0.9-5.6.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-4.0.9-5.6.3.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.ia64"
},
"product_reference": "python2-mgr-cfg-4.0.9-5.6.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-4.0.9-5.6.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.ppc64"
},
"product_reference": "python2-mgr-cfg-4.0.9-5.6.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-4.0.9-5.6.3.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.s390x"
},
"product_reference": "python2-mgr-cfg-4.0.9-5.6.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-4.0.9-5.6.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.x86_64"
},
"product_reference": "python2-mgr-cfg-4.0.9-5.6.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-actions-4.0.9-5.6.3.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.i586"
},
"product_reference": "python2-mgr-cfg-actions-4.0.9-5.6.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-actions-4.0.9-5.6.3.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.ia64"
},
"product_reference": "python2-mgr-cfg-actions-4.0.9-5.6.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-actions-4.0.9-5.6.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.ppc64"
},
"product_reference": "python2-mgr-cfg-actions-4.0.9-5.6.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-actions-4.0.9-5.6.3.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.s390x"
},
"product_reference": "python2-mgr-cfg-actions-4.0.9-5.6.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-actions-4.0.9-5.6.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.x86_64"
},
"product_reference": "python2-mgr-cfg-actions-4.0.9-5.6.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-client-4.0.9-5.6.3.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.i586"
},
"product_reference": "python2-mgr-cfg-client-4.0.9-5.6.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-client-4.0.9-5.6.3.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.ia64"
},
"product_reference": "python2-mgr-cfg-client-4.0.9-5.6.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-client-4.0.9-5.6.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.ppc64"
},
"product_reference": "python2-mgr-cfg-client-4.0.9-5.6.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-client-4.0.9-5.6.3.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.s390x"
},
"product_reference": "python2-mgr-cfg-client-4.0.9-5.6.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-client-4.0.9-5.6.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.x86_64"
},
"product_reference": "python2-mgr-cfg-client-4.0.9-5.6.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-management-4.0.9-5.6.3.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.i586"
},
"product_reference": "python2-mgr-cfg-management-4.0.9-5.6.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-management-4.0.9-5.6.3.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.ia64"
},
"product_reference": "python2-mgr-cfg-management-4.0.9-5.6.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-management-4.0.9-5.6.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.ppc64"
},
"product_reference": "python2-mgr-cfg-management-4.0.9-5.6.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-management-4.0.9-5.6.3.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.s390x"
},
"product_reference": "python2-mgr-cfg-management-4.0.9-5.6.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-management-4.0.9-5.6.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.x86_64"
},
"product_reference": "python2-mgr-cfg-management-4.0.9-5.6.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osa-common-4.0.9-5.6.2.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.i586"
},
"product_reference": "python2-mgr-osa-common-4.0.9-5.6.2.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osa-common-4.0.9-5.6.2.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.ia64"
},
"product_reference": "python2-mgr-osa-common-4.0.9-5.6.2.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osa-common-4.0.9-5.6.2.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.ppc64"
},
"product_reference": "python2-mgr-osa-common-4.0.9-5.6.2.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osa-common-4.0.9-5.6.2.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.s390x"
},
"product_reference": "python2-mgr-osa-common-4.0.9-5.6.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osa-common-4.0.9-5.6.2.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.x86_64"
},
"product_reference": "python2-mgr-osa-common-4.0.9-5.6.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osad-4.0.9-5.6.2.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.i586"
},
"product_reference": "python2-mgr-osad-4.0.9-5.6.2.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osad-4.0.9-5.6.2.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.ia64"
},
"product_reference": "python2-mgr-osad-4.0.9-5.6.2.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osad-4.0.9-5.6.2.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.ppc64"
},
"product_reference": "python2-mgr-osad-4.0.9-5.6.2.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osad-4.0.9-5.6.2.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.s390x"
},
"product_reference": "python2-mgr-osad-4.0.9-5.6.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osad-4.0.9-5.6.2.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.x86_64"
},
"product_reference": "python2-mgr-osad-4.0.9-5.6.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-common-4.0.8-5.8.3.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.i586"
},
"product_reference": "python2-mgr-virtualization-common-4.0.8-5.8.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-common-4.0.8-5.8.3.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.ia64"
},
"product_reference": "python2-mgr-virtualization-common-4.0.8-5.8.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-common-4.0.8-5.8.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.ppc64"
},
"product_reference": "python2-mgr-virtualization-common-4.0.8-5.8.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-common-4.0.8-5.8.3.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.s390x"
},
"product_reference": "python2-mgr-virtualization-common-4.0.8-5.8.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-common-4.0.8-5.8.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.x86_64"
},
"product_reference": "python2-mgr-virtualization-common-4.0.8-5.8.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-host-4.0.8-5.8.3.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.i586"
},
"product_reference": "python2-mgr-virtualization-host-4.0.8-5.8.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-host-4.0.8-5.8.3.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.ia64"
},
"product_reference": "python2-mgr-virtualization-host-4.0.8-5.8.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-host-4.0.8-5.8.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.ppc64"
},
"product_reference": "python2-mgr-virtualization-host-4.0.8-5.8.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-host-4.0.8-5.8.3.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.s390x"
},
"product_reference": "python2-mgr-virtualization-host-4.0.8-5.8.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-host-4.0.8-5.8.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.x86_64"
},
"product_reference": "python2-mgr-virtualization-host-4.0.8-5.8.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-rhnlib-4.0.11-12.16.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.i586"
},
"product_reference": "python2-rhnlib-4.0.11-12.16.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-rhnlib-4.0.11-12.16.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.ia64"
},
"product_reference": "python2-rhnlib-4.0.11-12.16.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-rhnlib-4.0.11-12.16.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.ppc64"
},
"product_reference": "python2-rhnlib-4.0.11-12.16.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-rhnlib-4.0.11-12.16.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.s390x"
},
"product_reference": "python2-rhnlib-4.0.11-12.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-rhnlib-4.0.11-12.16.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.x86_64"
},
"product_reference": "python2-rhnlib-4.0.11-12.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-4.0.14-18.51.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.i586"
},
"product_reference": "spacecmd-4.0.14-18.51.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-4.0.14-18.51.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.ia64"
},
"product_reference": "spacecmd-4.0.14-18.51.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-4.0.14-18.51.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.ppc64"
},
"product_reference": "spacecmd-4.0.14-18.51.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-4.0.14-18.51.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.s390x"
},
"product_reference": "spacecmd-4.0.14-18.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-4.0.14-18.51.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.x86_64"
},
"product_reference": "spacecmd-4.0.14-18.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-4.0.25-28.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.i586"
},
"product_reference": "spacewalk-backend-libs-4.0.25-28.42.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-4.0.25-28.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.ia64"
},
"product_reference": "spacewalk-backend-libs-4.0.25-28.42.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-4.0.25-28.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.ppc64"
},
"product_reference": "spacewalk-backend-libs-4.0.25-28.42.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-4.0.25-28.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.s390x"
},
"product_reference": "spacewalk-backend-libs-4.0.25-28.42.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-4.0.25-28.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.x86_64"
},
"product_reference": "spacewalk-backend-libs-4.0.25-28.42.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-remote-utils-4.0.5-6.12.2.noarch as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-remote-utils-4.0.5-6.12.2.noarch"
},
"product_reference": "spacewalk-remote-utils-4.0.5-6.12.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-4.0.9-5.6.3.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.i586"
},
"product_reference": "mgr-cfg-4.0.9-5.6.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-4.0.9-5.6.3.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.ia64"
},
"product_reference": "mgr-cfg-4.0.9-5.6.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-4.0.9-5.6.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.ppc64"
},
"product_reference": "mgr-cfg-4.0.9-5.6.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-4.0.9-5.6.3.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.s390x"
},
"product_reference": "mgr-cfg-4.0.9-5.6.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-4.0.9-5.6.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.x86_64"
},
"product_reference": "mgr-cfg-4.0.9-5.6.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-actions-4.0.9-5.6.3.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.i586"
},
"product_reference": "mgr-cfg-actions-4.0.9-5.6.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-actions-4.0.9-5.6.3.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.ia64"
},
"product_reference": "mgr-cfg-actions-4.0.9-5.6.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-actions-4.0.9-5.6.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.ppc64"
},
"product_reference": "mgr-cfg-actions-4.0.9-5.6.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-actions-4.0.9-5.6.3.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.s390x"
},
"product_reference": "mgr-cfg-actions-4.0.9-5.6.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-actions-4.0.9-5.6.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.x86_64"
},
"product_reference": "mgr-cfg-actions-4.0.9-5.6.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-client-4.0.9-5.6.3.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.i586"
},
"product_reference": "mgr-cfg-client-4.0.9-5.6.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-client-4.0.9-5.6.3.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.ia64"
},
"product_reference": "mgr-cfg-client-4.0.9-5.6.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-client-4.0.9-5.6.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.ppc64"
},
"product_reference": "mgr-cfg-client-4.0.9-5.6.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-client-4.0.9-5.6.3.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.s390x"
},
"product_reference": "mgr-cfg-client-4.0.9-5.6.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-client-4.0.9-5.6.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.x86_64"
},
"product_reference": "mgr-cfg-client-4.0.9-5.6.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-management-4.0.9-5.6.3.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.i586"
},
"product_reference": "mgr-cfg-management-4.0.9-5.6.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-management-4.0.9-5.6.3.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.ia64"
},
"product_reference": "mgr-cfg-management-4.0.9-5.6.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-management-4.0.9-5.6.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.ppc64"
},
"product_reference": "mgr-cfg-management-4.0.9-5.6.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-management-4.0.9-5.6.3.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.s390x"
},
"product_reference": "mgr-cfg-management-4.0.9-5.6.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-management-4.0.9-5.6.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.x86_64"
},
"product_reference": "mgr-cfg-management-4.0.9-5.6.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-daemon-4.0.7-5.8.2.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.i586"
},
"product_reference": "mgr-daemon-4.0.7-5.8.2.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-daemon-4.0.7-5.8.2.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.ia64"
},
"product_reference": "mgr-daemon-4.0.7-5.8.2.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-daemon-4.0.7-5.8.2.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.ppc64"
},
"product_reference": "mgr-daemon-4.0.7-5.8.2.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-daemon-4.0.7-5.8.2.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.s390x"
},
"product_reference": "mgr-daemon-4.0.7-5.8.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-daemon-4.0.7-5.8.2.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.x86_64"
},
"product_reference": "mgr-daemon-4.0.7-5.8.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-osad-4.0.9-5.6.2.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.i586"
},
"product_reference": "mgr-osad-4.0.9-5.6.2.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-osad-4.0.9-5.6.2.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.ia64"
},
"product_reference": "mgr-osad-4.0.9-5.6.2.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-osad-4.0.9-5.6.2.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.ppc64"
},
"product_reference": "mgr-osad-4.0.9-5.6.2.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-osad-4.0.9-5.6.2.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.s390x"
},
"product_reference": "mgr-osad-4.0.9-5.6.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-osad-4.0.9-5.6.2.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.x86_64"
},
"product_reference": "mgr-osad-4.0.9-5.6.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-virtualization-host-4.0.8-5.8.3.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.i586"
},
"product_reference": "mgr-virtualization-host-4.0.8-5.8.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-virtualization-host-4.0.8-5.8.3.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.ia64"
},
"product_reference": "mgr-virtualization-host-4.0.8-5.8.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-virtualization-host-4.0.8-5.8.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.ppc64"
},
"product_reference": "mgr-virtualization-host-4.0.8-5.8.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-virtualization-host-4.0.8-5.8.3.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.s390x"
},
"product_reference": "mgr-virtualization-host-4.0.8-5.8.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-virtualization-host-4.0.8-5.8.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.x86_64"
},
"product_reference": "mgr-virtualization-host-4.0.8-5.8.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-4.0.9-5.6.3.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.i586"
},
"product_reference": "python2-mgr-cfg-4.0.9-5.6.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-4.0.9-5.6.3.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.ia64"
},
"product_reference": "python2-mgr-cfg-4.0.9-5.6.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-4.0.9-5.6.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.ppc64"
},
"product_reference": "python2-mgr-cfg-4.0.9-5.6.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-4.0.9-5.6.3.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.s390x"
},
"product_reference": "python2-mgr-cfg-4.0.9-5.6.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-4.0.9-5.6.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.x86_64"
},
"product_reference": "python2-mgr-cfg-4.0.9-5.6.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-actions-4.0.9-5.6.3.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.i586"
},
"product_reference": "python2-mgr-cfg-actions-4.0.9-5.6.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-actions-4.0.9-5.6.3.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.ia64"
},
"product_reference": "python2-mgr-cfg-actions-4.0.9-5.6.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-actions-4.0.9-5.6.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.ppc64"
},
"product_reference": "python2-mgr-cfg-actions-4.0.9-5.6.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-actions-4.0.9-5.6.3.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.s390x"
},
"product_reference": "python2-mgr-cfg-actions-4.0.9-5.6.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-actions-4.0.9-5.6.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.x86_64"
},
"product_reference": "python2-mgr-cfg-actions-4.0.9-5.6.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-client-4.0.9-5.6.3.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.i586"
},
"product_reference": "python2-mgr-cfg-client-4.0.9-5.6.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-client-4.0.9-5.6.3.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.ia64"
},
"product_reference": "python2-mgr-cfg-client-4.0.9-5.6.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-client-4.0.9-5.6.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.ppc64"
},
"product_reference": "python2-mgr-cfg-client-4.0.9-5.6.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-client-4.0.9-5.6.3.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.s390x"
},
"product_reference": "python2-mgr-cfg-client-4.0.9-5.6.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-client-4.0.9-5.6.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.x86_64"
},
"product_reference": "python2-mgr-cfg-client-4.0.9-5.6.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-management-4.0.9-5.6.3.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.i586"
},
"product_reference": "python2-mgr-cfg-management-4.0.9-5.6.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-management-4.0.9-5.6.3.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.ia64"
},
"product_reference": "python2-mgr-cfg-management-4.0.9-5.6.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-management-4.0.9-5.6.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.ppc64"
},
"product_reference": "python2-mgr-cfg-management-4.0.9-5.6.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-management-4.0.9-5.6.3.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.s390x"
},
"product_reference": "python2-mgr-cfg-management-4.0.9-5.6.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-management-4.0.9-5.6.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.x86_64"
},
"product_reference": "python2-mgr-cfg-management-4.0.9-5.6.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osa-common-4.0.9-5.6.2.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.i586"
},
"product_reference": "python2-mgr-osa-common-4.0.9-5.6.2.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osa-common-4.0.9-5.6.2.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.ia64"
},
"product_reference": "python2-mgr-osa-common-4.0.9-5.6.2.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osa-common-4.0.9-5.6.2.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.ppc64"
},
"product_reference": "python2-mgr-osa-common-4.0.9-5.6.2.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osa-common-4.0.9-5.6.2.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.s390x"
},
"product_reference": "python2-mgr-osa-common-4.0.9-5.6.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osa-common-4.0.9-5.6.2.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.x86_64"
},
"product_reference": "python2-mgr-osa-common-4.0.9-5.6.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osad-4.0.9-5.6.2.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.i586"
},
"product_reference": "python2-mgr-osad-4.0.9-5.6.2.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osad-4.0.9-5.6.2.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.ia64"
},
"product_reference": "python2-mgr-osad-4.0.9-5.6.2.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osad-4.0.9-5.6.2.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.ppc64"
},
"product_reference": "python2-mgr-osad-4.0.9-5.6.2.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osad-4.0.9-5.6.2.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.s390x"
},
"product_reference": "python2-mgr-osad-4.0.9-5.6.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osad-4.0.9-5.6.2.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.x86_64"
},
"product_reference": "python2-mgr-osad-4.0.9-5.6.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-common-4.0.8-5.8.3.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.i586"
},
"product_reference": "python2-mgr-virtualization-common-4.0.8-5.8.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-common-4.0.8-5.8.3.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.ia64"
},
"product_reference": "python2-mgr-virtualization-common-4.0.8-5.8.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-common-4.0.8-5.8.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.ppc64"
},
"product_reference": "python2-mgr-virtualization-common-4.0.8-5.8.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-common-4.0.8-5.8.3.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.s390x"
},
"product_reference": "python2-mgr-virtualization-common-4.0.8-5.8.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-common-4.0.8-5.8.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.x86_64"
},
"product_reference": "python2-mgr-virtualization-common-4.0.8-5.8.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-host-4.0.8-5.8.3.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.i586"
},
"product_reference": "python2-mgr-virtualization-host-4.0.8-5.8.3.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-host-4.0.8-5.8.3.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.ia64"
},
"product_reference": "python2-mgr-virtualization-host-4.0.8-5.8.3.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-host-4.0.8-5.8.3.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.ppc64"
},
"product_reference": "python2-mgr-virtualization-host-4.0.8-5.8.3.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-host-4.0.8-5.8.3.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.s390x"
},
"product_reference": "python2-mgr-virtualization-host-4.0.8-5.8.3.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-host-4.0.8-5.8.3.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.x86_64"
},
"product_reference": "python2-mgr-virtualization-host-4.0.8-5.8.3.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-rhnlib-4.0.11-12.16.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.i586"
},
"product_reference": "python2-rhnlib-4.0.11-12.16.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-rhnlib-4.0.11-12.16.1.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.ia64"
},
"product_reference": "python2-rhnlib-4.0.11-12.16.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-rhnlib-4.0.11-12.16.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.ppc64"
},
"product_reference": "python2-rhnlib-4.0.11-12.16.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-rhnlib-4.0.11-12.16.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.s390x"
},
"product_reference": "python2-rhnlib-4.0.11-12.16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-rhnlib-4.0.11-12.16.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.x86_64"
},
"product_reference": "python2-rhnlib-4.0.11-12.16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-4.0.14-18.51.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.i586"
},
"product_reference": "spacecmd-4.0.14-18.51.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-4.0.14-18.51.1.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.ia64"
},
"product_reference": "spacecmd-4.0.14-18.51.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-4.0.14-18.51.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.ppc64"
},
"product_reference": "spacecmd-4.0.14-18.51.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-4.0.14-18.51.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.s390x"
},
"product_reference": "spacecmd-4.0.14-18.51.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-4.0.14-18.51.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.x86_64"
},
"product_reference": "spacecmd-4.0.14-18.51.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-4.0.25-28.42.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.i586"
},
"product_reference": "spacewalk-backend-libs-4.0.25-28.42.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-4.0.25-28.42.1.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.ia64"
},
"product_reference": "spacewalk-backend-libs-4.0.25-28.42.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-4.0.25-28.42.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.ppc64"
},
"product_reference": "spacewalk-backend-libs-4.0.25-28.42.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-4.0.25-28.42.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.s390x"
},
"product_reference": "spacewalk-backend-libs-4.0.25-28.42.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-4.0.25-28.42.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.x86_64"
},
"product_reference": "spacewalk-backend-libs-4.0.25-28.42.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-remote-utils-4.0.5-6.12.2.noarch as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-remote-utils-4.0.5-6.12.2.noarch"
},
"product_reference": "spacewalk-remote-utils-4.0.5-6.12.2.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-10136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-10136"
}
],
"notes": [
{
"category": "general",
"text": "It was found that Spacewalk, all versions through 2.9, did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-remote-utils-4.0.5-6.12.2.noarch",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-remote-utils-4.0.5-6.12.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-10136",
"url": "https://www.suse.com/security/cve/CVE-2019-10136"
},
{
"category": "external",
"summary": "SUSE Bug 1136480 for CVE-2019-10136",
"url": "https://bugzilla.suse.com/1136480"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-remote-utils-4.0.5-6.12.2.noarch",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-remote-utils-4.0.5-6.12.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-remote-utils-4.0.5-6.12.2.noarch",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-actions-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-client-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-cfg-management-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-daemon-4.0.7-5.8.2.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-osad-4.0.9-5.6.2.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:mgr-virtualization-host-4.0.8-5.8.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-actions-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-client-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-cfg-management-4.0.9-5.6.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osa-common-4.0.9-5.6.2.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-osad-4.0.9-5.6.2.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-common-4.0.8-5.8.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-mgr-virtualization-host-4.0.8-5.8.3.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:python2-rhnlib-4.0.11-12.16.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-4.0.14-18.51.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-4.0.25-28.42.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-remote-utils-4.0.5-6.12.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-05T15:32:15Z",
"details": "moderate"
}
],
"title": "CVE-2019-10136"
}
]
}
suse-su-2019:2312-1
Vulnerability from csaf_suse
Published
2019-09-05 15:32
Modified
2019-09-05 15:32
Summary
Security update for SUSE Manager Client Tools
Notes
Title of the patch
Security update for SUSE Manager Client Tools
Description of the patch
This update fixes the following issues:
golang-github-prometheus-prometheus:
- Add support for Uyuni/SUSE Manager service discovery
+ Added 0003-Add-Uyuni-service-discovery
- Readded _service file removed in error.
- Update to 2.11.1
+ Bug Fix:
* Fix potential panic when prometheus is watching multiple zookeeper paths.
- Update to 2.11.0
+ Bug Fix:
* resolve race condition in maxGauge.
* Fix ZooKeeper connection leak.
* Improved atomicity of .tmp block replacement during compaction for usual case.
* Fix 'unknown series references' after clean shutdown.
* Re-calculate block size when calling block.Delete.
* Fix unsafe snapshots with head block.
* prometheus_tsdb_compactions_failed_total is now incremented on any compaction failure.
+ Changes:
* Remove max_retries from queue_config (it has been unused since rewriting remote-write to utilize the write-ahead-log)
* The meta file BlockStats no longer holds size information. This is now dynamically calculated and kept in memory. It also includes the meta file size which was not included before
* Renamed metric from prometheus_tsdb_wal_reader_corruption_errors to prometheus_tsdb_wal_reader_corruption_errors_total
+ Features:
* Add option to use Alertmanager API v2.
* Added humanizePercentage function for templates.
* Include InitContainers in Kubernetes Service Discovery.
* Provide option to compress WAL records using Snappy.
+ Enhancements:
* Create new clean segment when starting the WAL.
* Reduce allocations in PromQL aggregations.
* Add storage warnings to LabelValues and LabelNames API results.
* Add prometheus_http_requests_total metric.
* Enable openbsd/arm build.
* Remote-write allocation improvements.
* Query performance improvement: Efficient iteration and search in HashForLabels and HashWithoutLabels.
* Allow injection of arbitrary headers in promtool.
* Allow passing external_labels in alert unit tests groups.
* Allows globs for rules when unit testing.
* Improved postings intersection matching.
* Reduced disk usage for WAL for small setups.
* Optimize queries using regexp for set lookups.
- Rebase patch002-Default-settings.patch
- Update to 2.10.0:
+ Bug Fixes:
* TSDB: Don't panic when running out of disk space and recover nicely from the condition
* TSDB: Correctly handle empty labels.
* TSDB: Don't crash on an unknown tombstone reference.
* Storage/remote: Remove queue-manager specific metrics if queue no longer exists.
* PromQL: Correctly display {__name__='a'}.
* Discovery/kubernetes: Use service rather than ingress as the name for the service workqueue.
* Discovery/azure: Don't panic on a VM with a public IP.
* Web: Fixed Content-Type for js and css instead of using /etc/mime.types.
* API: Encode alert values as string to correctly represent Inf/NaN.
+ Features:
* Template expansion: Make external labels available as $externalLabels in alert and console template expansion.
* TSDB: Add prometheus_tsdb_wal_segment_current metric for the WAL segment index that TSDB is currently writing to. tsdb
* Scrape: Add scrape_series_added per-scrape metric. #5546
+ Enhancements
* Discovery/kubernetes: Add labels __meta_kubernetes_endpoint_node_name and __meta_kubernetes_endpoint_hostname.
* Discovery/azure: Add label __meta_azure_machine_public_ip.
* TSDB: Simplify mergedPostings.Seek, resulting in better performance if there are many posting lists. tsdb
* Log filesystem type on startup.
* Cmd/promtool: Use POST requests for Query and QueryRange. client_golang
* Web: Sort alerts by group name.
* Console templates: Add convenience variables $rawParams, $params, $path.
- Upadte to 2.9.2
+ Bug Fixes:
* Make sure subquery range is taken into account for selection
* Exhaust every request body before closing it
* Cmd/promtool: return errors from rule evaluations
* Remote Storage: string interner should not panic in release
* Fix memory allocation regression in mergedPostings.Seek tsdb
- Update to 2.9.1
+ Bug Fixes:
* Discovery/kubernetes: fix missing label sanitization
* Remote_write: Prevent reshard concurrent with calling stop
- Update to 2.9.0
+ Feature:
* Add honor_timestamps scrape option.
+ Enhancements:
* Update Consul to support catalog.ServiceMultipleTags.
* Discovery/kubernetes: add present labels for labels/annotations.
* OpenStack SD: Add ProjectID and UserID meta labels.
* Add GODEBUG and retention to the runtime page.
* Add support for POSTing to /series endpoint.
* Support PUT methods for Lifecycle and Admin APIs.
* Scrape: Add global jitter for HA server.
* Check for cancellation on every step of a range evaluation.
* String interning for labels & values in the remote_write path.
* Don't lose the scrape cache on a failed scrape.
* Reload cert files from disk automatically. common
* Use fixed length millisecond timestamp format for logs. common
* Performance improvements for postings.
Bug Fixes:
* Remote Write: fix checkpoint reading.
* Check if label value is valid when unmarshaling external labels from YAML.
* Promparse: sort all labels when parsing.
* Reload rules: copy state on both name and labels.
* Exponentation operator to drop metric name in result of operation.
* Config: resolve more file paths.
* Promtool: resolve relative paths in alert test files.
* Set TLSHandshakeTimeout in HTTP transport. common
* Use fsync to be more resilient to machine crashes.
* Keep series that are still in WAL in checkpoints.
- Update to 2.8.1
+ Bug Fixes
* Display the job labels in /targets which was removed accidentally
- Update to 2.8.0
+ Change:
* This release uses Write-Ahead Logging (WAL) for the remote_write API. This currently causes a slight increase in memory usage, which will be addressed in future releases.
* Default time retention is used only when no size based retention is specified. These are flags where time retention is specified by the flag --storage.tsdb.retention and size retention by --storage.tsdb.retention.size.
* prometheus_tsdb_storage_blocks_bytes_total is now prometheus_tsdb_storage_blocks_bytes.
+ Feature:
* (EXPERIMENTAL) Time overlapping blocks are now allowed; vertical compaction and vertical query merge. It is an optional feature which is controlled by the --storage.tsdb.allow-overlapping-blocks flag, disabled by default.
+ Enhancements:
* Use the WAL for remote_write API.
* Query performance improvements.
* UI enhancements with upgrade to Bootstrap 4.
* Reduce time that Alertmanagers are in flux when reloaded.
* Limit number of metrics displayed on UI to 10000.
* (1) Remember All/Unhealthy choice on target-overview when reloading page. (2) Resize text-input area on Graph page on mouseclick.
* In histogram_quantile merge buckets with equivalent le values.
* Show list of offending labels in the error message in many-to-many scenarios.
* Show Storage Retention criteria in effect on /status page.
+ Bug Fixes:
+ Fix sorting of rule groups.
+ Fix support for password_file and bearer_token_file in Kubernetes SD.
+ Scrape: catch errors when creating HTTP clients
+ Adds new metrics:
prometheus_target_scrape_pools_total
prometheus_target_scrape_pools_failed_total
prometheus_target_scrape_pool_reloads_total
prometheus_target_scrape_pool_reloads_failed_total
+ Fix panic when aggregator param is not a literal.
kiwi-desc-saltboot:
- Update to version 0.1.1564399963.cf19a13
- Fix incompatibility with Microsoft DNS (bsc#1136667)
- Updated copyrights and bug reporting link
- Update to version 0.1.1558613789.64ba093
- Update to version 0.1.1556553492.2bfae0b
mgr-cfg:
- Ensure bytes type when using hashlib to avoid traceback (bsc#1138822)
mgr-daemon:
- Fix systemd timer configuration on SLE12 (bsc#1142038)
mgr-osad:
- Fix obsolete for old osad packages, to allow installing mgr-osad
even by using osad at yum/zyppper install (bsc#1139453)
- Ensure bytes type when using hashlib to avoid traceback (bsc#1138822)
mgr-virtualization:
- Fix missing python 3 ugettext (bsc#1138494)
- Fix package dependencies to prevent file conflict (bsc#1143856)
rhnlib:
- Add SNI support for clients
- Fix initialize ssl connection (bsc#1144155)
- Fix bootstrapping SLE11SP4 trad client with SSL enabled (bsc#1148177)
spacecmd:
- Bugfix: referenced variable before assignment.
- Bugfix: 'dict' object has no attribute 'iteritems' (bsc#1135881)
- Add unit tests for custominfo, snippet, scap, ssm, cryptokey and distribution
- Fix missing runtime dependencies that made spacecmd return old versions of
packages in some cases, even if newer ones were available (bsc#1148311)
spacewalk-backend:
- Do not overwrite comps and module data with older versions
- Fix issue with 'dists' keyword in url hostname
- Import packages from all collections of a patch not just first one
- Ensure bytes type when using hashlib to avoid traceback
on XMLRPC call to 'registration.register_osad' (bsc#1138822)
- Do not duplicate 'http://' protocol when using proxies with 'deb'
repositories (bsc#1138313)
- Fix reposync when dealing with RedHat CDN (bsc#1138358)
- Fix for CVE-2019-10136. An attacker with a valid, but expired,
authenticated set of headers could move some digits around,
artificially extending the session validity without modifying
the checksum. (bsc#1136480)
- Prevent FileNotFoundError: repomd.xml.key traceback (bsc#1137940)
- Add journalctl output to spacewalk-debug tarballs
- Prevent unnecessary triggering of channel-repodata tasks when GPG
signing is disabled (bsc#1137715)
- Fix spacewalk-repo-sync for Ubuntu repositories in mirror case (bsc#1136029)
- Add support for ULN repositories on new Zypper based reposync.
- Don't skip Deb package tags on package import (bsc#1130040)
- For backend-libs subpackages, exclude files for the server
(already part of spacewalk-backend) to avoid conflicts (bsc#1148125)
- prevent duplicate key violates on repo-sync with long changelog
entries (bsc#1144889)
spacewalk-remote-utils:
- Add RHEL8
Patchnames
SUSE-2019-2312,SUSE-SLE-Manager-Tools-12-2019-2312
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for SUSE Manager Client Tools",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThis update fixes the following issues:\n\ngolang-github-prometheus-prometheus:\n\n- Add support for Uyuni/SUSE Manager service discovery\n + Added 0003-Add-Uyuni-service-discovery \n- Readded _service file removed in error. \n- Update to 2.11.1 \n + Bug Fix:\n * Fix potential panic when prometheus is watching multiple zookeeper paths.\n- Update to 2.11.0\n + Bug Fix:\n * resolve race condition in maxGauge. \n * Fix ZooKeeper connection leak. \n * Improved atomicity of .tmp block replacement during compaction for usual case. \n * Fix \u0027unknown series references\u0027 after clean shutdown. \n * Re-calculate block size when calling block.Delete. \n * Fix unsafe snapshots with head block. \n * prometheus_tsdb_compactions_failed_total is now incremented on any compaction failure. \n + Changes:\n * Remove max_retries from queue_config (it has been unused since rewriting remote-write to utilize the write-ahead-log)\n * The meta file BlockStats no longer holds size information. This is now dynamically calculated and kept in memory. It also includes the meta file size which was not included before\n * Renamed metric from prometheus_tsdb_wal_reader_corruption_errors to prometheus_tsdb_wal_reader_corruption_errors_total\n + Features:\n * Add option to use Alertmanager API v2. \n * Added humanizePercentage function for templates. \n * Include InitContainers in Kubernetes Service Discovery. \n * Provide option to compress WAL records using Snappy. \n + Enhancements:\n * Create new clean segment when starting the WAL. \n * Reduce allocations in PromQL aggregations. \n * Add storage warnings to LabelValues and LabelNames API results. \n * Add prometheus_http_requests_total metric. \n * Enable openbsd/arm build. \n * Remote-write allocation improvements. \n * Query performance improvement: Efficient iteration and search in HashForLabels and HashWithoutLabels. \n * Allow injection of arbitrary headers in promtool. \n * Allow passing external_labels in alert unit tests groups. \n * Allows globs for rules when unit testing.\n * Improved postings intersection matching. \n * Reduced disk usage for WAL for small setups. \n * Optimize queries using regexp for set lookups. \n- Rebase patch002-Default-settings.patch \n- Update to 2.10.0:\n + Bug Fixes:\n * TSDB: Don\u0027t panic when running out of disk space and recover nicely from the condition\n * TSDB: Correctly handle empty labels.\n * TSDB: Don\u0027t crash on an unknown tombstone reference. \n * Storage/remote: Remove queue-manager specific metrics if queue no longer exists. \n * PromQL: Correctly display {__name__=\u0027a\u0027}. \n * Discovery/kubernetes: Use service rather than ingress as the name for the service workqueue. \n * Discovery/azure: Don\u0027t panic on a VM with a public IP. \n * Web: Fixed Content-Type for js and css instead of using /etc/mime.types.\n * API: Encode alert values as string to correctly represent Inf/NaN. \n + Features:\n * Template expansion: Make external labels available as $externalLabels in alert and console template expansion. \n * TSDB: Add prometheus_tsdb_wal_segment_current metric for the WAL segment index that TSDB is currently writing to. tsdb\n * Scrape: Add scrape_series_added per-scrape metric. #5546\n + Enhancements\n * Discovery/kubernetes: Add labels __meta_kubernetes_endpoint_node_name and __meta_kubernetes_endpoint_hostname. \n * Discovery/azure: Add label __meta_azure_machine_public_ip. \n * TSDB: Simplify mergedPostings.Seek, resulting in better performance if there are many posting lists. tsdb\n * Log filesystem type on startup. \n * Cmd/promtool: Use POST requests for Query and QueryRange. client_golang\n * Web: Sort alerts by group name. \n * Console templates: Add convenience variables $rawParams, $params, $path.\n- Upadte to 2.9.2\n + Bug Fixes:\n * Make sure subquery range is taken into account for selection \n * Exhaust every request body before closing it \n * Cmd/promtool: return errors from rule evaluations \n * Remote Storage: string interner should not panic in release \n * Fix memory allocation regression in mergedPostings.Seek tsdb\n- Update to 2.9.1\n + Bug Fixes:\n * Discovery/kubernetes: fix missing label sanitization \n * Remote_write: Prevent reshard concurrent with calling stop \n- Update to 2.9.0 \n + Feature: \n * Add honor_timestamps scrape option.\n + Enhancements:\t\n * Update Consul to support catalog.ServiceMultipleTags.\n * Discovery/kubernetes: add present labels for labels/annotations.\n * OpenStack SD: Add ProjectID and UserID meta labels.\n * Add GODEBUG and retention to the runtime page. \n * Add support for POSTing to /series endpoint. \n * Support PUT methods for Lifecycle and Admin APIs.\n * Scrape: Add global jitter for HA server.\n * Check for cancellation on every step of a range evaluation. \n * String interning for labels \u0026 values in the remote_write path.\n * Don\u0027t lose the scrape cache on a failed scrape.\n * Reload cert files from disk automatically. common\n * Use fixed length millisecond timestamp format for logs. common\n * Performance improvements for postings. \n Bug Fixes:\n * Remote Write: fix checkpoint reading. \n * Check if label value is valid when unmarshaling external labels from YAML. \n * Promparse: sort all labels when parsing. \n * Reload rules: copy state on both name and labels. \n * Exponentation operator to drop metric name in result of operation. \n * Config: resolve more file paths. \n * Promtool: resolve relative paths in alert test files. \n * Set TLSHandshakeTimeout in HTTP transport. common\n * Use fsync to be more resilient to machine crashes. \n * Keep series that are still in WAL in checkpoints.\n- Update to 2.8.1\n + Bug Fixes\n * Display the job labels in /targets which was removed accidentally\n- Update to 2.8.0 \n + Change:\n * This release uses Write-Ahead Logging (WAL) for the remote_write API. This currently causes a slight increase in memory usage, which will be addressed in future releases.\n * Default time retention is used only when no size based retention is specified. These are flags where time retention is specified by the flag --storage.tsdb.retention and size retention by --storage.tsdb.retention.size. \n * prometheus_tsdb_storage_blocks_bytes_total is now prometheus_tsdb_storage_blocks_bytes. \n + Feature:\n * (EXPERIMENTAL) Time overlapping blocks are now allowed; vertical compaction and vertical query merge. It is an optional feature which is controlled by the --storage.tsdb.allow-overlapping-blocks flag, disabled by default.\n + Enhancements: \n\t* Use the WAL for remote_write API.\n * Query performance improvements. \n * UI enhancements with upgrade to Bootstrap 4. \n * Reduce time that Alertmanagers are in flux when reloaded. \n * Limit number of metrics displayed on UI to 10000. \n * (1) Remember All/Unhealthy choice on target-overview when reloading page. (2) Resize text-input area on Graph page on mouseclick. \n * In histogram_quantile merge buckets with equivalent le values. \n * Show list of offending labels in the error message in many-to-many scenarios. \n * Show Storage Retention criteria in effect on /status page. \n + Bug Fixes: \n + Fix sorting of rule groups. \n + Fix support for password_file and bearer_token_file in Kubernetes SD. \n + Scrape: catch errors when creating HTTP clients \n + Adds new metrics:\n prometheus_target_scrape_pools_total\n prometheus_target_scrape_pools_failed_total\n prometheus_target_scrape_pool_reloads_total\n prometheus_target_scrape_pool_reloads_failed_total\n + Fix panic when aggregator param is not a literal.\n\nkiwi-desc-saltboot:\n\n- Update to version 0.1.1564399963.cf19a13\n- Fix incompatibility with Microsoft DNS (bsc#1136667)\n- Updated copyrights and bug reporting link\n- Update to version 0.1.1558613789.64ba093\n- Update to version 0.1.1556553492.2bfae0b\n\nmgr-cfg:\n\n- Ensure bytes type when using hashlib to avoid traceback (bsc#1138822)\n\nmgr-daemon:\n\n- Fix systemd timer configuration on SLE12 (bsc#1142038)\n\nmgr-osad:\n\n- Fix obsolete for old osad packages, to allow installing mgr-osad\n even by using osad at yum/zyppper install (bsc#1139453)\n- Ensure bytes type when using hashlib to avoid traceback (bsc#1138822)\n\nmgr-virtualization:\n\n- Fix missing python 3 ugettext (bsc#1138494)\n- Fix package dependencies to prevent file conflict (bsc#1143856)\n \nrhnlib:\n\n- Add SNI support for clients\n- Fix initialize ssl connection (bsc#1144155)\n- Fix bootstrapping SLE11SP4 trad client with SSL enabled (bsc#1148177)\n\nspacecmd:\n\n- Bugfix: referenced variable before assignment.\n- Bugfix: \u0027dict\u0027 object has no attribute \u0027iteritems\u0027 (bsc#1135881)\n- Add unit tests for custominfo, snippet, scap, ssm, cryptokey and distribution\n- Fix missing runtime dependencies that made spacecmd return old versions of\n packages in some cases, even if newer ones were available (bsc#1148311)\n\nspacewalk-backend:\n\n- Do not overwrite comps and module data with older versions\n- Fix issue with \u0027dists\u0027 keyword in url hostname\n- Import packages from all collections of a patch not just first one\n- Ensure bytes type when using hashlib to avoid traceback\n on XMLRPC call to \u0027registration.register_osad\u0027 (bsc#1138822)\n- Do not duplicate \u0027http://\u0027 protocol when using proxies with \u0027deb\u0027\n repositories (bsc#1138313)\n- Fix reposync when dealing with RedHat CDN (bsc#1138358)\n- Fix for CVE-2019-10136. An attacker with a valid, but expired,\n authenticated set of headers could move some digits around,\n artificially extending the session validity without modifying\n the checksum. (bsc#1136480)\n- Prevent FileNotFoundError: repomd.xml.key traceback (bsc#1137940)\n- Add journalctl output to spacewalk-debug tarballs\n- Prevent unnecessary triggering of channel-repodata tasks when GPG\n signing is disabled (bsc#1137715)\n- Fix spacewalk-repo-sync for Ubuntu repositories in mirror case (bsc#1136029)\n- Add support for ULN repositories on new Zypper based reposync.\n- Don\u0027t skip Deb package tags on package import (bsc#1130040)\n- For backend-libs subpackages, exclude files for the server\n (already part of spacewalk-backend) to avoid conflicts (bsc#1148125)\n- prevent duplicate key violates on repo-sync with long changelog\n entries (bsc#1144889)\n\nspacewalk-remote-utils:\n\n- Add RHEL8\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2019-2312,SUSE-SLE-Manager-Tools-12-2019-2312",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_2312-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2019:2312-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20192312-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2019:2312-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2019-September/005886.html"
},
{
"category": "self",
"summary": "SUSE Bug 1130040",
"url": "https://bugzilla.suse.com/1130040"
},
{
"category": "self",
"summary": "SUSE Bug 1135881",
"url": "https://bugzilla.suse.com/1135881"
},
{
"category": "self",
"summary": "SUSE Bug 1136029",
"url": "https://bugzilla.suse.com/1136029"
},
{
"category": "self",
"summary": "SUSE Bug 1136480",
"url": "https://bugzilla.suse.com/1136480"
},
{
"category": "self",
"summary": "SUSE Bug 1136667",
"url": "https://bugzilla.suse.com/1136667"
},
{
"category": "self",
"summary": "SUSE Bug 1137715",
"url": "https://bugzilla.suse.com/1137715"
},
{
"category": "self",
"summary": "SUSE Bug 1137940",
"url": "https://bugzilla.suse.com/1137940"
},
{
"category": "self",
"summary": "SUSE Bug 1138313",
"url": "https://bugzilla.suse.com/1138313"
},
{
"category": "self",
"summary": "SUSE Bug 1138358",
"url": "https://bugzilla.suse.com/1138358"
},
{
"category": "self",
"summary": "SUSE Bug 1138494",
"url": "https://bugzilla.suse.com/1138494"
},
{
"category": "self",
"summary": "SUSE Bug 1138822",
"url": "https://bugzilla.suse.com/1138822"
},
{
"category": "self",
"summary": "SUSE Bug 1139453",
"url": "https://bugzilla.suse.com/1139453"
},
{
"category": "self",
"summary": "SUSE Bug 1142038",
"url": "https://bugzilla.suse.com/1142038"
},
{
"category": "self",
"summary": "SUSE Bug 1143856",
"url": "https://bugzilla.suse.com/1143856"
},
{
"category": "self",
"summary": "SUSE Bug 1144155",
"url": "https://bugzilla.suse.com/1144155"
},
{
"category": "self",
"summary": "SUSE Bug 1144889",
"url": "https://bugzilla.suse.com/1144889"
},
{
"category": "self",
"summary": "SUSE Bug 1148125",
"url": "https://bugzilla.suse.com/1148125"
},
{
"category": "self",
"summary": "SUSE Bug 1148177",
"url": "https://bugzilla.suse.com/1148177"
},
{
"category": "self",
"summary": "SUSE Bug 1148311",
"url": "https://bugzilla.suse.com/1148311"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-10136 page",
"url": "https://www.suse.com/security/cve/CVE-2019-10136/"
}
],
"title": "Security update for SUSE Manager Client Tools",
"tracking": {
"current_release_date": "2019-09-05T15:32:27Z",
"generator": {
"date": "2019-09-05T15:32:27Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2019:2312-1",
"initial_release_date": "2019-09-05T15:32:27Z",
"revision_history": [
{
"date": "2019-09-05T15:32:27Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-2.11.1-1.6.2.aarch64",
"product": {
"name": "golang-github-prometheus-prometheus-2.11.1-1.6.2.aarch64",
"product_id": "golang-github-prometheus-prometheus-2.11.1-1.6.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-2.11.1-1.6.2.i586",
"product": {
"name": "golang-github-prometheus-prometheus-2.11.1-1.6.2.i586",
"product_id": "golang-github-prometheus-prometheus-2.11.1-1.6.2.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "kiwi-desc-saltboot-0.1.1564399963.cf19a13-1.12.1.noarch",
"product": {
"name": "kiwi-desc-saltboot-0.1.1564399963.cf19a13-1.12.1.noarch",
"product_id": "kiwi-desc-saltboot-0.1.1564399963.cf19a13-1.12.1.noarch"
}
},
{
"category": "product_version",
"name": "mgr-cfg-4.0.9-1.6.4.noarch",
"product": {
"name": "mgr-cfg-4.0.9-1.6.4.noarch",
"product_id": "mgr-cfg-4.0.9-1.6.4.noarch"
}
},
{
"category": "product_version",
"name": "mgr-cfg-actions-4.0.9-1.6.4.noarch",
"product": {
"name": "mgr-cfg-actions-4.0.9-1.6.4.noarch",
"product_id": "mgr-cfg-actions-4.0.9-1.6.4.noarch"
}
},
{
"category": "product_version",
"name": "mgr-cfg-client-4.0.9-1.6.4.noarch",
"product": {
"name": "mgr-cfg-client-4.0.9-1.6.4.noarch",
"product_id": "mgr-cfg-client-4.0.9-1.6.4.noarch"
}
},
{
"category": "product_version",
"name": "mgr-cfg-management-4.0.9-1.6.4.noarch",
"product": {
"name": "mgr-cfg-management-4.0.9-1.6.4.noarch",
"product_id": "mgr-cfg-management-4.0.9-1.6.4.noarch"
}
},
{
"category": "product_version",
"name": "mgr-daemon-4.0.7-1.8.2.noarch",
"product": {
"name": "mgr-daemon-4.0.7-1.8.2.noarch",
"product_id": "mgr-daemon-4.0.7-1.8.2.noarch"
}
},
{
"category": "product_version",
"name": "mgr-osa-dispatcher-4.0.9-1.6.2.noarch",
"product": {
"name": "mgr-osa-dispatcher-4.0.9-1.6.2.noarch",
"product_id": "mgr-osa-dispatcher-4.0.9-1.6.2.noarch"
}
},
{
"category": "product_version",
"name": "mgr-osad-4.0.9-1.6.2.noarch",
"product": {
"name": "mgr-osad-4.0.9-1.6.2.noarch",
"product_id": "mgr-osad-4.0.9-1.6.2.noarch"
}
},
{
"category": "product_version",
"name": "mgr-virtualization-host-4.0.8-1.8.3.noarch",
"product": {
"name": "mgr-virtualization-host-4.0.8-1.8.3.noarch",
"product_id": "mgr-virtualization-host-4.0.8-1.8.3.noarch"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-4.0.9-1.6.4.noarch",
"product": {
"name": "python2-mgr-cfg-4.0.9-1.6.4.noarch",
"product_id": "python2-mgr-cfg-4.0.9-1.6.4.noarch"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-actions-4.0.9-1.6.4.noarch",
"product": {
"name": "python2-mgr-cfg-actions-4.0.9-1.6.4.noarch",
"product_id": "python2-mgr-cfg-actions-4.0.9-1.6.4.noarch"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-client-4.0.9-1.6.4.noarch",
"product": {
"name": "python2-mgr-cfg-client-4.0.9-1.6.4.noarch",
"product_id": "python2-mgr-cfg-client-4.0.9-1.6.4.noarch"
}
},
{
"category": "product_version",
"name": "python2-mgr-cfg-management-4.0.9-1.6.4.noarch",
"product": {
"name": "python2-mgr-cfg-management-4.0.9-1.6.4.noarch",
"product_id": "python2-mgr-cfg-management-4.0.9-1.6.4.noarch"
}
},
{
"category": "product_version",
"name": "python2-mgr-osa-common-4.0.9-1.6.2.noarch",
"product": {
"name": "python2-mgr-osa-common-4.0.9-1.6.2.noarch",
"product_id": "python2-mgr-osa-common-4.0.9-1.6.2.noarch"
}
},
{
"category": "product_version",
"name": "python2-mgr-osa-dispatcher-4.0.9-1.6.2.noarch",
"product": {
"name": "python2-mgr-osa-dispatcher-4.0.9-1.6.2.noarch",
"product_id": "python2-mgr-osa-dispatcher-4.0.9-1.6.2.noarch"
}
},
{
"category": "product_version",
"name": "python2-mgr-osad-4.0.9-1.6.2.noarch",
"product": {
"name": "python2-mgr-osad-4.0.9-1.6.2.noarch",
"product_id": "python2-mgr-osad-4.0.9-1.6.2.noarch"
}
},
{
"category": "product_version",
"name": "python2-mgr-virtualization-common-4.0.8-1.8.3.noarch",
"product": {
"name": "python2-mgr-virtualization-common-4.0.8-1.8.3.noarch",
"product_id": "python2-mgr-virtualization-common-4.0.8-1.8.3.noarch"
}
},
{
"category": "product_version",
"name": "python2-mgr-virtualization-host-4.0.8-1.8.3.noarch",
"product": {
"name": "python2-mgr-virtualization-host-4.0.8-1.8.3.noarch",
"product_id": "python2-mgr-virtualization-host-4.0.8-1.8.3.noarch"
}
},
{
"category": "product_version",
"name": "python2-rhnlib-4.0.11-21.16.1.noarch",
"product": {
"name": "python2-rhnlib-4.0.11-21.16.1.noarch",
"product_id": "python2-rhnlib-4.0.11-21.16.1.noarch"
}
},
{
"category": "product_version",
"name": "spacecmd-4.0.14-38.49.1.noarch",
"product": {
"name": "spacecmd-4.0.14-38.49.1.noarch",
"product_id": "spacecmd-4.0.14-38.49.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-4.0.25-55.41.1.noarch",
"product": {
"name": "spacewalk-backend-4.0.25-55.41.1.noarch",
"product_id": "spacewalk-backend-4.0.25-55.41.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-app-4.0.25-55.41.1.noarch",
"product": {
"name": "spacewalk-backend-app-4.0.25-55.41.1.noarch",
"product_id": "spacewalk-backend-app-4.0.25-55.41.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-applet-4.0.25-55.41.1.noarch",
"product": {
"name": "spacewalk-backend-applet-4.0.25-55.41.1.noarch",
"product_id": "spacewalk-backend-applet-4.0.25-55.41.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-cdn-4.0.25-55.41.1.noarch",
"product": {
"name": "spacewalk-backend-cdn-4.0.25-55.41.1.noarch",
"product_id": "spacewalk-backend-cdn-4.0.25-55.41.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-4.0.25-55.41.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-4.0.25-55.41.1.noarch",
"product_id": "spacewalk-backend-config-files-4.0.25-55.41.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-common-4.0.25-55.41.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-common-4.0.25-55.41.1.noarch",
"product_id": "spacewalk-backend-config-files-common-4.0.25-55.41.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-tool-4.0.25-55.41.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-tool-4.0.25-55.41.1.noarch",
"product_id": "spacewalk-backend-config-files-tool-4.0.25-55.41.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-4.0.25-55.41.1.noarch",
"product": {
"name": "spacewalk-backend-iss-4.0.25-55.41.1.noarch",
"product_id": "spacewalk-backend-iss-4.0.25-55.41.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-export-4.0.25-55.41.1.noarch",
"product": {
"name": "spacewalk-backend-iss-export-4.0.25-55.41.1.noarch",
"product_id": "spacewalk-backend-iss-export-4.0.25-55.41.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-4.0.25-55.41.1.noarch",
"product": {
"name": "spacewalk-backend-libs-4.0.25-55.41.1.noarch",
"product_id": "spacewalk-backend-libs-4.0.25-55.41.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-package-push-server-4.0.25-55.41.1.noarch",
"product": {
"name": "spacewalk-backend-package-push-server-4.0.25-55.41.1.noarch",
"product_id": "spacewalk-backend-package-push-server-4.0.25-55.41.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-server-4.0.25-55.41.1.noarch",
"product": {
"name": "spacewalk-backend-server-4.0.25-55.41.1.noarch",
"product_id": "spacewalk-backend-server-4.0.25-55.41.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-4.0.25-55.41.1.noarch",
"product": {
"name": "spacewalk-backend-sql-4.0.25-55.41.1.noarch",
"product_id": "spacewalk-backend-sql-4.0.25-55.41.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-oracle-4.0.25-55.41.1.noarch",
"product": {
"name": "spacewalk-backend-sql-oracle-4.0.25-55.41.1.noarch",
"product_id": "spacewalk-backend-sql-oracle-4.0.25-55.41.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-postgresql-4.0.25-55.41.1.noarch",
"product": {
"name": "spacewalk-backend-sql-postgresql-4.0.25-55.41.1.noarch",
"product_id": "spacewalk-backend-sql-postgresql-4.0.25-55.41.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-tools-4.0.25-55.41.1.noarch",
"product": {
"name": "spacewalk-backend-tools-4.0.25-55.41.1.noarch",
"product_id": "spacewalk-backend-tools-4.0.25-55.41.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xml-export-libs-4.0.25-55.41.1.noarch",
"product": {
"name": "spacewalk-backend-xml-export-libs-4.0.25-55.41.1.noarch",
"product_id": "spacewalk-backend-xml-export-libs-4.0.25-55.41.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xmlrpc-4.0.25-55.41.1.noarch",
"product": {
"name": "spacewalk-backend-xmlrpc-4.0.25-55.41.1.noarch",
"product_id": "spacewalk-backend-xmlrpc-4.0.25-55.41.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-remote-utils-4.0.5-24.12.2.noarch",
"product": {
"name": "spacewalk-remote-utils-4.0.5-24.12.2.noarch",
"product_id": "spacewalk-remote-utils-4.0.5-24.12.2.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-2.11.1-1.6.2.ppc64le",
"product": {
"name": "golang-github-prometheus-prometheus-2.11.1-1.6.2.ppc64le",
"product_id": "golang-github-prometheus-prometheus-2.11.1-1.6.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-2.11.1-1.6.2.s390x",
"product": {
"name": "golang-github-prometheus-prometheus-2.11.1-1.6.2.s390x",
"product_id": "golang-github-prometheus-prometheus-2.11.1-1.6.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-2.11.1-1.6.2.x86_64",
"product": {
"name": "golang-github-prometheus-prometheus-2.11.1-1.6.2.x86_64",
"product_id": "golang-github-prometheus-prometheus-2.11.1-1.6.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Manager Client Tools 12",
"product": {
"name": "SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12"
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-prometheus-2.11.1-1.6.2.aarch64 as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:golang-github-prometheus-prometheus-2.11.1-1.6.2.aarch64"
},
"product_reference": "golang-github-prometheus-prometheus-2.11.1-1.6.2.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-prometheus-2.11.1-1.6.2.ppc64le as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:golang-github-prometheus-prometheus-2.11.1-1.6.2.ppc64le"
},
"product_reference": "golang-github-prometheus-prometheus-2.11.1-1.6.2.ppc64le",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-prometheus-2.11.1-1.6.2.s390x as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:golang-github-prometheus-prometheus-2.11.1-1.6.2.s390x"
},
"product_reference": "golang-github-prometheus-prometheus-2.11.1-1.6.2.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-prometheus-2.11.1-1.6.2.x86_64 as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:golang-github-prometheus-prometheus-2.11.1-1.6.2.x86_64"
},
"product_reference": "golang-github-prometheus-prometheus-2.11.1-1.6.2.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kiwi-desc-saltboot-0.1.1564399963.cf19a13-1.12.1.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:kiwi-desc-saltboot-0.1.1564399963.cf19a13-1.12.1.noarch"
},
"product_reference": "kiwi-desc-saltboot-0.1.1564399963.cf19a13-1.12.1.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-4.0.9-1.6.4.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:mgr-cfg-4.0.9-1.6.4.noarch"
},
"product_reference": "mgr-cfg-4.0.9-1.6.4.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-actions-4.0.9-1.6.4.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:mgr-cfg-actions-4.0.9-1.6.4.noarch"
},
"product_reference": "mgr-cfg-actions-4.0.9-1.6.4.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-client-4.0.9-1.6.4.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:mgr-cfg-client-4.0.9-1.6.4.noarch"
},
"product_reference": "mgr-cfg-client-4.0.9-1.6.4.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-cfg-management-4.0.9-1.6.4.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:mgr-cfg-management-4.0.9-1.6.4.noarch"
},
"product_reference": "mgr-cfg-management-4.0.9-1.6.4.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-daemon-4.0.7-1.8.2.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:mgr-daemon-4.0.7-1.8.2.noarch"
},
"product_reference": "mgr-daemon-4.0.7-1.8.2.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-osad-4.0.9-1.6.2.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:mgr-osad-4.0.9-1.6.2.noarch"
},
"product_reference": "mgr-osad-4.0.9-1.6.2.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgr-virtualization-host-4.0.8-1.8.3.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:mgr-virtualization-host-4.0.8-1.8.3.noarch"
},
"product_reference": "mgr-virtualization-host-4.0.8-1.8.3.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-4.0.9-1.6.4.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:python2-mgr-cfg-4.0.9-1.6.4.noarch"
},
"product_reference": "python2-mgr-cfg-4.0.9-1.6.4.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-actions-4.0.9-1.6.4.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:python2-mgr-cfg-actions-4.0.9-1.6.4.noarch"
},
"product_reference": "python2-mgr-cfg-actions-4.0.9-1.6.4.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-client-4.0.9-1.6.4.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:python2-mgr-cfg-client-4.0.9-1.6.4.noarch"
},
"product_reference": "python2-mgr-cfg-client-4.0.9-1.6.4.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-cfg-management-4.0.9-1.6.4.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:python2-mgr-cfg-management-4.0.9-1.6.4.noarch"
},
"product_reference": "python2-mgr-cfg-management-4.0.9-1.6.4.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osa-common-4.0.9-1.6.2.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:python2-mgr-osa-common-4.0.9-1.6.2.noarch"
},
"product_reference": "python2-mgr-osa-common-4.0.9-1.6.2.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-osad-4.0.9-1.6.2.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:python2-mgr-osad-4.0.9-1.6.2.noarch"
},
"product_reference": "python2-mgr-osad-4.0.9-1.6.2.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-common-4.0.8-1.8.3.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:python2-mgr-virtualization-common-4.0.8-1.8.3.noarch"
},
"product_reference": "python2-mgr-virtualization-common-4.0.8-1.8.3.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-mgr-virtualization-host-4.0.8-1.8.3.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:python2-mgr-virtualization-host-4.0.8-1.8.3.noarch"
},
"product_reference": "python2-mgr-virtualization-host-4.0.8-1.8.3.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-rhnlib-4.0.11-21.16.1.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:python2-rhnlib-4.0.11-21.16.1.noarch"
},
"product_reference": "python2-rhnlib-4.0.11-21.16.1.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-4.0.14-38.49.1.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:spacecmd-4.0.14-38.49.1.noarch"
},
"product_reference": "spacecmd-4.0.14-38.49.1.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-4.0.25-55.41.1.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:spacewalk-backend-libs-4.0.25-55.41.1.noarch"
},
"product_reference": "spacewalk-backend-libs-4.0.25-55.41.1.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-remote-utils-4.0.5-24.12.2.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:spacewalk-remote-utils-4.0.5-24.12.2.noarch"
},
"product_reference": "spacewalk-remote-utils-4.0.5-24.12.2.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-10136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-10136"
}
],
"notes": [
{
"category": "general",
"text": "It was found that Spacewalk, all versions through 2.9, did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Manager Client Tools 12:golang-github-prometheus-prometheus-2.11.1-1.6.2.aarch64",
"SUSE Manager Client Tools 12:golang-github-prometheus-prometheus-2.11.1-1.6.2.ppc64le",
"SUSE Manager Client Tools 12:golang-github-prometheus-prometheus-2.11.1-1.6.2.s390x",
"SUSE Manager Client Tools 12:golang-github-prometheus-prometheus-2.11.1-1.6.2.x86_64",
"SUSE Manager Client Tools 12:kiwi-desc-saltboot-0.1.1564399963.cf19a13-1.12.1.noarch",
"SUSE Manager Client Tools 12:mgr-cfg-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:mgr-cfg-actions-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:mgr-cfg-client-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:mgr-cfg-management-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:mgr-daemon-4.0.7-1.8.2.noarch",
"SUSE Manager Client Tools 12:mgr-osad-4.0.9-1.6.2.noarch",
"SUSE Manager Client Tools 12:mgr-virtualization-host-4.0.8-1.8.3.noarch",
"SUSE Manager Client Tools 12:python2-mgr-cfg-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:python2-mgr-cfg-actions-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:python2-mgr-cfg-client-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:python2-mgr-cfg-management-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:python2-mgr-osa-common-4.0.9-1.6.2.noarch",
"SUSE Manager Client Tools 12:python2-mgr-osad-4.0.9-1.6.2.noarch",
"SUSE Manager Client Tools 12:python2-mgr-virtualization-common-4.0.8-1.8.3.noarch",
"SUSE Manager Client Tools 12:python2-mgr-virtualization-host-4.0.8-1.8.3.noarch",
"SUSE Manager Client Tools 12:python2-rhnlib-4.0.11-21.16.1.noarch",
"SUSE Manager Client Tools 12:spacecmd-4.0.14-38.49.1.noarch",
"SUSE Manager Client Tools 12:spacewalk-backend-libs-4.0.25-55.41.1.noarch",
"SUSE Manager Client Tools 12:spacewalk-remote-utils-4.0.5-24.12.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-10136",
"url": "https://www.suse.com/security/cve/CVE-2019-10136"
},
{
"category": "external",
"summary": "SUSE Bug 1136480 for CVE-2019-10136",
"url": "https://bugzilla.suse.com/1136480"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Manager Client Tools 12:golang-github-prometheus-prometheus-2.11.1-1.6.2.aarch64",
"SUSE Manager Client Tools 12:golang-github-prometheus-prometheus-2.11.1-1.6.2.ppc64le",
"SUSE Manager Client Tools 12:golang-github-prometheus-prometheus-2.11.1-1.6.2.s390x",
"SUSE Manager Client Tools 12:golang-github-prometheus-prometheus-2.11.1-1.6.2.x86_64",
"SUSE Manager Client Tools 12:kiwi-desc-saltboot-0.1.1564399963.cf19a13-1.12.1.noarch",
"SUSE Manager Client Tools 12:mgr-cfg-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:mgr-cfg-actions-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:mgr-cfg-client-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:mgr-cfg-management-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:mgr-daemon-4.0.7-1.8.2.noarch",
"SUSE Manager Client Tools 12:mgr-osad-4.0.9-1.6.2.noarch",
"SUSE Manager Client Tools 12:mgr-virtualization-host-4.0.8-1.8.3.noarch",
"SUSE Manager Client Tools 12:python2-mgr-cfg-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:python2-mgr-cfg-actions-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:python2-mgr-cfg-client-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:python2-mgr-cfg-management-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:python2-mgr-osa-common-4.0.9-1.6.2.noarch",
"SUSE Manager Client Tools 12:python2-mgr-osad-4.0.9-1.6.2.noarch",
"SUSE Manager Client Tools 12:python2-mgr-virtualization-common-4.0.8-1.8.3.noarch",
"SUSE Manager Client Tools 12:python2-mgr-virtualization-host-4.0.8-1.8.3.noarch",
"SUSE Manager Client Tools 12:python2-rhnlib-4.0.11-21.16.1.noarch",
"SUSE Manager Client Tools 12:spacecmd-4.0.14-38.49.1.noarch",
"SUSE Manager Client Tools 12:spacewalk-backend-libs-4.0.25-55.41.1.noarch",
"SUSE Manager Client Tools 12:spacewalk-remote-utils-4.0.5-24.12.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE Manager Client Tools 12:golang-github-prometheus-prometheus-2.11.1-1.6.2.aarch64",
"SUSE Manager Client Tools 12:golang-github-prometheus-prometheus-2.11.1-1.6.2.ppc64le",
"SUSE Manager Client Tools 12:golang-github-prometheus-prometheus-2.11.1-1.6.2.s390x",
"SUSE Manager Client Tools 12:golang-github-prometheus-prometheus-2.11.1-1.6.2.x86_64",
"SUSE Manager Client Tools 12:kiwi-desc-saltboot-0.1.1564399963.cf19a13-1.12.1.noarch",
"SUSE Manager Client Tools 12:mgr-cfg-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:mgr-cfg-actions-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:mgr-cfg-client-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:mgr-cfg-management-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:mgr-daemon-4.0.7-1.8.2.noarch",
"SUSE Manager Client Tools 12:mgr-osad-4.0.9-1.6.2.noarch",
"SUSE Manager Client Tools 12:mgr-virtualization-host-4.0.8-1.8.3.noarch",
"SUSE Manager Client Tools 12:python2-mgr-cfg-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:python2-mgr-cfg-actions-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:python2-mgr-cfg-client-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:python2-mgr-cfg-management-4.0.9-1.6.4.noarch",
"SUSE Manager Client Tools 12:python2-mgr-osa-common-4.0.9-1.6.2.noarch",
"SUSE Manager Client Tools 12:python2-mgr-osad-4.0.9-1.6.2.noarch",
"SUSE Manager Client Tools 12:python2-mgr-virtualization-common-4.0.8-1.8.3.noarch",
"SUSE Manager Client Tools 12:python2-mgr-virtualization-host-4.0.8-1.8.3.noarch",
"SUSE Manager Client Tools 12:python2-rhnlib-4.0.11-21.16.1.noarch",
"SUSE Manager Client Tools 12:spacecmd-4.0.14-38.49.1.noarch",
"SUSE Manager Client Tools 12:spacewalk-backend-libs-4.0.25-55.41.1.noarch",
"SUSE Manager Client Tools 12:spacewalk-remote-utils-4.0.5-24.12.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-05T15:32:27Z",
"details": "moderate"
}
],
"title": "CVE-2019-10136"
}
]
}
rhsa-2019:1661
Vulnerability from csaf_redhat
Published
2019-07-02 13:59
Modified
2024-11-22 13:26
Summary
Red Hat Security Advisory: spacewalk-backend security update
Notes
Topic
An update for spacewalk-backend is now available for Red Hat Satellite 5.8.
Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Spacewalk is an Open Source systems management solution that provides system provisioning, configuration and patching capabilities.
Security Fix(es):
* spacewalk: Insecure computation of authentication signatures during user authentication (CVE-2019-10136)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Low"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for spacewalk-backend is now available for Red Hat Satellite 5.8.\n\nRed Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Spacewalk is an Open Source systems management solution that provides system provisioning, configuration and patching capabilities.\n\nSecurity Fix(es):\n\n* spacewalk: Insecure computation of authentication signatures during user authentication (CVE-2019-10136)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2019:1661",
"url": "https://access.redhat.com/errata/RHSA-2019:1661"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#low",
"url": "https://access.redhat.com/security/updates/classification/#low"
},
{
"category": "external",
"summary": "1708696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1708696"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_1661.json"
}
],
"title": "Red Hat Security Advisory: spacewalk-backend security update",
"tracking": {
"current_release_date": "2024-11-22T13:26:35+00:00",
"generator": {
"date": "2024-11-22T13:26:35+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2019:1661",
"initial_release_date": "2019-07-02T13:59:55+00:00",
"revision_history": [
{
"date": "2019-07-02T13:59:55+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2019-07-02T13:59:56+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T13:26:35+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Satellite 5.8 (RHEL v.6)",
"product": {
"name": "Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:network_satellite:5.8::el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Satellite"
},
{
"branches": [
{
"category": "product_version",
"name": "spacewalk-backend-package-push-server-0:2.5.3-177.el6sat.noarch",
"product": {
"name": "spacewalk-backend-package-push-server-0:2.5.3-177.el6sat.noarch",
"product_id": "spacewalk-backend-package-push-server-0:2.5.3-177.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-package-push-server@2.5.3-177.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-cdn-0:2.5.3-177.el6sat.noarch",
"product": {
"name": "spacewalk-backend-cdn-0:2.5.3-177.el6sat.noarch",
"product_id": "spacewalk-backend-cdn-0:2.5.3-177.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-cdn@2.5.3-177.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-common-0:2.5.3-177.el6sat.noarch",
"product": {
"name": "spacewalk-backend-config-files-common-0:2.5.3-177.el6sat.noarch",
"product_id": "spacewalk-backend-config-files-common-0:2.5.3-177.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-config-files-common@2.5.3-177.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-applet-0:2.5.3-177.el6sat.noarch",
"product": {
"name": "spacewalk-backend-applet-0:2.5.3-177.el6sat.noarch",
"product_id": "spacewalk-backend-applet-0:2.5.3-177.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-applet@2.5.3-177.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-0:2.5.3-177.el6sat.noarch",
"product": {
"name": "spacewalk-backend-libs-0:2.5.3-177.el6sat.noarch",
"product_id": "spacewalk-backend-libs-0:2.5.3-177.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-libs@2.5.3-177.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xml-export-libs-0:2.5.3-177.el6sat.noarch",
"product": {
"name": "spacewalk-backend-xml-export-libs-0:2.5.3-177.el6sat.noarch",
"product_id": "spacewalk-backend-xml-export-libs-0:2.5.3-177.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-xml-export-libs@2.5.3-177.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-app-0:2.5.3-177.el6sat.noarch",
"product": {
"name": "spacewalk-backend-app-0:2.5.3-177.el6sat.noarch",
"product_id": "spacewalk-backend-app-0:2.5.3-177.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-app@2.5.3-177.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-tools-0:2.5.3-177.el6sat.noarch",
"product": {
"name": "spacewalk-backend-tools-0:2.5.3-177.el6sat.noarch",
"product_id": "spacewalk-backend-tools-0:2.5.3-177.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-tools@2.5.3-177.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-0:2.5.3-177.el6sat.noarch",
"product": {
"name": "spacewalk-backend-config-files-0:2.5.3-177.el6sat.noarch",
"product_id": "spacewalk-backend-config-files-0:2.5.3-177.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-config-files@2.5.3-177.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-postgresql-0:2.5.3-177.el6sat.noarch",
"product": {
"name": "spacewalk-backend-sql-postgresql-0:2.5.3-177.el6sat.noarch",
"product_id": "spacewalk-backend-sql-postgresql-0:2.5.3-177.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-sql-postgresql@2.5.3-177.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-server-0:2.5.3-177.el6sat.noarch",
"product": {
"name": "spacewalk-backend-server-0:2.5.3-177.el6sat.noarch",
"product_id": "spacewalk-backend-server-0:2.5.3-177.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-server@2.5.3-177.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-0:2.5.3-177.el6sat.noarch",
"product": {
"name": "spacewalk-backend-0:2.5.3-177.el6sat.noarch",
"product_id": "spacewalk-backend-0:2.5.3-177.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend@2.5.3-177.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-oracle-0:2.5.3-177.el6sat.noarch",
"product": {
"name": "spacewalk-backend-sql-oracle-0:2.5.3-177.el6sat.noarch",
"product_id": "spacewalk-backend-sql-oracle-0:2.5.3-177.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-sql-oracle@2.5.3-177.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-export-0:2.5.3-177.el6sat.noarch",
"product": {
"name": "spacewalk-backend-iss-export-0:2.5.3-177.el6sat.noarch",
"product_id": "spacewalk-backend-iss-export-0:2.5.3-177.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-iss-export@2.5.3-177.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-0:2.5.3-177.el6sat.noarch",
"product": {
"name": "spacewalk-backend-iss-0:2.5.3-177.el6sat.noarch",
"product_id": "spacewalk-backend-iss-0:2.5.3-177.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-iss@2.5.3-177.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-tool-0:2.5.3-177.el6sat.noarch",
"product": {
"name": "spacewalk-backend-config-files-tool-0:2.5.3-177.el6sat.noarch",
"product_id": "spacewalk-backend-config-files-tool-0:2.5.3-177.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-config-files-tool@2.5.3-177.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xmlrpc-0:2.5.3-177.el6sat.noarch",
"product": {
"name": "spacewalk-backend-xmlrpc-0:2.5.3-177.el6sat.noarch",
"product_id": "spacewalk-backend-xmlrpc-0:2.5.3-177.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-xmlrpc@2.5.3-177.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-0:2.5.3-177.el6sat.noarch",
"product": {
"name": "spacewalk-backend-sql-0:2.5.3-177.el6sat.noarch",
"product_id": "spacewalk-backend-sql-0:2.5.3-177.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-sql@2.5.3-177.el6sat?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "spacewalk-backend-0:2.5.3-177.el6sat.src",
"product": {
"name": "spacewalk-backend-0:2.5.3-177.el6sat.src",
"product_id": "spacewalk-backend-0:2.5.3-177.el6sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend@2.5.3-177.el6sat?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-0:2.5.3-177.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-0:2.5.3-177.el6sat.noarch"
},
"product_reference": "spacewalk-backend-0:2.5.3-177.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-0:2.5.3-177.el6sat.src as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-0:2.5.3-177.el6sat.src"
},
"product_reference": "spacewalk-backend-0:2.5.3-177.el6sat.src",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-app-0:2.5.3-177.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-app-0:2.5.3-177.el6sat.noarch"
},
"product_reference": "spacewalk-backend-app-0:2.5.3-177.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-applet-0:2.5.3-177.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-applet-0:2.5.3-177.el6sat.noarch"
},
"product_reference": "spacewalk-backend-applet-0:2.5.3-177.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-cdn-0:2.5.3-177.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-cdn-0:2.5.3-177.el6sat.noarch"
},
"product_reference": "spacewalk-backend-cdn-0:2.5.3-177.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-0:2.5.3-177.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-config-files-0:2.5.3-177.el6sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-0:2.5.3-177.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-common-0:2.5.3-177.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-config-files-common-0:2.5.3-177.el6sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-common-0:2.5.3-177.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-tool-0:2.5.3-177.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-config-files-tool-0:2.5.3-177.el6sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-tool-0:2.5.3-177.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-0:2.5.3-177.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-iss-0:2.5.3-177.el6sat.noarch"
},
"product_reference": "spacewalk-backend-iss-0:2.5.3-177.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-export-0:2.5.3-177.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-iss-export-0:2.5.3-177.el6sat.noarch"
},
"product_reference": "spacewalk-backend-iss-export-0:2.5.3-177.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-0:2.5.3-177.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-libs-0:2.5.3-177.el6sat.noarch"
},
"product_reference": "spacewalk-backend-libs-0:2.5.3-177.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-package-push-server-0:2.5.3-177.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-package-push-server-0:2.5.3-177.el6sat.noarch"
},
"product_reference": "spacewalk-backend-package-push-server-0:2.5.3-177.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-server-0:2.5.3-177.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-server-0:2.5.3-177.el6sat.noarch"
},
"product_reference": "spacewalk-backend-server-0:2.5.3-177.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-0:2.5.3-177.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-sql-0:2.5.3-177.el6sat.noarch"
},
"product_reference": "spacewalk-backend-sql-0:2.5.3-177.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-oracle-0:2.5.3-177.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-sql-oracle-0:2.5.3-177.el6sat.noarch"
},
"product_reference": "spacewalk-backend-sql-oracle-0:2.5.3-177.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-postgresql-0:2.5.3-177.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-sql-postgresql-0:2.5.3-177.el6sat.noarch"
},
"product_reference": "spacewalk-backend-sql-postgresql-0:2.5.3-177.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-tools-0:2.5.3-177.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-tools-0:2.5.3-177.el6sat.noarch"
},
"product_reference": "spacewalk-backend-tools-0:2.5.3-177.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xml-export-libs-0:2.5.3-177.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-xml-export-libs-0:2.5.3-177.el6sat.noarch"
},
"product_reference": "spacewalk-backend-xml-export-libs-0:2.5.3-177.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xmlrpc-0:2.5.3-177.el6sat.noarch as a component of Red Hat Satellite 5.8 (RHEL v.6)",
"product_id": "6Server-Satellite58:spacewalk-backend-xmlrpc-0:2.5.3-177.el6sat.noarch"
},
"product_reference": "spacewalk-backend-xmlrpc-0:2.5.3-177.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite58"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Malte Kraus"
],
"organization": "SUSE"
}
],
"cve": "CVE-2019-10136",
"cwe": {
"id": "CWE-347",
"name": "Improper Verification of Cryptographic Signature"
},
"discovery_date": "2019-04-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1708696"
}
],
"notes": [
{
"category": "description",
"text": "It was found that Spacewalk did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "spacewalk: Insecure computation of authentication signatures during user authentication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-Satellite58:spacewalk-backend-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-0:2.5.3-177.el6sat.src",
"6Server-Satellite58:spacewalk-backend-app-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-applet-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-cdn-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-common-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-tool-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-iss-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-iss-export-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-libs-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-package-push-server-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-server-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-oracle-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-postgresql-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-tools-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-xml-export-libs-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-xmlrpc-0:2.5.3-177.el6sat.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-10136"
},
{
"category": "external",
"summary": "RHBZ#1708696",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1708696"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-10136",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10136"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-10136",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10136"
}
],
"release_date": "2019-07-01T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-07-02T13:59:55+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\").",
"product_ids": [
"6Server-Satellite58:spacewalk-backend-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-0:2.5.3-177.el6sat.src",
"6Server-Satellite58:spacewalk-backend-app-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-applet-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-cdn-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-common-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-tool-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-iss-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-iss-export-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-libs-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-package-push-server-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-server-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-oracle-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-postgresql-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-tools-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-xml-export-libs-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-xmlrpc-0:2.5.3-177.el6sat.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:1661"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"6Server-Satellite58:spacewalk-backend-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-0:2.5.3-177.el6sat.src",
"6Server-Satellite58:spacewalk-backend-app-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-applet-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-cdn-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-common-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-config-files-tool-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-iss-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-iss-export-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-libs-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-package-push-server-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-server-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-oracle-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-sql-postgresql-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-tools-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-xml-export-libs-0:2.5.3-177.el6sat.noarch",
"6Server-Satellite58:spacewalk-backend-xmlrpc-0:2.5.3-177.el6sat.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "spacewalk: Insecure computation of authentication signatures during user authentication"
}
]
}
ghsa-w2m4-8m7f-6vwv
Vulnerability from github
Published
2022-05-24 16:49
Modified
2023-02-02 18:30
Severity ?
VLAI Severity ?
Details
It was found that Spacewalk, all versions through 2.8, did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum.
{
"affected": [],
"aliases": [
"CVE-2019-10136"
],
"database_specific": {
"cwe_ids": [
"CWE-347"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2019-07-02T20:15:00Z",
"severity": "MODERATE"
},
"details": "It was found that Spacewalk, all versions through 2.8, did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum.",
"id": "GHSA-w2m4-8m7f-6vwv",
"modified": "2023-02-02T18:30:55Z",
"published": "2022-05-24T16:49:15Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10136"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2019:1661"
},
{
"type": "WEB",
"url": "https://access.redhat.com/security/cve/CVE-2019-10136"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1708696"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10136"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/109029"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
}
]
}
fkie_cve-2019-10136
Vulnerability from fkie_nvd
Published
2019-07-02 20:15
Modified
2024-11-21 04:18
Severity ?
4.3 (Medium) - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
4.3 (Medium) - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
4.3 (Medium) - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Summary
It was found that Spacewalk, all versions through 2.9, did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| secalert@redhat.com | http://www.securityfocus.com/bid/109029 | Third Party Advisory | |
| secalert@redhat.com | https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10136 | Issue Tracking, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/109029 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10136 | Issue Tracking, Vendor Advisory |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:redhat:satellite:5.8:*:*:*:*:*:*:*",
"matchCriteriaId": "F4F86C3C-B99C-44C6-97D7-163DC3F59687",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:spacewalk:*:*:*:*:*:*:*:*",
"matchCriteriaId": "8F4D92AC-1EBC-4E45-A682-6D77E361F353",
"versionEndIncluding": "2.9",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "It was found that Spacewalk, all versions through 2.9, did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum."
},
{
"lang": "es",
"value": "Se encontr\u00f3 que Spacewalk, en todas las versiones hasta la 2.8, no computaba de forma segura las sumas de comprobaci\u00f3n de token del cliente. Un atacante con un conjunto de encabezados v\u00e1lidos, pero expirados y autenticados, podr\u00eda mover algunos d\u00edgitos, extendiendo artificialmente la validez de la sesi\u00f3n sin modificar la suma de comprobaci\u00f3n."
}
],
"id": "CVE-2019-10136",
"lastModified": "2024-11-21T04:18:29.543",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 4.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4,
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2019-07-02T20:15:11.370",
"references": [
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "http://www.securityfocus.com/bid/109029"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Vendor Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10136"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "http://www.securityfocus.com/bid/109029"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Vendor Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10136"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-347"
}
],
"source": "secalert@redhat.com",
"type": "Primary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-347"
}
],
"source": "nvd@nist.gov",
"type": "Secondary"
}
]
}
gsd-2019-10136
Vulnerability from gsd
Modified
2023-12-13 01:23
Details
It was found that Spacewalk, all versions through 2.9, did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2019-10136",
"description": "It was found that Spacewalk, all versions through 2.9, did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum.",
"id": "GSD-2019-10136",
"references": [
"https://www.suse.com/security/cve/CVE-2019-10136.html",
"https://access.redhat.com/errata/RHSA-2019:1661"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2019-10136"
],
"details": "It was found that Spacewalk, all versions through 2.9, did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum.",
"id": "GSD-2019-10136",
"modified": "2023-12-13T01:23:57.504926Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2019-10136",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "spacewalk",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "spacewalk all through 2.9"
}
]
}
}
]
},
"vendor_name": "spacewalkproject"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "It was found that Spacewalk, all versions through 2.9, did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum."
}
]
},
"impact": {
"cvss": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"cweId": "CWE-347",
"lang": "eng",
"value": "CWE-347"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.securityfocus.com/bid/109029",
"refsource": "MISC",
"url": "http://www.securityfocus.com/bid/109029"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10136",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10136"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:redhat:satellite:5.8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:spacewalk:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.9",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2019-10136"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "It was found that Spacewalk, all versions through 2.9, did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-347"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10136",
"refsource": "CONFIRM",
"tags": [
"Issue Tracking",
"Vendor Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10136"
},
{
"name": "109029",
"refsource": "BID",
"tags": [
"Third Party Advisory"
],
"url": "http://www.securityfocus.com/bid/109029"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 4.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4
}
},
"lastModifiedDate": "2023-02-12T23:32Z",
"publishedDate": "2019-07-02T20:15Z"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…