Maintenance update for SUSE Manager 5.0: Server, Proxy and Retail Branch Server

Announcement ID:	SUSE-SU-2024:4009-1
Release Date:	2024-11-18T13:21:54Z
Rating:	critical
References:	bsc#1228945 bsc#1229077 bsc#1229923 bsc#1230255 bsc#1230536 bsc#1231332 bsc#1231568 bsc#1231852 bsc#1231900 bsc#1231922 jsc#MSQA-863
Cross-References:	CVE-2024-47533 CVE-2024-49502 CVE-2024-49503
CVSS scores:	CVE-2024-47533 ( SUSE ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2024-49502 ( SUSE ): 4.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N CVE-2024-49502 ( SUSE ): 3.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:N CVE-2024-49503 ( SUSE ): 4.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N CVE-2024-49503 ( SUSE ): 3.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:N
Affected Products:	SUSE Linux Enterprise Micro 5.5 SUSE Manager Proxy 5.0 Extension 5.0 SUSE Manager Retail Branch Server 5.0 Extension 5.0 SUSE Manager Server 5.0 Extension 5.0

An update that solves three vulnerabilities, contains one feature and has seven security fixes can now be installed.

Recommended update for SUSE Manager Proxy 5.0

Description:

This update fixes the following issues:

proxy-httpd-image:

Version 5.0.8
Store Proxy FQDN in rhn.conf for auth token use (bsc#1230255)

proxy-salt-broker-image:

Version 5.0.8
Update for next release

proxy-squid-image:

Version 5.0.8
Update for next release

proxy-ssh-image:

Version 5.0.8
Update for next release

proxy-tftpd-image:

Version 5.0.8
Update for next release

Recommended update for SUSE Manager Retail Branch Server 5.0

Description:

This update fixes the following issues:

proxy-httpd-image:

Version 5.0.8
Store Proxy FQDN in rhn.conf for auth token use (bsc#1230255)

proxy-salt-broker-image:

Version 5.0.8
Update for next release

proxy-squid-image:

Version 5.0.8
Update for next release

proxy-ssh-image:

Version 5.0.8
Update for next release

proxy-tftpd-image:

Version 5.0.8
Update for next release

Security update for SUSE Manager Server 5.0

Description:

This update fixes the following issues:

server-attestation-image:

Version 5.0.6
Update for next release

server-hub-xmlrpc-api-image:

Version 5.0.8
Update for next release

server-image:

Version 5.0.9
Add HANA and cluster formulas to Server image (bsc#1230536)
Use /etc/krb5.conf.d for all kerberos related configurations (bsc#1229077)
Do not install outdated package "spacewalk-utils-extras" on Server image (bsc#1228945)
Fix package name search when syncing volumes data (bsc#1229923)

server-migration-14-16-image:

Version 5.0.9
Update for next release

susemanager-sync-data:

Version 5.0.8-0
Add SUSE Linux Enterprise 15 SP5 LTSS channel families
Add MicroOS PPC channel family
Set Ubuntu 22.04 to released
Version 5.0.7-0
Add Ubuntu 24.04 support
Add channel family for SLES 12 SP5 LTSS Extended Security

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

SUSE Manager Proxy 5.0 Extension 5.0
zypper in -t patch SUSE-SUSE-Manager-Proxy-5.0-2024-4009=1
SUSE Manager Retail Branch Server 5.0 Extension 5.0
zypper in -t patch SUSE-SUSE-Manager-Retail-Branch-Server-5.0-2024-4009=1
SUSE Manager Server 5.0 Extension 5.0
zypper in -t patch SUSE-SUSE-Manager-Server-5.0-2024-4009=1

Package List:

SUSE Manager Proxy 5.0 Extension 5.0 (aarch64)
- suse-manager-5.0-aarch64-proxy-ssh-image-5.0.2-7.6.9
- suse-manager-5.0-aarch64-proxy-squid-image-5.0.2-7.6.11
- suse-manager-5.0-aarch64-proxy-httpd-image-5.0.2-7.6.29
- suse-manager-5.0-aarch64-proxy-tftpd-image-5.0.2-7.6.9
- suse-manager-5.0-aarch64-proxy-salt-broker-image-5.0.2-7.6.30
SUSE Manager Proxy 5.0 Extension 5.0 (ppc64le)
- suse-manager-5.0-ppc64le-proxy-salt-broker-image-5.0.2-7.6.30
- suse-manager-5.0-ppc64le-proxy-squid-image-5.0.2-7.6.11
- suse-manager-5.0-ppc64le-proxy-ssh-image-5.0.2-7.6.9
- suse-manager-5.0-ppc64le-proxy-httpd-image-5.0.2-7.6.29
- suse-manager-5.0-ppc64le-proxy-tftpd-image-5.0.2-7.6.9
SUSE Manager Proxy 5.0 Extension 5.0 (s390x)
- suse-manager-5.0-s390x-proxy-ssh-image-5.0.2-7.6.9
- suse-manager-5.0-s390x-proxy-salt-broker-image-5.0.2-7.6.30
- suse-manager-5.0-s390x-proxy-httpd-image-5.0.2-7.6.29
- suse-manager-5.0-s390x-proxy-squid-image-5.0.2-7.6.11
- suse-manager-5.0-s390x-proxy-tftpd-image-5.0.2-7.6.9
SUSE Manager Proxy 5.0 Extension 5.0 (x86_64)
- suse-manager-5.0-x86_64-proxy-tftpd-image-5.0.2-7.6.9
- suse-manager-5.0-x86_64-proxy-ssh-image-5.0.2-7.6.9
- suse-manager-5.0-x86_64-proxy-salt-broker-image-5.0.2-7.6.30
- suse-manager-5.0-x86_64-proxy-squid-image-5.0.2-7.6.11
- suse-manager-5.0-x86_64-proxy-httpd-image-5.0.2-7.6.29
SUSE Manager Retail Branch Server 5.0 Extension 5.0 (aarch64)
- suse-manager-5.0-aarch64-proxy-ssh-image-5.0.2-7.6.9
- suse-manager-5.0-aarch64-proxy-squid-image-5.0.2-7.6.11
- suse-manager-5.0-aarch64-proxy-httpd-image-5.0.2-7.6.29
- suse-manager-5.0-aarch64-proxy-tftpd-image-5.0.2-7.6.9
- suse-manager-5.0-aarch64-proxy-salt-broker-image-5.0.2-7.6.30
SUSE Manager Retail Branch Server 5.0 Extension 5.0 (ppc64le)
- suse-manager-5.0-ppc64le-proxy-salt-broker-image-5.0.2-7.6.30
- suse-manager-5.0-ppc64le-proxy-squid-image-5.0.2-7.6.11
- suse-manager-5.0-ppc64le-proxy-ssh-image-5.0.2-7.6.9
- suse-manager-5.0-ppc64le-proxy-httpd-image-5.0.2-7.6.29
- suse-manager-5.0-ppc64le-proxy-tftpd-image-5.0.2-7.6.9
SUSE Manager Retail Branch Server 5.0 Extension 5.0 (s390x)
- suse-manager-5.0-s390x-proxy-ssh-image-5.0.2-7.6.9
- suse-manager-5.0-s390x-proxy-salt-broker-image-5.0.2-7.6.30
- suse-manager-5.0-s390x-proxy-httpd-image-5.0.2-7.6.29
- suse-manager-5.0-s390x-proxy-squid-image-5.0.2-7.6.11
- suse-manager-5.0-s390x-proxy-tftpd-image-5.0.2-7.6.9
SUSE Manager Retail Branch Server 5.0 Extension 5.0 (x86_64)
- suse-manager-5.0-x86_64-proxy-tftpd-image-5.0.2-7.6.9
- suse-manager-5.0-x86_64-proxy-ssh-image-5.0.2-7.6.9
- suse-manager-5.0-x86_64-proxy-salt-broker-image-5.0.2-7.6.30
- suse-manager-5.0-x86_64-proxy-squid-image-5.0.2-7.6.11
- suse-manager-5.0-x86_64-proxy-httpd-image-5.0.2-7.6.29
SUSE Manager Server 5.0 Extension 5.0 (aarch64)
- suse-manager-5.0-aarch64-server-image-5.0.2-7.6.32
- suse-manager-5.0-aarch64-server-migration-14-16-image-5.0.2-7.6.25
- suse-manager-5.0-aarch64-server-attestation-image-5.0.2-6.6.9
- suse-manager-5.0-aarch64-server-hub-xmlrpc-api-image-5.0.2-6.6.12
SUSE Manager Server 5.0 Extension 5.0 (ppc64le)
- suse-manager-5.0-ppc64le-server-image-5.0.2-7.6.32
- suse-manager-5.0-ppc64le-server-attestation-image-5.0.2-6.6.9
- suse-manager-5.0-ppc64le-server-hub-xmlrpc-api-image-5.0.2-6.6.12
- suse-manager-5.0-ppc64le-server-migration-14-16-image-5.0.2-7.6.25
SUSE Manager Server 5.0 Extension 5.0 (s390x)
- suse-manager-5.0-s390x-server-migration-14-16-image-5.0.2-7.6.25
- suse-manager-5.0-s390x-server-attestation-image-5.0.2-6.6.9
- suse-manager-5.0-s390x-server-hub-xmlrpc-api-image-5.0.2-6.6.12
- suse-manager-5.0-s390x-server-image-5.0.2-7.6.32
SUSE Manager Server 5.0 Extension 5.0 (x86_64)
- suse-manager-5.0-x86_64-server-image-5.0.2-7.6.32
- suse-manager-5.0-x86_64-server-hub-xmlrpc-api-image-5.0.2-6.6.12
- suse-manager-5.0-x86_64-server-attestation-image-5.0.2-6.6.9
- suse-manager-5.0-x86_64-server-migration-14-16-image-5.0.2-7.6.25

Maintenance update for SUSE Manager 5.0: Server, Proxy and Retail Branch Server

Recommended update for SUSE Manager Proxy 5.0

Description:

Recommended update for SUSE Manager Retail Branch Server 5.0

Description:

Security update for SUSE Manager Server 5.0

Description:

Patch Instructions:

Package List:

References: