Security update 5.0.8 for Multi-Linux Manager Client Tools
| Announcement ID: | SUSE-SU-2026:2241-1 |
|---|---|
| Release Date: | 2026-06-03T13:58:35Z |
| Rating: | important |
| References: | |
| Cross-References: | |
| CVSS scores: |
|
| Affected Products: |
|
An update that solves one vulnerability, contains one feature and has seven security fixes can now be installed.
Description:
This update fixes the following issues:
prometheus-postgres_exporter:
-
Security Fixes:
-
CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248699)
golang-github-QubitProducts-exporter_exporter:
-
Security Fixes:
-
CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248707)
golang-github-prometheus-node_exporter:
-
Highlights of changes and bug fixes:
-
Packaging changes:
- Pinned golang.org/x/net to v0.37.0 for Go 1.22 compatibility
-
Version 1.10.2:
- Fixed typo in Zswap metric name (meminfo)
-
Version 1.10.1:
- Fixed mount points being collected multiple times (filesystem)
- Refactored mountinfo parsing (bsc#1261810)
- Added Zswap/Zswapped metrics (meminfo)
-
Version 1.10.0:
- New collectors: PCIe devices, swaps
- Added systemd virtualization metrics, AIX metrics
- WiFi packet metrics, additional PCIe and TLB metrics
- Changed mdadm to use sysfs, added erofs to excluded filesystems
- Fixed bugs: cpufreq collector, ethtool metrics
spacecmd:
-
Version 5.0.16-0:
-
Update translation strings
uyuni-tools:
-
Version 0.1.39-0:
-
mgrpxy ssh tuning should happen before crypto policies (bsc#1254619)
- Fix default value for helm registry (bsc#1258927).
- Use static supportconfig name to avoid dynamic search (bsc#1257941)
- Do not nest multiple tarball files and instead collect all files into one tarball (bsc#1252964)
- Show where final tarball was generated (bsc#1259208)
Patch Instructions:
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
-
SUSE Manager Client Tools for SLE 12
zypper in -t patch SUSE-SLE-Manager-Tools-12-2026-2241=1 -
SUSE Linux Enterprise Server 12 SP5 LTSS
zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-2026-2241=1 -
SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security
zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-2241=1
Package List:
-
SUSE Manager Client Tools for SLE 12 (aarch64 ppc64le s390x x86_64)
- mgrctl-0.1.39-1.33.2
- mgrctl-debuginfo-0.1.39-1.33.2
- golang-github-QubitProducts-exporter_exporter-0.4.0-1.18.1
- prometheus-postgres_exporter-0.10.1-1.20.1
- golang-github-prometheus-node_exporter-1.10.2-1.42.3
-
SUSE Manager Client Tools for SLE 12 (noarch)
- mgrctl-bash-completion-0.1.39-1.33.2
- mgrctl-zsh-completion-0.1.39-1.33.2
- spacecmd-5.0.16-38.168.2
-
SUSE Linux Enterprise Server 12 SP5 LTSS (aarch64 ppc64le s390x x86_64)
- golang-github-prometheus-node_exporter-1.10.2-1.42.3
-
SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (x86_64)
- golang-github-prometheus-node_exporter-1.10.2-1.42.3
References:
- https://www.suse.com/security/cve/CVE-2022-21698.html
- https://bugzilla.suse.com/show_bug.cgi?id=1248699
- https://bugzilla.suse.com/show_bug.cgi?id=1248707
- https://bugzilla.suse.com/show_bug.cgi?id=1252964
- https://bugzilla.suse.com/show_bug.cgi?id=1254619
- https://bugzilla.suse.com/show_bug.cgi?id=1257941
- https://bugzilla.suse.com/show_bug.cgi?id=1258927
- https://bugzilla.suse.com/show_bug.cgi?id=1259208
- https://bugzilla.suse.com/show_bug.cgi?id=1261810
- https://jira.suse.com/browse/MSQA-1052