Recommended update for SUSE Manager 4.1.15 Release Notes

Announcement ID:	SUSE-SU-2022:2143-1
Rating:	moderate
References:	bsc#1182742 bsc#1189501 bsc#1190535 bsc#1192850 bsc#1193032 bsc#1193238 bsc#1193707 bsc#1194262 bsc#1194447 bsc#1194594 bsc#1194909 bsc#1195561 bsc#1196338 bsc#1196407 bsc#1196702 bsc#1196704 bsc#1197356 bsc#1197429 bsc#1197438 bsc#1197488 bsc#1198221 bsc#1198356 bsc#1198686 bsc#1198914 bsc#1199036 bsc#1199142 bsc#1199149 bsc#1199512 bsc#1199528 bsc#1199629 bsc#1199677 bsc#1199888
Cross-References:	CVE-2022-21724 CVE-2022-21952 CVE-2022-26520 CVE-2022-31248
CVSS scores:	CVE-2022-21724 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L CVE-2022-21724 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-21952 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-21952 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-26520 ( SUSE ): 6.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L CVE-2022-26520 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-31248 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2022-31248 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Affected Products:	SUSE Manager Proxy 4.1 SUSE Manager Retail Branch Server 4.1 SUSE Manager Server 4.1

An update that solves four vulnerabilities and has 28 security fixes can now be installed.

Description:

This update for SUSE Manager 4.1.15 Release Notes provides the following additions:

Release notes for SUSE Manager:

Update to 4.1.15
Salt has been upgraded to 3004 version
Grafana has been upgraded to 8.3.5
Postgres exporter has been upgraded to 0.10.0
Alertmanager has been upgraded to 0.23.0
Node exporter has been upgraded 1.3.0
CVEs fixed: CVE-2022-21724, CVE-2022-21952, CVE-2022-31248, CVE-2022-26520
Bugs mentioned: bsc#1182742, bsc#1189501, bsc#1190535, bsc#1192850, bsc#1193032 bsc#1193238, bsc#1193707, bsc#1194262, bsc#1194447, bsc#1194594 bsc#1194909, bsc#1195561, bsc#1196338, bsc#1196407, bsc#1196702 bsc#1196704, bsc#1197356, bsc#1197429, bsc#1197438, bsc#1197488 bsc#1198221, bsc#1198356, bsc#1198686, bsc#1198914, bsc#1199036 bsc#1199142, bsc#1199149, bsc#1199512, bsc#1199528, bsc#1199629 bsc#1199677, bsc#1199888

Release notes for SUSE Manager proxy:

Update to 4.1.15
Salt has been upgraded to 3004 version
Bugs mentioned: bsc#1190535, bsc#1193238, bsc#1194447, bsc#1194594, bsc#1194909 bsc#1196338, bsc#1196704, bsc#1199142, bsc#1199528

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

SUSE Manager Proxy 4.1
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-2143=1
SUSE Manager Retail Branch Server 4.1
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-2143=1
SUSE Manager Server 4.1
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-2143=1

Package List:

SUSE Manager Proxy 4.1 (x86_64)
- release-notes-susemanager-proxy-4.1.15-150200.3.56.1
SUSE Manager Retail Branch Server 4.1 (x86_64)
- release-notes-susemanager-proxy-4.1.15-150200.3.56.1
SUSE Manager Server 4.1 (ppc64le s390x x86_64)
- release-notes-susemanager-4.1.15-150200.3.80.1

Recommended update for SUSE Manager 4.1.15 Release Notes

Description:

Patch Instructions:

Package List:

References: