[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2025:3819-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-06T02:55:33.997Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":22,"duplicates":23,"related":24,"reserved_at":9,"published_at":29,"modified_at":30,"state":9,"summary":31,"references_raw":33,"kevs":166,"epss":9,"epss_history":167,"metrics":168,"affected":169},"SUSE-SU-2025:3819-1","Security update 5.1.1 for Multi-Linux Manager Client Tools\n\nThis update fixes the following issues:\n\ndracut-saltboot was updated from version 0.1 to version 1.0.0:\n\n- Version 1.0.0 bugs fixed:\n    \n  * Reboot on salt key timeout (bsc#1237495)\n  * Fixed parsing files with space in the name (bsc#1252100)\n\ngolang-github-prometheus-alertmanager was updated from version 0.26.0 to 0.28.1 to :\n\n- Security issues fixed:\n\n  * CVE-2025-47908: Fixed a Denial of Service vulnerability (bsc#1247748)\n\n- Version 0.28.1 changes and bugs fixed (jsc#PED-13285):\n\n  * Improved performance of inhibition rules when using Equal\n    labels.\n  * Improve the documentation on escaping in UTF-8 matchers.\n  * Update alertmanager_config_hash metric help to document the\n    hash is not cryptographically strong.\n  * Fixed panic in amtool when using --verbose.\n  * Fixed templating of channel field for Rocket.Chat.\n  * Fixed rocketchat_configs written as rocket_configs in docs.\n  * Fixed usage for --enable-feature flag.\n  * Trim whitespace from OpsGenie API Key.\n  * Fixed Jira project template not rendered when searching for\n    existing issues.\n  * Fixed subtle bug in JSON/YAML encoding of inhibition rules that\n    would cause Equal labels to be omitted.\n  * Fixed header for slack_configs in docs.\n  * Fixed weight and wrap of Microsoft Teams notifications.\n  \n- Version 0.28.0 changes and bugs fixed:\n\n  * Templating errors in the SNS integration now return an error.\n  * Adopt log/slog, drop go-kit/log.\n  * Added a new Microsoft Teams integration based on Flows.\n  * Added a new Rocket.Chat integration.\n  * Added a new Jira integration.\n  * Added support for GOMEMLIMIT, enable it via the feature flag\n    --enable-feature=auto-gomemlimit.\n  * Added support for GOMAXPROCS, enable it via the feature flag\n    --enable-feature=auto-gomaxprocs.\n  * Added support for limits of silences including the maximum number\n    of active and pending silences, and the maximum size per\n    silence (in bytes). You can use the flags\n    --silences.max-silences and --silences.max-silence-size-bytes\n    to set them accordingly.\n  * Muted alerts now show whether they are suppressed or not in\n    both the /api/v2/alerts endpoint and the Alertmanager UI.\n\n- Version 0.27.0 changes and bugs fixed:\n\n  * API: Removal of all api/v1/ endpoints. These endpoints\n    now log and return a deprecation message and respond with a\n    status code of 410.\n  * UTF-8 Support: Introduction of support for any UTF-8\n    character as part of label names and matchers.\n  * Discord Integration: Enforce max length in message.\n  * Metrics: Introduced the experimental feature flag\n    --enable-feature=receiver-name-in-metrics to include the\n    receiver name.\n  * Metrics: Introduced a new gauge named\n    alertmanager_inhibition_rules that counts the number of\n    configured inhibition rules.\n  * Metrics: Introduced a new counter named\n    alertmanager_alerts_supressed_total that tracks muted alerts,\n    it contains a reason label to indicate the source of the mute.\n  * Discord Integration: Introduced support for webhook_url_file.\n  * Microsoft Teams Integration: Introduced support for\n    webhook_url_file.\n  * Microsoft Teams Integration: Added support for summary.\n  * Metrics: Notification metrics now support two new values for\n    the label reason, contextCanceled and contextDeadlineExceeded.\n  * Email Integration: Contents of auth_password_file are now\n    trimmed of prefixed and suffixed whitespace.\n  * amtool: Fixes the error scheme required for webhook url when\n    using amtool with --alertmanager.url.\n  * Mixin: Fixed AlertmanagerFailedToSendAlerts,\n    AlertmanagerClusterFailedToSendAlerts, and\n    AlertmanagerClusterFailedToSendAlerts to make sure they ignore\n    the reason label.\n\ngrafana was updated to from version 11.5.5 to 11.5.7:\n    \n- Security issues fixed:\n\n  * CVE-2025-6023: Fixed cross-site-scripting via scripted dashboards (bsc#1246735)\n  * CVE-2025-6197: Fixed open redirect in organization switching (bsc#1246736)\n  * CVE-2025-3415: Fixed exposure of DingDing alerting integration URL to Viewer level users (bsc#1245302)\n\n- Other bugs fixed:\n\n  * Azure: Fixed legend formatting.\n  * Azure: Fixed resource name determination in template variable queries.\n\nmgr-push was updated from version 5.1.3 to 5.1.4:\n\n- Use absolute paths when invoking external commands\n\npython-defusedxml:\n\n- New package implemented at version 0.7.1\n\nrhnlib was updated from version 5.1.2 to 5.1.3:\n\n- Use more secure defusedxml parser (bsc#1227577)\n\nspacecmd was updated from version 5.1.8 to 5.1.11:\n\n- Version 5.1.11 changes and bugs fixed:\n\n  * Make spacecmd work with Python 3.12 and higher\n  * Call print statements properly in Python 3\n\n- Version 5.1.10 changes and bugs fixed:\n\n  * Fixed use of renamed config parser class where the backward\n    compatible alias was dropped in latest python version\n    (bsc#1246586)\n\n- Version 5.1.9 changes and bugs fixed:\n\n  * Fixed installation of python lib files on Ubuntu 24.04\n\nspacewalk-client-tools was updated from version 5.1.6 to 5.1.7:\n\n-  Fixed syntax error in changelog\n\nsupportutils-plugin-susemanager-client was updated from version 5.1.3 to 5.1.4:\n\n-  Fixed syntax error in changelog\n\nuyuni-tools was updated from version 5.1.15 to 5.1.20:\n\n- Version 5.1.20 changes and bugs fixed:\n\n  * Added migration for server monitoring configuration (bsc#1247688)\n\n- Version 5.1.19 changes and bugs fixed:\n\n  * Added a lowercase version of --logLevel (bsc#1243611)\n  * Stop executing scripts in temporary folder (bsc#1243704)\n  * support config: collect podman inspect for hub container (bsc#1245099)\n  * Use new dedicated path for Cobbler settings (bsc#1244027)\n  * Migrate custom auto installation snippets (bsc#1246320)\n  * Added SUSE Linux Enterprise 15 SP7 to buildin productmap\n  * Fixed loading product map from mgradm configuration file (bsc#1246068)\n  * Fixed channel override for distro copy\n  * Do not use sudo when running as a root user (bsc#1246882)\n  * Do not require backups to be at the same location for restoring (bsc#1246906)\n  * Fixed recomputing proxy images when installing a PTF or TEST (bsc#1246553)\n  * Added mgradm server rename to change the server FQDN (bsc#1229825)\n  * If no DB SSL CA parameter is given, use the other one (bsc#1245120)\n  * More fault tolerant mgradm stop (bsc#1243331)\n  * Backup systemd dropin directory too and create if missing\n  * Added 3rd party SSL options for upgrade and migration scenarios\n  * Do not consider stderr output of podman as an error (bsc#1247836)\n  * Restore SELinux contexts for restored backup volumes (bsc#1244127)\n  * Automatically get up-to-date systemid file on salt based proxy hosts (bsc#1246789)\n  * Bump the default image tag to 5.1.1\n\n- Version 5.1.18 changes and bugs fixed:\n\n  * Updated translation strings\n  \n- Version 5.1.17 changes and bugs fixed:\n\n  * Upgrade of saline should use scale function (bsc#1246864)\n\n- Version 5.1.16 changes and bugs fixed:\n\n  * Use database backup volume as temporary backup location (bsc#1246628)\n\n",null,[],[],[],[14,16,18,20],{"_key":15},"CVE-2025-3415",{"_key":17},"CVE-2025-47908",{"_key":19},"CVE-2025-6023",{"_key":21},"CVE-2025-6197",[],[],[25,26,27,28],{"_key":15},{"_key":17},{"_key":19},{"_key":21},"2025-10-28T07:20:07Z","2026-02-04T04:35:22.439371Z",{"cisa_kev":32,"cisa_ransomware":32,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[34,40,45,49,53,57,61,65,69,73,77,81,85,89,93,97,101,105,109,113,117,121,125,129,133,137,141,145,149,154,158,162],{"url":35,"sources":36,"tags":38},"https://www.suse.com/support/update/announcement/2025/suse-su-20253819-1/",[37],"osv_suse",[39],"Advisory",{"url":41,"sources":42,"tags":43},"https://bugzilla.suse.com/1019074",[37],[44],"REPORT",{"url":46,"sources":47,"tags":48},"https://bugzilla.suse.com/1227577",[37],[44],{"url":50,"sources":51,"tags":52},"https://bugzilla.suse.com/1229825",[37],[44],{"url":54,"sources":55,"tags":56},"https://bugzilla.suse.com/1237495",[37],[44],{"url":58,"sources":59,"tags":60},"https://bugzilla.suse.com/1243331",[37],[44],{"url":62,"sources":63,"tags":64},"https://bugzilla.suse.com/1243611",[37],[44],{"url":66,"sources":67,"tags":68},"https://bugzilla.suse.com/1243704",[37],[44],{"url":70,"sources":71,"tags":72},"https://bugzilla.suse.com/1244027",[37],[44],{"url":74,"sources":75,"tags":76},"https://bugzilla.suse.com/1244127",[37],[44],{"url":78,"sources":79,"tags":80},"https://bugzilla.suse.com/1245099",[37],[44],{"url":82,"sources":83,"tags":84},"https://bugzilla.suse.com/1245120",[37],[44],{"url":86,"sources":87,"tags":88},"https://bugzilla.suse.com/1245302",[37],[44],{"url":90,"sources":91,"tags":92},"https://bugzilla.suse.com/1246068",[37],[44],{"url":94,"sources":95,"tags":96},"https://bugzilla.suse.com/1246320",[37],[44],{"url":98,"sources":99,"tags":100},"https://bugzilla.suse.com/1246553",[37],[44],{"url":102,"sources":103,"tags":104},"https://bugzilla.suse.com/1246586",[37],[44],{"url":106,"sources":107,"tags":108},"https://bugzilla.suse.com/1246628",[37],[44],{"url":110,"sources":111,"tags":112},"https://bugzilla.suse.com/1246735",[37],[44],{"url":114,"sources":115,"tags":116},"https://bugzilla.suse.com/1246736",[37],[44],{"url":118,"sources":119,"tags":120},"https://bugzilla.suse.com/1246789",[37],[44],{"url":122,"sources":123,"tags":124},"https://bugzilla.suse.com/1246864",[37],[44],{"url":126,"sources":127,"tags":128},"https://bugzilla.suse.com/1246882",[37],[44],{"url":130,"sources":131,"tags":132},"https://bugzilla.suse.com/1246906",[37],[44],{"url":134,"sources":135,"tags":136},"https://bugzilla.suse.com/1247688",[37],[44],{"url":138,"sources":139,"tags":140},"https://bugzilla.suse.com/1247748",[37],[44],{"url":142,"sources":143,"tags":144},"https://bugzilla.suse.com/1247836",[37],[44],{"url":146,"sources":147,"tags":148},"https://bugzilla.suse.com/1252100",[37],[44],{"url":150,"sources":151,"tags":152},"https://www.suse.com/security/cve/CVE-2025-3415",[37],[153],"WEB",{"url":155,"sources":156,"tags":157},"https://www.suse.com/security/cve/CVE-2025-47908",[37],[153],{"url":159,"sources":160,"tags":161},"https://www.suse.com/security/cve/CVE-2025-6023",[37],[153],{"url":163,"sources":164,"tags":165},"https://www.suse.com/security/cve/CVE-2025-6197",[37],[153],[],[],[],[170,183,187,194,201,208,215,222,229,236,243,250],{"ecosystem":171,"name":172,"vendor":173,"product":174,"cpe_part":9,"purl_type":175,"purl_namespace":173,"purl_name":174,"source":9,"versions":176},"SUSE Linux Enterprise","dracut-saltboot","suse","dracut-saltboot&distro=SUSE Multi Linux Manager Tools SLE-15","rpm",[177],{"version":178,"is_range":179,"range_type":180,"version_start":9,"version_start_type":9,"version_end":181,"version_end_type":182,"fixed_in":9},"lt1_0_0_150002_3_3_1",true,"ecosystem","1.0.0-150002.3.3.1","excluding",{"ecosystem":171,"name":172,"vendor":173,"product":184,"cpe_part":9,"purl_type":175,"purl_namespace":173,"purl_name":184,"source":9,"versions":185},"dracut-saltboot&distro=SUSE Multi Linux Manager Tools SLE-Micro-5",[186],{"version":178,"is_range":179,"range_type":180,"version_start":9,"version_start_type":9,"version_end":181,"version_end_type":182,"fixed_in":9},{"ecosystem":171,"name":188,"vendor":173,"product":189,"cpe_part":9,"purl_type":175,"purl_namespace":173,"purl_name":189,"source":9,"versions":190},"golang-github-prometheus-alertmanager","golang-github-prometheus-alertmanager&distro=SUSE Multi Linux Manager Tools SLE-15",[191],{"version":192,"is_range":179,"range_type":180,"version_start":9,"version_start_type":9,"version_end":193,"version_end_type":182,"fixed_in":9},"lt0_28_1_150002_4_3_3","0.28.1-150002.4.3.3",{"ecosystem":171,"name":195,"vendor":173,"product":196,"cpe_part":9,"purl_type":175,"purl_namespace":173,"purl_name":196,"source":9,"versions":197},"grafana","grafana&distro=SUSE Multi Linux Manager Tools SLE-15",[198],{"version":199,"is_range":179,"range_type":180,"version_start":9,"version_start_type":9,"version_end":200,"version_end_type":182,"fixed_in":9},"lt11_5_7_150002_4_3_3","11.5.7-150002.4.3.3",{"ecosystem":171,"name":202,"vendor":173,"product":203,"cpe_part":9,"purl_type":175,"purl_namespace":173,"purl_name":203,"source":9,"versions":204},"mgr-push","mgr-push&distro=SUSE Multi Linux Manager Tools SLE-15",[205],{"version":206,"is_range":179,"range_type":180,"version_start":9,"version_start_type":9,"version_end":207,"version_end_type":182,"fixed_in":9},"lt5_1_4_150002_3_3_3","5.1.4-150002.3.3.3",{"ecosystem":171,"name":209,"vendor":173,"product":210,"cpe_part":9,"purl_type":175,"purl_namespace":173,"purl_name":210,"source":9,"versions":211},"python-defusedxml","python-defusedxml&distro=SUSE Multi Linux Manager Tools SLE-15",[212],{"version":213,"is_range":179,"range_type":180,"version_start":9,"version_start_type":9,"version_end":214,"version_end_type":182,"fixed_in":9},"lt0_7_1_150002_1_3_2","0.7.1-150002.1.3.2",{"ecosystem":171,"name":216,"vendor":173,"product":217,"cpe_part":9,"purl_type":175,"purl_namespace":173,"purl_name":217,"source":9,"versions":218},"rhnlib","rhnlib&distro=SUSE Multi Linux Manager Tools SLE-15",[219],{"version":220,"is_range":179,"range_type":180,"version_start":9,"version_start_type":9,"version_end":221,"version_end_type":182,"fixed_in":9},"lt5_1_3_150002_3_3_2","5.1.3-150002.3.3.2",{"ecosystem":171,"name":223,"vendor":173,"product":224,"cpe_part":9,"purl_type":175,"purl_namespace":173,"purl_name":224,"source":9,"versions":225},"spacecmd","spacecmd&distro=SUSE Multi Linux Manager Tools SLE-15",[226],{"version":227,"is_range":179,"range_type":180,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":182,"fixed_in":9},"lt5_1_11_150002_3_3_2","5.1.11-150002.3.3.2",{"ecosystem":171,"name":230,"vendor":173,"product":231,"cpe_part":9,"purl_type":175,"purl_namespace":173,"purl_name":231,"source":9,"versions":232},"spacewalk-client-tools","spacewalk-client-tools&distro=SUSE Multi Linux Manager Tools SLE-15",[233],{"version":234,"is_range":179,"range_type":180,"version_start":9,"version_start_type":9,"version_end":235,"version_end_type":182,"fixed_in":9},"lt5_1_7_150002_3_3_3","5.1.7-150002.3.3.3",{"ecosystem":171,"name":237,"vendor":173,"product":238,"cpe_part":9,"purl_type":175,"purl_namespace":173,"purl_name":238,"source":9,"versions":239},"supportutils-plugin-susemanager-client","supportutils-plugin-susemanager-client&distro=SUSE Multi Linux Manager Tools SLE-15",[240],{"version":241,"is_range":179,"range_type":180,"version_start":9,"version_start_type":9,"version_end":242,"version_end_type":182,"fixed_in":9},"lt5_1_4_150002_3_3_2","5.1.4-150002.3.3.2",{"ecosystem":171,"name":244,"vendor":173,"product":245,"cpe_part":9,"purl_type":175,"purl_namespace":173,"purl_name":245,"source":9,"versions":246},"uyuni-tools","uyuni-tools&distro=SUSE Multi Linux Manager Tools SLE-15",[247],{"version":248,"is_range":179,"range_type":180,"version_start":9,"version_start_type":9,"version_end":249,"version_end_type":182,"fixed_in":9},"lt5_1_20_150002_3_3_3","5.1.20-150002.3.3.3",{"ecosystem":171,"name":244,"vendor":173,"product":251,"cpe_part":9,"purl_type":175,"purl_namespace":173,"purl_name":251,"source":9,"versions":252},"uyuni-tools&distro=SUSE Multi Linux Manager Tools SLE-Micro-5",[253],{"version":248,"is_range":179,"range_type":180,"version_start":9,"version_start_type":9,"version_end":249,"version_end_type":182,"fixed_in":9}]