[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2025:4457-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-06T02:55:33.997Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":24,"duplicates":25,"related":26,"reserved_at":9,"published_at":32,"modified_at":33,"state":9,"summary":34,"references_raw":36,"kevs":173,"epss":9,"epss_history":174,"metrics":175,"affected":176},"SUSE-SU-2025:4457-1","Security update 5.0.6 for Multi-Linux Manager Client Tools\n\nThis update fixes the following issues:\n\ngolang-github-prometheus-alertmanager:\n\n- Update to version 0.28.1 (jsc#PED-13285):\n  * Improved performance of inhibition rules when using Equal\n    labels.\n  * Improve the documentation on escaping in UTF-8 matchers.\n  * Update alertmanager_config_hash metric help to document the\n    hash is not cryptographically strong.\n  * Fix panic in amtool when using --verbose.\n  * Fix templating of channel field for Rocket.Chat.\n  * Fix rocketchat_configs written as rocket_configs in docs.\n  * Fix usage for --enable-feature flag.\n  * Trim whitespace from OpsGenie API Key.\n  * Fix Jira project template not rendered when searching for\n    existing issues.\n  * Fix subtle bug in JSON/YAML encoding of inhibition rules that\n    would cause Equal labels to be omitted.\n  * Fix header for slack_configs in docs.\n  * Fix weight and wrap of Microsoft Teams notifications.\n- Upgrade to version 0.28.0:\n  * CVE-2025-47908: Bump github.com/rs/cors (bsc#1247748).\n  * Templating errors in the SNS integration now return an error.\n  * Adopt log/slog, drop go-kit/log.\n  * Add a new Microsoft Teams integration based on Flows.\n  * Add a new Rocket.Chat integration.\n  * Add a new Jira integration.\n  * Add support for GOMEMLIMIT, enable it via the feature flag\n    --enable-feature=auto-gomemlimit.\n  * Add support for GOMAXPROCS, enable it via the feature flag\n    --enable-feature=auto-gomaxprocs.\n  * Add support for limits of silences including the maximum number\n    of active and pending silences, and the maximum size per\n    silence (in bytes). You can use the flags\n    --silences.max-silences and --silences.max-silence-size-bytes\n    to set them accordingly.\n  * Muted alerts now show whether they are suppressed or not in\n    both the /api/v2/alerts endpoint and the Alertmanager UI.\n- Upgrade to version 0.27.0:\n  * API: Removal of all api/v1/ endpoints. These endpoints\n    now log and return a deprecation message and respond with a\n    status code of 410.\n  * UTF-8 Support: Introduction of support for any UTF-8\n    character as part of label names and matchers.\n  * Discord Integration: Enforce max length in message.\n  * Metrics: Introduced the experimental feature flag\n    --enable-feature=receiver-name-in-metrics to include the\n    receiver name.\n  * Metrics: Introduced a new gauge named\n    alertmanager_inhibition_rules that counts the number of\n    configured inhibition rules.\n  * Metrics: Introduced a new counter named\n    alertmanager_alerts_supressed_total that tracks muted alerts,\n    it contains a reason label to indicate the source of the mute.\n  * Discord Integration: Introduced support for webhook_url_file.\n  * Microsoft Teams Integration: Introduced support for\n    webhook_url_file.\n  * Microsoft Teams Integration: Add support for summary.\n  * Metrics: Notification metrics now support two new values for\n    the label reason, contextCanceled and contextDeadlineExceeded.\n  * Email Integration: Contents of auth_password_file are now\n    trimmed of prefixed and suffixed whitespace.\n  * amtool: Fixes the error scheme required for webhook url when\n    using amtool with --alertmanager.url.\n  * Mixin: Fix AlertmanagerFailedToSendAlerts,\n    AlertmanagerClusterFailedToSendAlerts, and\n    AlertmanagerClusterFailedToSendAlerts to make sure they ignore\n    the reason label.\n\ngrafana was updated from version 11.5.5 to 11.5.10:\n\n- Security issues fixed:\n  \n  * CVE-2025-47911: Fix parsing HTML documents (bsc#1251454)\n  * CVE-2025-58190: Fix excessive memory consumption (bsc#1251657)\n  * CVE-2025-64751: Drop experimental implementation of authorization Zanzana server/client\n                    (bsc#1254113)\n  * CVE-2025-11065: Fixed sensitive information leak in logs (version 11.5.9) (bsc#1250616)\n  * CVE-2025-6023: Fixed cross-site-scripting via scripted dashboards (version 11.5.7) (bsc#1246735)\n  * CVE-2025-6197: Fixed open redirect in organization switching (version 11.5.7) (bsc#1246736)\n  * CVE-2025-3415: Fixed exposure of DingDing alerting integration URL to Viewer level users (version 11.5.6)\n                   (bsc#1245302)\n\n- Other changes, new features and bugs fixed:\n\n  * Version 11.5.10:\n    + Update to Go 1.25\n    + Update to golang.org/x/net v0.45.0\n    + Auth: Fix render user OAuth passthrough\n    + LDAP Authentication: Fix URL to propagate username context as parameter\n    \n  * Version 11.5.9:\n    + Auditing: Document new options for recording datasource query request/response body.\n    + Login: Fixed redirection after login when Grafana is served from subpath.\n\n  * Version 11.5.7:\n    + Azure: Fixed legend formatting and resource name determination in template variable queries.\n\nmgr-push:\n\n- Version 5.0.3-0\n  * Fixed syntax error in changelog\n\nrhnlib:\n\n- Version 5.0.6-0\n  * Use more secure defusedxml parser (bsc#1227577)\n\nspacecmd:\n\n- Version 5.0.14-0:\n\n  * Fixed installation of python lib files on Ubuntu 24.04 (bsc#1246586)\n  * Use JSON instead of pickle for spacecmd cache (bsc#1227579)\n  * Make spacecmd to work with Python 3.12 and higher\n  * Call print statements properly in Python 3\n\nsupportutils-plugin-susemanager-client:\n\n- Version 5.0.5-0\n  * Fix syntax error in changelog\n\nuyuni-tools:\n\n- Version 0.1.37-0\n  * Handle CA files with symlinks during migration (bsc#1251044)\n  * Add a lowercase version of --logLevel (bsc#1243611)\n  * Adjust traefik exposed configuration for chart v27+ (bsc#1247721)\n  * Stop executing scripts in temporary folder (bsc#1243704)\n  * Convert the traefik install time to local time (bsc#1251138)\n  * Run smdba and reindex only during migration (bsc#1244534)\n  * Support config: collect podman inspect for hub container (bsc#1245099)\n  * Add --registry-host, --registry-user and --registry-password to pull images from an authenticate registry\n  * Deprecate --registry\n  * Use new dedicated path for Cobbler settings (bsc#1244027)\n  * Migrate custom auto installation snippets (bsc#1246320)\n  * Add SLE15SP7 to buildin productmap\n  * Fix loading product map from mgradm configuration file (bsc#1246068)\n  * Fix channel override for distro copy\n  * Do not use sudo when running as a root user (bsc#1246882)\n  * Do not require backups to be at the same location for restoring (bsc#1246906)\n  * Check for restorecon presence before calling (bsc#1246925)\n  * Automatically get up-to-date systemid file on salt based proxy hosts (bsc#1246789)\n  * Fix recomputing proxy images when installing a ptf or test (bsc#1246553)\n  * Add migration for server monitoring configuration (bsc#1247688)\n- Version 0.1.36-0\n  * Bump the default image tag\n- Version 0.1.35-0\n  * Restore SELinux contexts for restored backup volumes (bsc#1244127)\n- Version 0.1.34-0\n  * Fix mgradm backup create handling of images and systemd files (bsc#1246738)\n- Version 0.1.33-0\n  * Restore volumes using tar instead of podman import (bsc#1244127)\n\n",null,[],[],[],[14,16,18,20,22],{"_key":15},"CVE-2025-11065",{"_key":17},"CVE-2025-3415",{"_key":19},"CVE-2025-47908",{"_key":21},"CVE-2025-6023",{"_key":23},"CVE-2025-6197",[],[],[27,28,29,30,31],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},"2025-12-18T11:56:34Z","2026-03-23T04:51:41.244571Z",{"cisa_kev":35,"cisa_ransomware":35,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[37,43,48,52,56,60,64,68,72,76,80,84,88,92,96,100,104,108,112,116,120,124,128,132,136,140,144,148,152,157,161,165,169],{"url":38,"sources":39,"tags":41},"https://www.suse.com/support/update/announcement/2025/suse-su-20254457-1/",[40],"osv_suse",[42],"Advisory",{"url":44,"sources":45,"tags":46},"https://bugzilla.suse.com/1227577",[40],[47],"REPORT",{"url":49,"sources":50,"tags":51},"https://bugzilla.suse.com/1227579",[40],[47],{"url":53,"sources":54,"tags":55},"https://bugzilla.suse.com/1243611",[40],[47],{"url":57,"sources":58,"tags":59},"https://bugzilla.suse.com/1243704",[40],[47],{"url":61,"sources":62,"tags":63},"https://bugzilla.suse.com/1244027",[40],[47],{"url":65,"sources":66,"tags":67},"https://bugzilla.suse.com/1244127",[40],[47],{"url":69,"sources":70,"tags":71},"https://bugzilla.suse.com/1244534",[40],[47],{"url":73,"sources":74,"tags":75},"https://bugzilla.suse.com/1245099",[40],[47],{"url":77,"sources":78,"tags":79},"https://bugzilla.suse.com/1245302",[40],[47],{"url":81,"sources":82,"tags":83},"https://bugzilla.suse.com/1246068",[40],[47],{"url":85,"sources":86,"tags":87},"https://bugzilla.suse.com/1246320",[40],[47],{"url":89,"sources":90,"tags":91},"https://bugzilla.suse.com/1246553",[40],[47],{"url":93,"sources":94,"tags":95},"https://bugzilla.suse.com/1246586",[40],[47],{"url":97,"sources":98,"tags":99},"https://bugzilla.suse.com/1246662",[40],[47],{"url":101,"sources":102,"tags":103},"https://bugzilla.suse.com/1246735",[40],[47],{"url":105,"sources":106,"tags":107},"https://bugzilla.suse.com/1246736",[40],[47],{"url":109,"sources":110,"tags":111},"https://bugzilla.suse.com/1246738",[40],[47],{"url":113,"sources":114,"tags":115},"https://bugzilla.suse.com/1246789",[40],[47],{"url":117,"sources":118,"tags":119},"https://bugzilla.suse.com/1246882",[40],[47],{"url":121,"sources":122,"tags":123},"https://bugzilla.suse.com/1246906",[40],[47],{"url":125,"sources":126,"tags":127},"https://bugzilla.suse.com/1246925",[40],[47],{"url":129,"sources":130,"tags":131},"https://bugzilla.suse.com/1247688",[40],[47],{"url":133,"sources":134,"tags":135},"https://bugzilla.suse.com/1247721",[40],[47],{"url":137,"sources":138,"tags":139},"https://bugzilla.suse.com/1247748",[40],[47],{"url":141,"sources":142,"tags":143},"https://bugzilla.suse.com/1250616",[40],[47],{"url":145,"sources":146,"tags":147},"https://bugzilla.suse.com/1251044",[40],[47],{"url":149,"sources":150,"tags":151},"https://bugzilla.suse.com/1251138",[40],[47],{"url":153,"sources":154,"tags":155},"https://www.suse.com/security/cve/CVE-2025-11065",[40],[156],"WEB",{"url":158,"sources":159,"tags":160},"https://www.suse.com/security/cve/CVE-2025-3415",[40],[156],{"url":162,"sources":163,"tags":164},"https://www.suse.com/security/cve/CVE-2025-47908",[40],[156],{"url":166,"sources":167,"tags":168},"https://www.suse.com/security/cve/CVE-2025-6023",[40],[156],{"url":170,"sources":171,"tags":172},"https://www.suse.com/security/cve/CVE-2025-6197",[40],[156],[],[],[],[177,190,197,204,211,218,225],{"ecosystem":178,"name":179,"vendor":180,"product":181,"cpe_part":9,"purl_type":182,"purl_namespace":180,"purl_name":181,"source":9,"versions":183},"SUSE Linux Enterprise","golang-github-prometheus-alertmanager","suse","golang-github-prometheus-alertmanager&distro=SUSE Manager Client Tools 12","rpm",[184],{"version":185,"is_range":186,"range_type":187,"version_start":9,"version_start_type":9,"version_end":188,"version_end_type":189,"fixed_in":9},"lt0_28_1_1_34_1",true,"ecosystem","0.28.1-1.34.1","excluding",{"ecosystem":178,"name":191,"vendor":180,"product":192,"cpe_part":9,"purl_type":182,"purl_namespace":180,"purl_name":192,"source":9,"versions":193},"grafana","grafana&distro=SUSE Manager Client Tools 12",[194],{"version":195,"is_range":186,"range_type":187,"version_start":9,"version_start_type":9,"version_end":196,"version_end_type":189,"fixed_in":9},"lt11_5_10_1_87_1","11.5.10-1.87.1",{"ecosystem":178,"name":198,"vendor":180,"product":199,"cpe_part":9,"purl_type":182,"purl_namespace":180,"purl_name":199,"source":9,"versions":200},"mgr-push","mgr-push&distro=SUSE Manager Client Tools 12",[201],{"version":202,"is_range":186,"range_type":187,"version_start":9,"version_start_type":9,"version_end":203,"version_end_type":189,"fixed_in":9},"lt5_0_3_1_30_3","5.0.3-1.30.3",{"ecosystem":178,"name":205,"vendor":180,"product":206,"cpe_part":9,"purl_type":182,"purl_namespace":180,"purl_name":206,"source":9,"versions":207},"rhnlib","rhnlib&distro=SUSE Manager Client Tools 12",[208],{"version":209,"is_range":186,"range_type":187,"version_start":9,"version_start_type":9,"version_end":210,"version_end_type":189,"fixed_in":9},"lt5_0_6_21_55_1","5.0.6-21.55.1",{"ecosystem":178,"name":212,"vendor":180,"product":213,"cpe_part":9,"purl_type":182,"purl_namespace":180,"purl_name":213,"source":9,"versions":214},"spacecmd","spacecmd&distro=SUSE Manager Client Tools 12",[215],{"version":216,"is_range":186,"range_type":187,"version_start":9,"version_start_type":9,"version_end":217,"version_end_type":189,"fixed_in":9},"lt5_0_14_38_162_1","5.0.14-38.162.1",{"ecosystem":178,"name":219,"vendor":180,"product":220,"cpe_part":9,"purl_type":182,"purl_namespace":180,"purl_name":220,"source":9,"versions":221},"supportutils-plugin-susemanager-client","supportutils-plugin-susemanager-client&distro=SUSE Manager Client Tools 12",[222],{"version":223,"is_range":186,"range_type":187,"version_start":9,"version_start_type":9,"version_end":224,"version_end_type":189,"fixed_in":9},"lt5_0_5_6_36_1","5.0.5-6.36.1",{"ecosystem":178,"name":226,"vendor":180,"product":227,"cpe_part":9,"purl_type":182,"purl_namespace":180,"purl_name":227,"source":9,"versions":228},"uyuni-tools","uyuni-tools&distro=SUSE Manager Client Tools 12",[229],{"version":230,"is_range":186,"range_type":187,"version_start":9,"version_start_type":9,"version_end":231,"version_end_type":189,"fixed_in":9},"lt0_1_37_1_27_1","0.1.37-1.27.1"]