SUSE-SU-2025:4458-1

Description

Security update 5.0.6 for Multi-Linux Manager Client Tools This update fixes the following issues: dracut-saltboot: - Update to version 1.0.0 * Reboot on salt key timeout (bsc#1237495) * Fixed parsing files with space in the name (bsc#1252100) grafana was updated from version 11.5.5 to 11.5.10: - Security issues fixed: * CVE-2025-47911: Fix parsing HTML documents (bsc#1251454) * CVE-2025-58190: Fix excessive memory consumption (bsc#1251657) * CVE-2025-64751: Drop experimental implementation of authorization Zanzana server/client (bsc#1254113) * CVE-2025-11065: Fixed sensitive information leak in logs (version 11.5.9) (bsc#1250616) * CVE-2025-6023: Fixed cross-site-scripting via scripted dashboards (version 11.5.7) (bsc#1246735) * CVE-2025-6197: Fixed open redirect in organization switching (version 11.5.7) (bsc#1246736) * CVE-2025-3415: Fixed exposure of DingDing alerting integration URL to Viewer level users (version 11.5.6) (bsc#1245302) - Other changes, new features and bugs fixed: * Version 11.5.10: + Update to Go 1.25 + Update to golang.org/x/net v0.45.0 + Auth: Fix render user OAuth passthrough + LDAP Authentication: Fix URL to propagate username context as parameter * Version 11.5.9: + Auditing: Document new options for recording datasource query request/response body. + Login: Fixed redirection after login when Grafana is served from subpath. * Version 11.5.7: + Azure: Fixed legend formatting and resource name determination in template variable queries. mgr-push: - Version 5.0.3-0 * Fixed syntax error in changelog rhnlib: - Version 5.0.6-0 * Use more secure defusedxml parser (bsc#1227577) spacecmd: - Version 5.0.14-0 * Fixed installation of python lib files on Ubuntu 24.04 (bsc#1246586) * Use JSON instead of pickle for spacecmd cache (bsc#1227579) * Make spacecmd to work with Python 3.12 and higher * Call print statements properly in Python 3 uyuni-tools: - Version 0.1.37-0 * Handle CA files with symlinks during migration (bsc#1251044) * Add a lowercase version of --logLevel (bsc#1243611) * Adjust traefik exposed configuration for chart v27+ (bsc#1247721) * Stop executing scripts in temporary folder (bsc#1243704) * Convert the traefik install time to local time (bsc#1251138) * Run smdba and reindex only during migration (bsc#1244534) * Support config: collect podman inspect for hub container (bsc#1245099) * Add --registry-host, --registry-user and --registry-password to pull images from an authenticate registry * Deprecate --registry * Use new dedicated path for Cobbler settings (bsc#1244027) * Migrate custom auto installation snippets (bsc#1246320) * Add SLE15SP7 to buildin productmap * Fix loading product map from mgradm configuration file (bsc#1246068) * Fix channel override for distro copy * Do not use sudo when running as a root user (bsc#1246882) * Do not require backups to be at the same location for restoring (bsc#1246906) * Check for restorecon presence before calling (bsc#1246925) * Automatically get up-to-date systemid file on salt based proxy hosts (bsc#1246789) * Fix recomputing proxy images when installing a ptf or test (bsc#1246553) * Add migration for server monitoring configuration (bsc#1247688) - Version 0.1.36-0 * Bump the default image tag - Version 0.1.35-0 * Restore SELinux contexts for restored backup volumes (bsc#1244127) - Version 0.1.34-0 * Fix mgradm backup create handling of images and systemd files (bsc#1246738) - Version 0.1.33-0 * Restore volumes using tar instead of podman import (bsc#1244127)

Affected Systems

• opensuse•dracut-saltboot&distro=openSUSE Leap 15.6

  < 1.0.0-150000.1.62.1

• opensuse•spacecmd&distro=openSUSE Leap 15.6

  < 5.0.14-150000.3.139.1

• opensuse•supportutils-plugin-susemanager-client&distro=openSUSE Leap 15.6

  < 5.0.5-150000.3.30.1

• suse•dracut-saltboot&distro=SUSE Manager Client Tools 15

  < 1.0.0-150000.1.62.1

• suse•dracut-saltboot&distro=SUSE Manager Client Tools for SLE Micro 5

  < 1.0.0-150000.1.62.1

• suse•grafana&distro=SUSE Manager Client Tools 15

  < 11.5.10-150000.1.87.1

• suse•mgr-push&distro=SUSE Manager Client Tools 15

  < 5.0.3-150000.1.30.1

• suse•rhnlib&distro=SUSE Manager Client Tools 15

  < 5.0.6-150000.3.49.1

• suse•spacecmd&distro=SUSE Manager Client Tools 15

  < 5.0.14-150000.3.139.1

• suse•supportutils-plugin-susemanager-client&distro=SUSE Manager Client Tools 15

  < 5.0.5-150000.3.30.1

• suse•uyuni-tools&distro=SUSE Manager Client Tools 15

  < 0.1.37-150000.1.27.1

• suse•uyuni-tools&distro=SUSE Manager Client Tools for SLE Micro 5

  < 0.1.37-150000.1.27.1

References (33)

• https://www.suse.com/support/update/announcement/2025/suse-su-20254458-1/
• https://bugzilla.suse.com/1227577
• https://bugzilla.suse.com/1227579
• https://bugzilla.suse.com/1237495
• https://bugzilla.suse.com/1243611
• https://bugzilla.suse.com/1243704
• https://bugzilla.suse.com/1244027
• https://bugzilla.suse.com/1244127
• https://bugzilla.suse.com/1244534
• https://bugzilla.suse.com/1245099
• https://bugzilla.suse.com/1245302
• https://bugzilla.suse.com/1246068
• https://bugzilla.suse.com/1246320
• https://bugzilla.suse.com/1246553
• https://bugzilla.suse.com/1246586
• https://bugzilla.suse.com/1246662
• https://bugzilla.suse.com/1246735
• https://bugzilla.suse.com/1246736
• https://bugzilla.suse.com/1246738
• https://bugzilla.suse.com/1246789
• https://bugzilla.suse.com/1246882
• https://bugzilla.suse.com/1246906
• https://bugzilla.suse.com/1246925
• https://bugzilla.suse.com/1247688
• https://bugzilla.suse.com/1247721
• https://bugzilla.suse.com/1250616
• https://bugzilla.suse.com/1251044
• https://bugzilla.suse.com/1251138
• https://bugzilla.suse.com/1252100
• https://www.suse.com/security/cve/CVE-2025-11065
• https://www.suse.com/security/cve/CVE-2025-3415
• https://www.suse.com/security/cve/CVE-2025-6023
• https://www.suse.com/security/cve/CVE-2025-6197