[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2026:1148-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-06T02:55:33.997Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":36,"duplicates":37,"related":38,"reserved_at":9,"published_at":50,"modified_at":51,"state":9,"summary":52,"references_raw":54,"kevs":159,"epss":9,"epss_history":160,"metrics":161,"affected":162},"SUSE-SU-2026:1148-1","Security Beta update 5.2.0 Beta1 for Multi-Linux Manager Client Tools\n\nThis update fixes the following issues:\n\ngolang-github-prometheus-prometheus:\n\n- CVE-2026-27606: Fix arbitrary file write via path traversal in\n  rollup (bsc#1258893)\n  * Bump rollup to version 4.59.0\n- Drop SLE 12 support (jsc#PED-15474)\n- CVE-2026-25547: Fix unbounded brace range expansion leading to\n  excessive CPU and memory consumption (bsc#1257841):\n  * Bump brace-expansion to version 5.0.2\n- Do not build old web UI. Fixes following security\n  vulnerabilities:\n  * CVE-2026-1615: jsonpath: arbitrary code injection due to unsafe\n    evaluation of user-supplied JSON Path expressions (bsc#1257897)\n  * CVE-2025-61140: jsonpath: the `value` function is vulnerable to\n    prototype pollution (bsc#1257442)\n- Set source URL in the spec file and drop tar service\n\ngrafana:\n\n- Drop support for SLE 12 (jsc#PED-15474)\n- Update to version 11.6.11:\n  Features and enhancements:\n  * Alerting: Add limits for the size of expanded notification\n    templates\n  * Correlations: Remove support for org_id=0\n  Security:\n  * CVE-2026-21722: Public dashboards annotations: use dashboard\n    timerange if time selection disabled (bsc#1258136)\n- Update to version 11.6.10:\n  * API: Add missing scope check on dashboards\n  * Avatar: Require sign-in, remove queue, respect timeout\n  Bug fixes:\n  * Alerting: Fix a race condition panic in ResetStateByRuleUID\n- Update to version 11.6.9:\n  * Plugins: Add PluginContext to plugins when scenes is disabled\n  * Alerting: Fix contacts point issues\n- Update to version 11.6.8:\n  * Alerting: Fix unmarshalling of GettableStatus to include time\n    intervals\n- Update to version 11.6.7:\n  * Auth: Fix render user OAuth passthrough\n  * LDAP Authentication: Fix URL to propagate username context as\n    parameter\n  * Plugins: Dependencies do not inherit parent URL for preinstall\n  * URLParams: Stringify true values as key=true always (fixes\n    issues with variables with true value)\n- Update to version 11.6.6:\n  * Alerting: Fix copying of recording rule fields\n  * Fix redirection after login when Grafana is served from subpath\n- Update to version 11.6.5:\n  * Alerting: Bump alerting package to include change to\n    NewTLSClient\n- Update to version 11.6.4:\n  * StateTimeline: Add endTime to tooltip\n  * Unified storage: Respect GF_DATABASE_URL override\n  * Alerting: Fix group interval override when adding new rules\n  * Azure: Fix legend formatting\n  * Azure: Fix resource name determination in template variable\n    queries\n  * Graphite: Fix annotation queries\n  * Graphite: Fix date mutation\n  * Graphite: Fix nested variable interpolation for repeated rows\n- Update to version 11.6.3:\n  * Fixes CVE-2025-3415\n- Update to version 11.6.2:\n  * Dashboard: Fixes issue with row repeats and first row\n  * Graphite: Ensure template variables are interpolated correctly\n  * Graphite: Fix Graphite series interpolation\n  * Prometheus: Fix semver import path\n- Update to version 11.6.1:\n  * DashboardScenePage: Correct slug in self referencing data links\n  * GrafanaUI: Use safePolygon close handler for interactive\n    tooltips instead of a delay\n  * Prometheus: Add support for cloud partners Prometheus data\n    sources\n  * Alertmanager: Add Role-Based Access Control via reqAction Field\n  * GrafanaUI: Remove blurred background from overlay backdrops to\n    improve performance\n  * InfluxDB: Fix nested variable interpolation\n  * LDAP test: Fix page crash\n  * Org redirection: Fix linking between orgs\n- Upgrade to version 11.6.0:\n  * Visualisations: One click links and actions\n  * Annotations: Add cron syntax support\n  * WebGL-powered geomaps for better performance\n  * Alerting: Add alert rule version history\n  * API keys: Migrate API keys to service accounts at startup\n\nmgr-push:\n\n- Version 5.2.3-0\n  * Disable build for SLES 16\n\nrhnlib:\n\n- Version 5.2.4-0\n  * Disable build for SLES 16\n\nspacecmd:\n\n- Version 5.2.6-0\n  * Update translation strings\n\nspacewalk-client-tools:\n\n- Version 5.2.4-0\n  * Disable build for SLES 16\n\nuyuni-common-libs:\n\n- Version 5.2.3-0\n  * Disable build for SLES 16\n\nuyuni-tools:\n\n- Version 5.2.5-0\n  * Remove migrate command\n  * Remove template script from mgradm: use the one in the image\n  * Split the TFTP server into a separate container\n  * Explicitly start proxy pods after operations\n    (bsc#1258015)\n  * Adjust mgrctl server filter to work with the new helm chart\n    labels\n  * Remove hub register command\n  * Remove the Kubernetes install and upgrade from mgrpxy\n  * Optimize postgres migration disk space usage (bsc#1257447)\n\nvenv-salt-minion:\n\n- Fix the issue preventing SELinux profile to be loaded on SLES 16\n  deployed using cloud images (bsc#1258957)\n- Fix the typo causing buiding EL9 bundle without binary dependencies\n- Backport security patches for Salt vendored tornado:\n  * CVE-2025-67724: missing validation of supplied reason phrase (bsc#1254903)\n  * CVE-2025-67725: fix DoS via malicious HTTP request (bsc#1254905)\n  * CVE-2025-67726: fix HTTP header parameter parsing algorithm (bsc#1254904)\n- CVE-2025-62349: Add minimum_auth_version to enforce security (bsc#1254257)\n- CVE-2025-62348: Junos module yaml loader fix (bsc#1254256)\n    \nMulti-Linux-ManagerTools-Beta-SLE-Micro-release:\n  - Make the product installable on all SLE Micro 5 family",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34],{"_key":15},"CVE-2025-3415",{"_key":17},"CVE-2025-61140",{"_key":19},"CVE-2025-62348",{"_key":21},"CVE-2025-62349",{"_key":23},"CVE-2025-67724",{"_key":25},"CVE-2025-67725",{"_key":27},"CVE-2025-67726",{"_key":29},"CVE-2026-1615",{"_key":31},"CVE-2026-21722",{"_key":33},"CVE-2026-25547",{"_key":35},"CVE-2026-27606",[],[],[39,40,41,42,43,44,45,46,47,48,49],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},"2026-03-30T11:21:20Z","2026-03-31T08:00:12.592036Z",{"cisa_kev":53,"cisa_ransomware":53,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[55,61,66,70,74,78,82,86,90,94,98,102,106,110,114,119,123,127,131,135,139,143,147,151,155],{"url":56,"sources":57,"tags":59},"https://www.suse.com/support/update/announcement/2026/suse-su-20261148-1/",[58],"osv_suse",[60],"Advisory",{"url":62,"sources":63,"tags":64},"https://bugzilla.suse.com/1254256",[58],[65],"REPORT",{"url":67,"sources":68,"tags":69},"https://bugzilla.suse.com/1254257",[58],[65],{"url":71,"sources":72,"tags":73},"https://bugzilla.suse.com/1254903",[58],[65],{"url":75,"sources":76,"tags":77},"https://bugzilla.suse.com/1254904",[58],[65],{"url":79,"sources":80,"tags":81},"https://bugzilla.suse.com/1254905",[58],[65],{"url":83,"sources":84,"tags":85},"https://bugzilla.suse.com/1257442",[58],[65],{"url":87,"sources":88,"tags":89},"https://bugzilla.suse.com/1257447",[58],[65],{"url":91,"sources":92,"tags":93},"https://bugzilla.suse.com/1257841",[58],[65],{"url":95,"sources":96,"tags":97},"https://bugzilla.suse.com/1257897",[58],[65],{"url":99,"sources":100,"tags":101},"https://bugzilla.suse.com/1258015",[58],[65],{"url":103,"sources":104,"tags":105},"https://bugzilla.suse.com/1258136",[58],[65],{"url":107,"sources":108,"tags":109},"https://bugzilla.suse.com/1258893",[58],[65],{"url":111,"sources":112,"tags":113},"https://bugzilla.suse.com/1258957",[58],[65],{"url":115,"sources":116,"tags":117},"https://www.suse.com/security/cve/CVE-2025-3415",[58],[118],"WEB",{"url":120,"sources":121,"tags":122},"https://www.suse.com/security/cve/CVE-2025-61140",[58],[118],{"url":124,"sources":125,"tags":126},"https://www.suse.com/security/cve/CVE-2025-62348",[58],[118],{"url":128,"sources":129,"tags":130},"https://www.suse.com/security/cve/CVE-2025-62349",[58],[118],{"url":132,"sources":133,"tags":134},"https://www.suse.com/security/cve/CVE-2025-67724",[58],[118],{"url":136,"sources":137,"tags":138},"https://www.suse.com/security/cve/CVE-2025-67725",[58],[118],{"url":140,"sources":141,"tags":142},"https://www.suse.com/security/cve/CVE-2025-67726",[58],[118],{"url":144,"sources":145,"tags":146},"https://www.suse.com/security/cve/CVE-2026-1615",[58],[118],{"url":148,"sources":149,"tags":150},"https://www.suse.com/security/cve/CVE-2026-21722",[58],[118],{"url":152,"sources":153,"tags":154},"https://www.suse.com/security/cve/CVE-2026-25547",[58],[118],{"url":156,"sources":157,"tags":158},"https://www.suse.com/security/cve/CVE-2026-27606",[58],[118],[],[],[],[163,176,180,187,191,198,205,212,219,223,230,237,244,251,258,265,272,279,286,293,298,305,312,317,324,328,335],{"ecosystem":164,"name":165,"vendor":166,"product":167,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":167,"source":9,"versions":169},"SUSE Linux Enterprise","dracut-saltboot","suse","dracut-saltboot&distro=SUSE Multi Linux Manager Tools Beta SLE-15","rpm",[170],{"version":171,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":174,"version_end_type":175,"fixed_in":9},"lt1_1_0_159000_2_2_1",true,"ecosystem","1.1.0-159000.2.2.1","excluding",{"ecosystem":164,"name":165,"vendor":166,"product":177,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":177,"source":9,"versions":178},"dracut-saltboot&distro=SUSE Multi Linux Manager Tools Beta SLE-Micro-5",[179],{"version":171,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":174,"version_end_type":175,"fixed_in":9},{"ecosystem":164,"name":181,"vendor":166,"product":182,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":182,"source":9,"versions":183},"dracut-wireless","dracut-wireless&distro=SUSE Multi Linux Manager Tools Beta SLE-15",[184],{"version":185,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":186,"version_end_type":175,"fixed_in":9},"lt0_1_1595937550_0285244_159000_2_2_1","0.1.1595937550.0285244-159000.2.2.1",{"ecosystem":164,"name":181,"vendor":166,"product":188,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":188,"source":9,"versions":189},"dracut-wireless&distro=SUSE Multi Linux Manager Tools Beta SLE-Micro-5",[190],{"version":185,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":186,"version_end_type":175,"fixed_in":9},{"ecosystem":164,"name":192,"vendor":166,"product":193,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":193,"source":9,"versions":194},"golang-github-boynux-squid_exporter","golang-github-boynux-squid_exporter&distro=SUSE Multi Linux Manager Tools Beta SLE-15",[195],{"version":196,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":197,"version_end_type":175,"fixed_in":9},"lt1_13_0_159000_2_2_1","1.13.0-159000.2.2.1",{"ecosystem":164,"name":199,"vendor":166,"product":200,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":200,"source":9,"versions":201},"golang-github-lusitaniae-apache_exporter","golang-github-lusitaniae-apache_exporter&distro=SUSE Multi Linux Manager Tools Beta SLE-15",[202],{"version":203,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":204,"version_end_type":175,"fixed_in":9},"lt1_0_10_159000_2_2_1","1.0.10-159000.2.2.1",{"ecosystem":164,"name":206,"vendor":166,"product":207,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":207,"source":9,"versions":208},"golang-github-prometheus-alertmanager","golang-github-prometheus-alertmanager&distro=SUSE Multi Linux Manager Tools Beta SLE-15",[209],{"version":210,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":211,"version_end_type":175,"fixed_in":9},"lt0_28_1_159000_12_2_1","0.28.1-159000.12.2.1",{"ecosystem":164,"name":213,"vendor":166,"product":214,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":214,"source":9,"versions":215},"golang-github-prometheus-node_exporter","golang-github-prometheus-node_exporter&distro=SUSE Multi Linux Manager Tools Beta SLE-15",[216],{"version":217,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":218,"version_end_type":175,"fixed_in":9},"lt1_9_1_159000_4_2_1","1.9.1-159000.4.2.1",{"ecosystem":164,"name":213,"vendor":166,"product":220,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":220,"source":9,"versions":221},"golang-github-prometheus-node_exporter&distro=SUSE Multi Linux Manager Tools Beta SLE-Micro-5",[222],{"version":217,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":218,"version_end_type":175,"fixed_in":9},{"ecosystem":164,"name":224,"vendor":166,"product":225,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":225,"source":9,"versions":226},"golang-github-prometheus-prometheus","golang-github-prometheus-prometheus&distro=SUSE Multi Linux Manager Tools Beta SLE-15",[227],{"version":228,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":229,"version_end_type":175,"fixed_in":9},"lt3_5_0_159000_4_3_2","3.5.0-159000.4.3.2",{"ecosystem":164,"name":231,"vendor":166,"product":232,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":232,"source":9,"versions":233},"golang-github-QubitProducts-exporter_exporter","golang-github-QubitProducts-exporter_exporter&distro=SUSE Multi Linux Manager Tools Beta SLE-15",[234],{"version":235,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":236,"version_end_type":175,"fixed_in":9},"lt0_4_0_159000_2_2_1","0.4.0-159000.2.2.1",{"ecosystem":164,"name":238,"vendor":166,"product":239,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":239,"source":9,"versions":240},"grafana","grafana&distro=SUSE Multi Linux Manager Tools Beta SLE-15",[241],{"version":242,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":243,"version_end_type":175,"fixed_in":9},"lt11_6_11_159000_2_3_2","11.6.11-159000.2.3.2",{"ecosystem":164,"name":245,"vendor":166,"product":246,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":246,"source":9,"versions":247},"mgr-push","mgr-push&distro=SUSE Multi Linux Manager Tools Beta SLE-15",[248],{"version":249,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":250,"version_end_type":175,"fixed_in":9},"lt5_2_3_159000_2_3_1","5.2.3-159000.2.3.1",{"ecosystem":164,"name":252,"vendor":166,"product":253,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":253,"source":9,"versions":254},"Multi-Linux-ManagerTools-Beta-SLE-Micro-release","Multi-Linux-ManagerTools-Beta-SLE-Micro-release&distro=SUSE Multi Linux Manager Tools Beta SLE-Micro-5",[255],{"version":256,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":257,"version_end_type":175,"fixed_in":9},"lt5_159000_3_3_1","5-159000.3.3.1",{"ecosystem":164,"name":259,"vendor":166,"product":260,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":260,"source":9,"versions":261},"prometheus-blackbox_exporter","prometheus-blackbox_exporter&distro=SUSE Multi Linux Manager Tools Beta SLE-15",[262],{"version":263,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":264,"version_end_type":175,"fixed_in":9},"lt0_26_0_159000_2_2_1","0.26.0-159000.2.2.1",{"ecosystem":164,"name":266,"vendor":166,"product":267,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":267,"source":9,"versions":268},"prometheus-postgres_exporter","prometheus-postgres_exporter&distro=SUSE Multi Linux Manager Tools Beta SLE-15",[269],{"version":270,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":271,"version_end_type":175,"fixed_in":9},"lt0_10_1_159000_2_2_1","0.10.1-159000.2.2.1",{"ecosystem":164,"name":273,"vendor":166,"product":274,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":274,"source":9,"versions":275},"python-defusedxml","python-defusedxml&distro=SUSE Multi Linux Manager Tools Beta SLE-15",[276],{"version":277,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":278,"version_end_type":175,"fixed_in":9},"lt0_7_1_159000_4_2_1","0.7.1-159000.4.2.1",{"ecosystem":164,"name":280,"vendor":166,"product":281,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":281,"source":9,"versions":282},"rhnlib","rhnlib&distro=SUSE Multi Linux Manager Tools Beta SLE-15",[283],{"version":284,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":285,"version_end_type":175,"fixed_in":9},"lt5_2_4_159000_4_3_1","5.2.4-159000.4.3.1",{"ecosystem":164,"name":287,"vendor":166,"product":288,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":288,"source":9,"versions":289},"spacecmd","spacecmd&distro=SUSE Multi Linux Manager Tools Beta SLE-15",[290],{"version":291,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":292,"version_end_type":175,"fixed_in":9},"lt5_2_6_159000_4_3_1","5.2.6-159000.4.3.1",{"ecosystem":164,"name":294,"vendor":166,"product":295,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":295,"source":9,"versions":296},"spacewalk-client-tools","spacewalk-client-tools&distro=SUSE Multi Linux Manager Tools Beta SLE-15",[297],{"version":284,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":285,"version_end_type":175,"fixed_in":9},{"ecosystem":164,"name":299,"vendor":166,"product":300,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":300,"source":9,"versions":301},"supportutils-plugin-salt","supportutils-plugin-salt&distro=SUSE Multi Linux Manager Tools Beta SLE-15",[302],{"version":303,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":304,"version_end_type":175,"fixed_in":9},"lt1_2_3_159000_4_2_1","1.2.3-159000.4.2.1",{"ecosystem":164,"name":306,"vendor":166,"product":307,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":307,"source":9,"versions":308},"supportutils-plugin-susemanager-client","supportutils-plugin-susemanager-client&distro=SUSE Multi Linux Manager Tools Beta SLE-15",[309],{"version":310,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":311,"version_end_type":175,"fixed_in":9},"lt5_2_2_159000_4_2_1","5.2.2-159000.4.2.1",{"ecosystem":164,"name":313,"vendor":166,"product":314,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":314,"source":9,"versions":315},"uyuni-common-libs","uyuni-common-libs&distro=SUSE Multi Linux Manager Tools Beta SLE-15",[316],{"version":249,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":250,"version_end_type":175,"fixed_in":9},{"ecosystem":164,"name":318,"vendor":166,"product":319,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":319,"source":9,"versions":320},"uyuni-tools","uyuni-tools&distro=SUSE Multi Linux Manager Tools Beta SLE-15",[321],{"version":322,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":323,"version_end_type":175,"fixed_in":9},"lt5_2_5_159000_2_3_2","5.2.5-159000.2.3.2",{"ecosystem":164,"name":318,"vendor":166,"product":325,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":325,"source":9,"versions":326},"uyuni-tools&distro=SUSE Multi Linux Manager Tools Beta SLE-Micro-5",[327],{"version":322,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":323,"version_end_type":175,"fixed_in":9},{"ecosystem":164,"name":329,"vendor":166,"product":330,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":330,"source":9,"versions":331},"venv-salt-minion","venv-salt-minion&distro=SUSE Multi Linux Manager Tools Beta SLE-15",[332],{"version":333,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":334,"version_end_type":175,"fixed_in":9},"lt3006_0_159000_5_3_2","3006.0-159000.5.3.2",{"ecosystem":164,"name":329,"vendor":166,"product":336,"cpe_part":9,"purl_type":168,"purl_namespace":166,"purl_name":336,"source":9,"versions":337},"venv-salt-minion&distro=SUSE Multi Linux Manager Tools Beta SLE-Micro-5",[338],{"version":333,"is_range":172,"range_type":173,"version_start":9,"version_start_type":9,"version_end":334,"version_end_type":175,"fixed_in":9}]