SUSE 5000 Published by

A SUSE Manager maintenance update has been released for openSUSE Leap 15.4.



SUSE-SU-2023:3136-1: critical: Maintenance update for SUSE Manager 4.3.7 Release Notes


# Maintenance update for SUSE Manager 4.3.7 Release Notes

Announcement ID: SUSE-SU-2023:3136-1
Rating: critical
References:

* #1175823
* #1179747
* #1195380
* #1201337
* #1204089
* #1207330
* #1207550
* #1207691
* #1207941
* #1208528
* #1208577
* #1208612
* #1208720
* #1208984
* #1209156
* #1210011
* #1210103
* #1210394
* #1210406
* #1210456
* #1210475
* #1210659
* #1210834
* #1210957
* #1210994
* #1211062
* #1211276
* #1211330
* #1211469
* #1211621
* #1211650
* #1211713
* #1211897
* #1211929
* #1212032
* #1212550
* #1212588
* #1212700
* #1212770
* #1212771
* #1213432

Cross-References:

* CVE-2023-2183
* CVE-2023-2801
* CVE-2023-3128

CVSS scores:

* CVE-2023-2183 ( SUSE ): 4.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:N/A:N
* CVE-2023-2183 ( NVD ): 4.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:N/A:N
* CVE-2023-2801 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2023-2801 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2023-3128 ( SUSE ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
* CVE-2023-3128 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

Affected Products:

* openSUSE Leap 15.4

An update that solves three vulnerabilities, contains one feature and has 38
fixes can now be installed.

## Description:

Maintenance update for SUSE Manager 4.3.7 Release Notes:

This is a codestream only update

## Patch Instructions:

To install this SUSE Critical update use the SUSE recommended installation
methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.4
zypper in -t patch SUSE-2023-3136=1

## Package List:

* openSUSE Leap 15.4 (noarch)
* release-notes-susemanager-proxy-4.3.7-150400.3.58.1
* release-notes-susemanager-4.3.7-150400.3.72.1

## References:

* https://www.suse.com/security/cve/CVE-2023-2183.html
* https://www.suse.com/security/cve/CVE-2023-2801.html
* https://www.suse.com/security/cve/CVE-2023-3128.html
* https://bugzilla.suse.com/show_bug.cgi?id=1175823
* https://bugzilla.suse.com/show_bug.cgi?id=1179747
* https://bugzilla.suse.com/show_bug.cgi?id=1195380
* https://bugzilla.suse.com/show_bug.cgi?id=1201337
* https://bugzilla.suse.com/show_bug.cgi?id=1204089
* https://bugzilla.suse.com/show_bug.cgi?id=1207330
* https://bugzilla.suse.com/show_bug.cgi?id=1207550
* https://bugzilla.suse.com/show_bug.cgi?id=1207691
* https://bugzilla.suse.com/show_bug.cgi?id=1207941
* https://bugzilla.suse.com/show_bug.cgi?id=1208528
* https://bugzilla.suse.com/show_bug.cgi?id=1208577
* https://bugzilla.suse.com/show_bug.cgi?id=1208612
* https://bugzilla.suse.com/show_bug.cgi?id=1208720
* https://bugzilla.suse.com/show_bug.cgi?id=1208984
* https://bugzilla.suse.com/show_bug.cgi?id=1209156
* https://bugzilla.suse.com/show_bug.cgi?id=1210011
* https://bugzilla.suse.com/show_bug.cgi?id=1210103
* https://bugzilla.suse.com/show_bug.cgi?id=1210394
* https://bugzilla.suse.com/show_bug.cgi?id=1210406
* https://bugzilla.suse.com/show_bug.cgi?id=1210456
* https://bugzilla.suse.com/show_bug.cgi?id=1210475
* https://bugzilla.suse.com/show_bug.cgi?id=1210659
* https://bugzilla.suse.com/show_bug.cgi?id=1210834
* https://bugzilla.suse.com/show_bug.cgi?id=1210957
* https://bugzilla.suse.com/show_bug.cgi?id=1210994
* https://bugzilla.suse.com/show_bug.cgi?id=1211062
* https://bugzilla.suse.com/show_bug.cgi?id=1211276
* https://bugzilla.suse.com/show_bug.cgi?id=1211330
* https://bugzilla.suse.com/show_bug.cgi?id=1211469
* https://bugzilla.suse.com/show_bug.cgi?id=1211621
* https://bugzilla.suse.com/show_bug.cgi?id=1211650
* https://bugzilla.suse.com/show_bug.cgi?id=1211713
* https://bugzilla.suse.com/show_bug.cgi?id=1211897
* https://bugzilla.suse.com/show_bug.cgi?id=1211929
* https://bugzilla.suse.com/show_bug.cgi?id=1212032
* https://bugzilla.suse.com/show_bug.cgi?id=1212550
* https://bugzilla.suse.com/show_bug.cgi?id=1212588
* https://bugzilla.suse.com/show_bug.cgi?id=1212700
* https://bugzilla.suse.com/show_bug.cgi?id=1212770
* https://bugzilla.suse.com/show_bug.cgi?id=1212771
* https://bugzilla.suse.com/show_bug.cgi?id=1213432
* https://jira.suse.com/browse/MSQA-679