SUSE-SU-2021:14833-1

Source
https://www.suse.com/support/update/announcement/2021/suse-su-202114833-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:14833-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2021:14833-1
Related
Published
2021-10-27T13:28:41Z
Modified
2021-10-27T13:28:41Z
Summary
Security update for SUSE Manager Client Tools
Details

This update fixes the following issues:

salt:

  • Exclude the full path of a download URL to prevent injection of malicious code (bsc#1190265) (CVE-2021-21996)

spacecmd:

  • Version 4.2.13-1
    • Update translation strings
    • configchannelupdatefile handles directory properly (bsc#1190512)
    • Add schedulearchivecompleted to mass archive actions (bsc#1181223)
    • Remove whoami from the list of unauthenticated commands (bsc#1188977)

spacewalk-client-tools:

  • Version 4.2.14-1
    • Update translation strings
References

Affected packages

SUSE:Linux Enterprise Server 11 SP3-CLIENT-TOOLS / salt

Package

Name
salt
Purl
purl:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-CLIENT-TOOLS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2016.11.10-43.84.1

Ecosystem specific

{
    "binaries": [
        {
            "python2-spacewalk-client-tools": "4.2.14-27.59.1",
            "spacewalk-client-setup": "4.2.14-27.59.1",
            "spacewalk-client-tools": "4.2.14-27.59.1",
            "spacewalk-check": "4.2.14-27.59.1",
            "python2-spacewalk-check": "4.2.14-27.59.1",
            "salt": "2016.11.10-43.84.1",
            "python2-spacewalk-client-setup": "4.2.14-27.59.1",
            "salt-doc": "2016.11.10-43.84.1",
            "salt-minion": "2016.11.10-43.84.1",
            "spacecmd": "4.2.13-18.93.1"
        }
    ]
}

SUSE:Linux Enterprise Server 11 SP3-CLIENT-TOOLS / spacecmd

Package

Name
spacecmd
Purl
purl:rpm/suse/spacecmd&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-CLIENT-TOOLS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.2.13-18.93.1

Ecosystem specific

{
    "binaries": [
        {
            "python2-spacewalk-client-tools": "4.2.14-27.59.1",
            "spacewalk-client-setup": "4.2.14-27.59.1",
            "spacewalk-client-tools": "4.2.14-27.59.1",
            "spacewalk-check": "4.2.14-27.59.1",
            "python2-spacewalk-check": "4.2.14-27.59.1",
            "salt": "2016.11.10-43.84.1",
            "python2-spacewalk-client-setup": "4.2.14-27.59.1",
            "salt-doc": "2016.11.10-43.84.1",
            "salt-minion": "2016.11.10-43.84.1",
            "spacecmd": "4.2.13-18.93.1"
        }
    ]
}

SUSE:Linux Enterprise Server 11 SP3-CLIENT-TOOLS / spacewalk-client-tools

Package

Name
spacewalk-client-tools
Purl
purl:rpm/suse/spacewalk-client-tools&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-CLIENT-TOOLS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.2.14-27.59.1

Ecosystem specific

{
    "binaries": [
        {
            "python2-spacewalk-client-tools": "4.2.14-27.59.1",
            "spacewalk-client-setup": "4.2.14-27.59.1",
            "spacewalk-client-tools": "4.2.14-27.59.1",
            "spacewalk-check": "4.2.14-27.59.1",
            "python2-spacewalk-check": "4.2.14-27.59.1",
            "salt": "2016.11.10-43.84.1",
            "python2-spacewalk-client-setup": "4.2.14-27.59.1",
            "salt-doc": "2016.11.10-43.84.1",
            "salt-minion": "2016.11.10-43.84.1",
            "spacecmd": "4.2.13-18.93.1"
        }
    ]
}

SUSE:Linux Enterprise Server 11 SP4-CLIENT-TOOLS / salt

Package

Name
salt
Purl
purl:rpm/suse/salt&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-CLIENT-TOOLS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2016.11.10-43.84.1

Ecosystem specific

{
    "binaries": [
        {
            "python2-spacewalk-client-tools": "4.2.14-27.59.1",
            "spacewalk-client-setup": "4.2.14-27.59.1",
            "spacewalk-client-tools": "4.2.14-27.59.1",
            "spacewalk-check": "4.2.14-27.59.1",
            "python2-spacewalk-check": "4.2.14-27.59.1",
            "salt": "2016.11.10-43.84.1",
            "python2-spacewalk-client-setup": "4.2.14-27.59.1",
            "salt-doc": "2016.11.10-43.84.1",
            "salt-minion": "2016.11.10-43.84.1",
            "spacecmd": "4.2.13-18.93.1"
        }
    ]
}

SUSE:Linux Enterprise Server 11 SP4-CLIENT-TOOLS / spacecmd

Package

Name
spacecmd
Purl
purl:rpm/suse/spacecmd&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-CLIENT-TOOLS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.2.13-18.93.1

Ecosystem specific

{
    "binaries": [
        {
            "python2-spacewalk-client-tools": "4.2.14-27.59.1",
            "spacewalk-client-setup": "4.2.14-27.59.1",
            "spacewalk-client-tools": "4.2.14-27.59.1",
            "spacewalk-check": "4.2.14-27.59.1",
            "python2-spacewalk-check": "4.2.14-27.59.1",
            "salt": "2016.11.10-43.84.1",
            "python2-spacewalk-client-setup": "4.2.14-27.59.1",
            "salt-doc": "2016.11.10-43.84.1",
            "salt-minion": "2016.11.10-43.84.1",
            "spacecmd": "4.2.13-18.93.1"
        }
    ]
}

SUSE:Linux Enterprise Server 11 SP4-CLIENT-TOOLS / spacewalk-client-tools

Package

Name
spacewalk-client-tools
Purl
purl:rpm/suse/spacewalk-client-tools&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-CLIENT-TOOLS

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.2.14-27.59.1

Ecosystem specific

{
    "binaries": [
        {
            "python2-spacewalk-client-tools": "4.2.14-27.59.1",
            "spacewalk-client-setup": "4.2.14-27.59.1",
            "spacewalk-client-tools": "4.2.14-27.59.1",
            "spacewalk-check": "4.2.14-27.59.1",
            "python2-spacewalk-check": "4.2.14-27.59.1",
            "salt": "2016.11.10-43.84.1",
            "python2-spacewalk-client-setup": "4.2.14-27.59.1",
            "salt-doc": "2016.11.10-43.84.1",
            "salt-minion": "2016.11.10-43.84.1",
            "spacecmd": "4.2.13-18.93.1"
        }
    ]
}