Описание
Security update for rmt-server
This update for rmt-server fixes the following issues:
Update to version 2.13:
- CVE-2023-28120: Fixed a possible XSS Security Vulnerability in bytesliced strings for html_safe (bsc#1209507).
- CVE-2023-27530: Fixed a DoS in multipart mime parsing (bsc#1209096).
- CVE-2022-31254: Fixed escalation vector bug from user _rmt to root in the packaging file (bsc#1204285).
Bug fixes:
- Handle X-Original-URI header, partial fix for (bsc#1211398)
- Force rmt-client-setup-res script to use https (bsc#1209825)
- Mark secrets.yml.key file as part of the rpm to allow seamless downgrades (bsc#1207670)
- Adding -f to the file move command when moving the mirrored directory to its final location (bsc#1203171)
- Fix %post install of pubcloud subpackage reload of nginx (bsc#1206593)
- Skip warnings regarding nokogiri libxml version mismatch (bsc#1202053)
- Add option to turn off system token support (bsc#1205089)
- Do not retry to import non-existing files in air-gapped mode (bsc#1204769)
Список пакетов
Container suse/rmt-server:latest
SUSE Linux Enterprise Module for Public Cloud 15 SP5
SUSE Linux Enterprise Module for Server Applications 15 SP5
openSUSE Leap 15.5
Ссылки
- Link for SUSE-SU-2023:2781-1
- E-Mail link for SUSE-SU-2023:2781-1
- SUSE Security Ratings
- SUSE Bug 1202053
- SUSE Bug 1203171
- SUSE Bug 1204285
- SUSE Bug 1204769
- SUSE Bug 1205089
- SUSE Bug 1206593
- SUSE Bug 1207670
- SUSE Bug 1209096
- SUSE Bug 1209507
- SUSE Bug 1209825
- SUSE Bug 1211398
- SUSE CVE CVE-2022-31254 page
- SUSE CVE CVE-2023-27530 page
- SUSE CVE CVE-2023-28120 page
Описание
A Incorrect Default Permissions vulnerability in rmt-server-regsharing service of SUSE Linux Enterprise Server for SAP 15, SUSE Linux Enterprise Server for SAP 15-SP1, SUSE Manager Server 4.1; openSUSE Leap 15.3, openSUSE Leap 15.4 allows local attackers with access to the _rmt user to escalate to root. This issue affects: SUSE Linux Enterprise Server for SAP 15 rmt-server versions prior to 2.10. SUSE Linux Enterprise Server for SAP 15-SP1 rmt-server versions prior to 2.10. SUSE Manager Server 4.1 rmt-server versions prior to 2.10. openSUSE Leap 15.3 rmt-server versions prior to 2.10. openSUSE Leap 15.4 rmt-server versions prior to 2.10.
Затронутые продукты
Ссылки
- CVE-2022-31254
- SUSE Bug 1204285
- SUSE Bug 1207670
Описание
A DoS vulnerability exists in Rack <v3.0.4.2, <v2.2.6.3, <v2.1.4.3 and <v2.0.9.3 within in the Multipart MIME parsing code in which could allow an attacker to craft requests that can be abuse to cause multipart parsing to take longer than expected.
Затронутые продукты
Ссылки
- CVE-2023-27530
- SUSE Bug 1209095
Описание
There is a vulnerability in ActiveSupport if the new bytesplice method is called on a SafeBuffer with untrusted user input.
Затронутые продукты
Ссылки
- CVE-2023-28120
- SUSE Bug 1209505