SUSE-SU-2025:4458-1

Описание

This update fixes the following issues:

dracut-saltboot:

• Update to version 1.0.0
  • Reboot on salt key timeout (bsc#1237495)
  • Fixed parsing files with space in the name (bsc#1252100)

grafana was updated from version 11.5.5 to 11.5.10:

• Security issues fixed:

  • CVE-2025-47911: Fix parsing HTML documents (bsc#1251454)
  • CVE-2025-58190: Fix excessive memory consumption (bsc#1251657)
  • CVE-2025-64751: Drop experimental implementation of authorization Zanzana server/client (bsc#1254113)
  • CVE-2025-11065: Fixed sensitive information leak in logs (version 11.5.9) (bsc#1250616)
  • CVE-2025-6023: Fixed cross-site-scripting via scripted dashboards (version 11.5.7) (bsc#1246735)
  • CVE-2025-6197: Fixed open redirect in organization switching (version 11.5.7) (bsc#1246736)
  • CVE-2025-3415: Fixed exposure of DingDing alerting integration URL to Viewer level users (version 11.5.6) (bsc#1245302)

• Other changes, new features and bugs fixed:

  • Version 11.5.10:

    • Update to Go 1.25
    • Update to golang.org/x/net v0.45.0
    • Auth: Fix render user OAuth passthrough
    • LDAP Authentication: Fix URL to propagate username context as parameter

  • Version 11.5.9:

    • Auditing: Document new options for recording datasource query request/response body.
    • Login: Fixed redirection after login when Grafana is served from subpath.

  • Version 11.5.7:

    • Azure: Fixed legend formatting and resource name determination in template variable queries.

mgr-push:

• Version 5.0.3-0
  • Fixed syntax error in changelog

rhnlib:

• Version 5.0.6-0
  • Use more secure defusedxml parser (bsc#1227577)

spacecmd:

• Version 5.0.14-0
  • Fixed installation of python lib files on Ubuntu 24.04 (bsc#1246586)
  • Use JSON instead of pickle for spacecmd cache (bsc#1227579)
  • Make spacecmd to work with Python 3.12 and higher
  • Call print statements properly in Python 3

uyuni-tools:

• Version 0.1.37-0
  • Handle CA files with symlinks during migration (bsc#1251044)
  • Add a lowercase version of --logLevel (bsc#1243611)
  • Adjust traefik exposed configuration for chart v27+ (bsc#1247721)
  • Stop executing scripts in temporary folder (bsc#1243704)
  • Convert the traefik install time to local time (bsc#1251138)
  • Run smdba and reindex only during migration (bsc#1244534)
  • Support config: collect podman inspect for hub container (bsc#1245099)
  • Add --registry-host, --registry-user and --registry-password to pull images from an authenticate registry
  • Deprecate --registry
  • Use new dedicated path for Cobbler settings (bsc#1244027)
  • Migrate custom auto installation snippets (bsc#1246320)
  • Add SLE15SP7 to buildin productmap
  • Fix loading product map from mgradm configuration file (bsc#1246068)
  • Fix channel override for distro copy
  • Do not use sudo when running as a root user (bsc#1246882)
  • Do not require backups to be at the same location for restoring (bsc#1246906)
  • Check for restorecon presence before calling (bsc#1246925)
  • Automatically get up-to-date systemid file on salt based proxy hosts (bsc#1246789)
  • Fix recomputing proxy images when installing a ptf or test (bsc#1246553)
  • Add migration for server monitoring configuration (bsc#1247688)
• Version 0.1.36-0
  • Bump the default image tag
• Version 0.1.35-0
  • Restore SELinux contexts for restored backup volumes (bsc#1244127)
• Version 0.1.34-0
  • Fix mgradm backup create handling of images and systemd files (bsc#1246738)
• Version 0.1.33-0
  • Restore volumes using tar instead of podman import (bsc#1244127)