{"affected":[],"aliases":[],"details":"This update fixes the following issues:\n\ngolang-github-prometheus-alertmanager:\n\n- CVE-2022-21698: Update vendor tarball with prometheus/client_golang 1.11.1 (bsc#1196338, jsc#SLE-24077)\n- Update to version 0.23.0:\n  * amtool: Detect version drift and warn users (#2672)\n  * Add ability to skip TLS verification for amtool (#2663)\n  * Fix empty isEqual in amtool. (#2668)\n  * Fix main tests (#2670)\n  * cli: add new template render command (#2538)\n  * OpsGenie: refer to alert instead of incident (#2609)\n  * Docs: target_match and source_match are DEPRECATED (#2665)\n  * Fix test not waiting for cluster member to be ready\n- Added hardening to systemd service(s) (bsc#1181400). Modified: prometheus-alertmanager.service\n\ngolang-github-prometheus-node_exporter:\n\n- CVE-2022-21698: Update vendor tarball with prometheus/client_golang 1.11.1 (bsc#1196338, jsc#SLE-24238, \n  jsc#SLE-24239)\n- Update to 1.3.0\n  * [CHANGE] Add path label to rapl collector #2146\n  * [CHANGE] Exclude filesystems under /run/credentials #2157\n  * [CHANGE] Add TCPTimeouts to netstat default filter #2189\n  * [FEATURE] Add lnstat collector for metrics from /proc/net/stat/ #1771\n  * [FEATURE] Add darwin powersupply collector #1777\n  * [FEATURE] Add support for monitoring GPUs on Linux #1998\n  * [FEATURE] Add Darwin thermal collector #2032\n  * [FEATURE] Add os release collector #2094\n  * [FEATURE] Add netdev.address-info collector #2105\n  * [FEATURE] Add clocksource metrics to time collector #2197\n  * [ENHANCEMENT] Support glob textfile collector directories #1985\n  * [ENHANCEMENT] ethtool: Expose node_ethtool_info metric #2080\n  * [ENHANCEMENT] Use include/exclude flags for ethtool filtering #2165\n  * [ENHANCEMENT] Add flag to disable guest CPU metrics #2123\n  * [ENHANCEMENT] Add DMI collector #2131\n  * [ENHANCEMENT] Add threads metrics to processes collector #2164\n  * [ENHANCMMENT] Reduce timer GC delays in the Linux filesystem collector #2169\n  * [ENHANCMMENT] Add TCPTimeouts to netstat default filter #2189\n  * [ENHANCMMENT] Use SysctlTimeval for boottime collector on BSD #2208\n  * [BUGFIX] ethtool: Sanitize metric names #2093\n  * [BUGFIX] Fix ethtool collector for multiple interfaces #2126\n  * [BUGFIX] Fix possible panic on macOS #2133\n  * [BUGFIX] Collect flag_info and bug_info only for one core #2156\n  * [BUGFIX] Prevent duplicate ethtool metric names #2187\n- Update to 1.2.2\n  * Bug fixes\n     Fix processes collector long int parsing #2112\n- Update to 1.2.1\n  * Removed\n     Remove obsolete capture permission denied error patch\n     capture-permission-denied-error-energy_uj.patch: Already included upstream\n     Fix zoneinfo parsing prometheus/procfs#386\n     Fix nvme collector log noise #2091\n     Fix rapl collector log noise #2092\n- Update to 1.2.0\n  * Changes\n     Rename filesystem collector flags to match other collectors #2012\n     Make node_exporter print usage to STDOUT #203\n  * Features\n     Add conntrack statistics metrics #1155\n     Add ethtool stats collector #1832\n     Add flag to ignore network speed if it is unknown #1989\n     Add tapestats collector for Linux #2044\n     Add nvme collector #2062\n  * Enhancements\n     Add ErrorLog plumbing to promhttp #1887\n     Add more Infiniband counters #2019\n     netclass: retrieve interface names and filter before parsing #2033\n     Add time zone offset metric #2060\n     Handle errors from disabled PSI subsystem #1983\n     Fix panic when using backwards compatible flags #2000\n     Fix wrong value for OpenBSD memory buffer cache #2015\n     Only initiate collectors once #2048\n     Handle small backwards jumps in CPU idle #2067\n- Apply patch to capture permission denied error for 'energy_uj' file (bsc#1190535)\n\ngolang-github-prometheus-prometheus:\n\n- Build firewalld-prometheus-config only for SUSE Linux Enterprise 15, 15.1 and 15.2, and require firewalld for it\n- Firewalld-prometheus-config needs to be a Recommends, not a Requires, as prometheus does not require it to run\n- Create firewalld-prometheus-config subpackage (bsc#1197042)\n- CVE-2022-21698: Update vendor tarball with prometheus/client_golang 1.12.1 (bsc#1196338)\n\ngolang-github-prometheus-promu:\n\n- Update to version 0.13.0:\n  * Release 0.13.0 (jsc#SLE-24138, jsc#SLE-24139)\n  * Add deprecation note to pkg directory\n  * Add windows/arm64\n  * Update common Prometheus files\n  * Fix typo\n  * Release 0.12.0\n  * Simplify CGO crossbuilds\n  * Update common Prometheus files\n  * Release 0.11.1\n  * Fix build with 'linux' platform\n- Update to 0.5.0\n  + Features:\n    * Add support for aix/ppc64. #151\n    * Fallback to git describe output if no VERSION. #130\n  + Enhancements:\n    * cmd/release: add --timeout option. #142\n    * cmd/release: create release in GitHub if none exists. #148\n  + Bug Fixes:\n    * cmd/tarball: restore --prefix flag. #133\n    * cmd/release: don't leak credentials in case of error. #136\n\nmgr-cfg:\n\n- Version 4.3.6-1\n  * Fix the condition for preventing building python 2 subpackage\n    for SLE15 (bsc#1197579)\n\nmgr-osad:\n\n- Version 4.3.6-1\n  * Fix the condition for preventing building python 2 subpackage\n    for SLE15\n\nmgr-push:\n\n- Version 4.3.4-1\n  * Fix the condition for preventing building python 2 subpackage\n    for SLE15\n\nmgr-virtualization:\n\n- Version 4.3.5-1\n  * Fix the condition for preventing building python 2 subpackage\n    for SLE15\n\nrhnlib:\n\n- Version 4.3.4-1\n  * Fix the condition for preventing building python 2 subpackage\n    for SLE15\n\nsalt:\n\n- Fix multiple security fixes (bsc#1197417)\n  * CVE-2020-22935: Sign authentication replies to prevent MiTM.\n  * CVE-2022-22934: Sign pillar data to prevent MiTM attacks.\n  * CVE-2022-22936: Prevent job and fileserver replays\n  * CVE-2022-22941: Fixed targeting bug, especially visible when using syndic and user auth.\n\nspacecmd:\n\n- Version 4.3.10-1\n  * parse boolean paramaters correctly (bsc#1197689)\n  * Add parameter to set containerized proxy SSH port\n\nspacewalk-client-tools:\n\n- Version 4.3.9-1\n  * Fix the condition for preventing building python 2 subpackage\n    for SLE15\n\nspacewalk-koan:\n\n- Version 4.3.5-1\n  * Fix the condition for preventing building python 2 subpackage\n    for SLE15\n\nspacewalk-oscap:\n\n- Version 4.3.5-1\n  * Fix the condition for preventing building python 2 subpackage\n    for SLE15\n\nsuseRegisterInfo:\n\n- Version 4.3.3-1\n  * Fix the condition for preventing building python 2 subpackage\n    for SLE15\n\nuyuni-common-libs:\n\n- Version 4.3.4-1\n  * implement more decompression algorithms for reposync (bsc#1196704)\n\n","id":"SUSE-SU-2022:1531-1","modified":"2022-05-04T13:32:03Z","published":"2022-05-04T13:32:03Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20221531-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1181400"},{"type":"REPORT","url":"https://bugzilla.suse.com/1190535"},{"type":"REPORT","url":"https://bugzilla.suse.com/1196338"},{"type":"REPORT","url":"https://bugzilla.suse.com/1196704"},{"type":"REPORT","url":"https://bugzilla.suse.com/1197042"},{"type":"REPORT","url":"https://bugzilla.suse.com/1197417"},{"type":"REPORT","url":"https://bugzilla.suse.com/1197579"},{"type":"REPORT","url":"https://bugzilla.suse.com/1197689"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-22935"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-21698"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-22934"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-22936"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-22941"}],"related":["CVE-2020-22935","CVE-2022-21698","CVE-2022-22934","CVE-2022-22936","CVE-2022-22941"],"summary":"Security Beta update for SUSE Manager Client Tools","upstream":["CVE-2020-22935","CVE-2022-21698","CVE-2022-22934","CVE-2022-22936","CVE-2022-22941"]}