Security update for SUSE Manager Server 3.2 SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2019:1790-1 Final 1 1 2019-07-09T13:22:02Z current 2019-07-09T13:22:02Z 2019-07-09T13:22:02Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for SUSE Manager Server 3.2 This update fixes the following issues: release-notes-susemanager: - Fix invalid characters in ncurses mode (bsc#1102770) spacewalk-backend: - Fix for CVE-2019-10136. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum. (bsc#1136480) spacewalk-web: - Change WebUI string version to 3.2.9 The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2019-1790,SUSE-SUSE-Manager-Proxy-3.2-2019-1790,SUSE-SUSE-Manager-Server-3.2-2019-1790 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2019/suse-su-20191790-1/ Link for SUSE-SU-2019:1790-1 https://lists.suse.com/pipermail/sle-security-updates/2019-July/005676.html E-Mail link for SUSE-SU-2019:1790-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1102770 SUSE Bug 1102770 https://bugzilla.suse.com/1136476 SUSE Bug 1136476 https://bugzilla.suse.com/1136480 SUSE Bug 1136480 https://www.suse.com/security/cve/CVE-2019-10136/ SUSE CVE CVE-2019-10136 page https://www.suse.com/security/cve/CVE-2019-10137/ SUSE CVE CVE-2019-10137 page SUSE Manager Proxy 3.2 SUSE Manager Server 3.2 release-notes-susemanager-3.2.9-6.35.1 release-notes-susemanager-proxy-3.2.9-0.16.27.1 spacewalk-backend-2.8.57.17-3.33.1 spacewalk-backend-app-2.8.57.17-3.33.1 spacewalk-backend-applet-2.8.57.17-3.33.1 spacewalk-backend-cdn-2.8.57.17-3.33.1 spacewalk-backend-config-files-2.8.57.17-3.33.1 spacewalk-backend-config-files-common-2.8.57.17-3.33.1 spacewalk-backend-config-files-tool-2.8.57.17-3.33.1 spacewalk-backend-iss-2.8.57.17-3.33.1 spacewalk-backend-iss-export-2.8.57.17-3.33.1 spacewalk-backend-libs-2.8.57.17-3.33.1 spacewalk-backend-package-push-server-2.8.57.17-3.33.1 spacewalk-backend-server-2.8.57.17-3.33.1 spacewalk-backend-sql-2.8.57.17-3.33.1 spacewalk-backend-sql-oracle-2.8.57.17-3.33.1 spacewalk-backend-sql-postgresql-2.8.57.17-3.33.1 spacewalk-backend-tools-2.8.57.17-3.33.1 spacewalk-backend-xml-export-libs-2.8.57.17-3.33.1 spacewalk-backend-xmlrpc-2.8.57.17-3.33.1 spacewalk-base-2.8.7.17-3.30.1 spacewalk-base-minimal-2.8.7.17-3.30.1 spacewalk-base-minimal-config-2.8.7.17-3.30.1 spacewalk-dobby-2.8.7.17-3.30.1 spacewalk-html-2.8.7.17-3.30.1 spacewalk-proxy-broker-2.8.5.6-3.11.1 spacewalk-proxy-common-2.8.5.6-3.11.1 spacewalk-proxy-management-2.8.5.6-3.11.1 spacewalk-proxy-package-manager-2.8.5.6-3.11.1 spacewalk-proxy-redirect-2.8.5.6-3.11.1 spacewalk-proxy-salt-2.8.5.6-3.11.1 susemanager-web-libs-2.8.7.17-3.30.1 release-notes-susemanager-proxy-3.2.9-0.16.27.1 as a component of SUSE Manager Proxy 3.2 spacewalk-backend-2.8.57.17-3.33.1 as a component of SUSE Manager Proxy 3.2 spacewalk-backend-libs-2.8.57.17-3.33.1 as a component of SUSE Manager Proxy 3.2 spacewalk-base-minimal-2.8.7.17-3.30.1 as a component of SUSE Manager Proxy 3.2 spacewalk-base-minimal-config-2.8.7.17-3.30.1 as a component of SUSE Manager Proxy 3.2 spacewalk-proxy-broker-2.8.5.6-3.11.1 as a component of SUSE Manager Proxy 3.2 spacewalk-proxy-common-2.8.5.6-3.11.1 as a component of SUSE Manager Proxy 3.2 spacewalk-proxy-management-2.8.5.6-3.11.1 as a component of SUSE Manager Proxy 3.2 spacewalk-proxy-package-manager-2.8.5.6-3.11.1 as a component of SUSE Manager Proxy 3.2 spacewalk-proxy-redirect-2.8.5.6-3.11.1 as a component of SUSE Manager Proxy 3.2 spacewalk-proxy-salt-2.8.5.6-3.11.1 as a component of SUSE Manager Proxy 3.2 susemanager-web-libs-2.8.7.17-3.30.1 as a component of SUSE Manager Proxy 3.2 release-notes-susemanager-3.2.9-6.35.1 as a component of SUSE Manager Server 3.2 spacewalk-backend-2.8.57.17-3.33.1 as a component of SUSE Manager Server 3.2 spacewalk-backend-app-2.8.57.17-3.33.1 as a component of SUSE Manager Server 3.2 spacewalk-backend-applet-2.8.57.17-3.33.1 as a component of SUSE Manager Server 3.2 spacewalk-backend-config-files-2.8.57.17-3.33.1 as a component of SUSE Manager Server 3.2 spacewalk-backend-config-files-common-2.8.57.17-3.33.1 as a component of SUSE Manager Server 3.2 spacewalk-backend-config-files-tool-2.8.57.17-3.33.1 as a component of SUSE Manager Server 3.2 spacewalk-backend-iss-2.8.57.17-3.33.1 as a component of SUSE Manager Server 3.2 spacewalk-backend-iss-export-2.8.57.17-3.33.1 as a component of SUSE Manager Server 3.2 spacewalk-backend-libs-2.8.57.17-3.33.1 as a component of SUSE Manager Server 3.2 spacewalk-backend-package-push-server-2.8.57.17-3.33.1 as a component of SUSE Manager Server 3.2 spacewalk-backend-server-2.8.57.17-3.33.1 as a component of SUSE Manager Server 3.2 spacewalk-backend-sql-2.8.57.17-3.33.1 as a component of SUSE Manager Server 3.2 spacewalk-backend-sql-oracle-2.8.57.17-3.33.1 as a component of SUSE Manager Server 3.2 spacewalk-backend-sql-postgresql-2.8.57.17-3.33.1 as a component of SUSE Manager Server 3.2 spacewalk-backend-tools-2.8.57.17-3.33.1 as a component of SUSE Manager Server 3.2 spacewalk-backend-xml-export-libs-2.8.57.17-3.33.1 as a component of SUSE Manager Server 3.2 spacewalk-backend-xmlrpc-2.8.57.17-3.33.1 as a component of SUSE Manager Server 3.2 spacewalk-base-2.8.7.17-3.30.1 as a component of SUSE Manager Server 3.2 spacewalk-base-minimal-2.8.7.17-3.30.1 as a component of SUSE Manager Server 3.2 spacewalk-base-minimal-config-2.8.7.17-3.30.1 as a component of SUSE Manager Server 3.2 spacewalk-html-2.8.7.17-3.30.1 as a component of SUSE Manager Server 3.2 susemanager-web-libs-2.8.7.17-3.30.1 as a component of SUSE Manager Server 3.2 It was found that Spacewalk, all versions through 2.9, did not safely compute client token checksums. An attacker with a valid, but expired, authenticated set of headers could move some digits around, artificially extending the session validity without modifying the checksum. CVE-2019-10136 SUSE Manager Proxy 3.2:release-notes-susemanager-proxy-3.2.9-0.16.27.1 SUSE Manager Proxy 3.2:spacewalk-backend-2.8.57.17-3.33.1 SUSE Manager Proxy 3.2:spacewalk-backend-libs-2.8.57.17-3.33.1 SUSE Manager Proxy 3.2:spacewalk-base-minimal-2.8.7.17-3.30.1 SUSE Manager Proxy 3.2:spacewalk-base-minimal-config-2.8.7.17-3.30.1 SUSE Manager Proxy 3.2:spacewalk-proxy-broker-2.8.5.6-3.11.1 SUSE Manager Proxy 3.2:spacewalk-proxy-common-2.8.5.6-3.11.1 SUSE Manager Proxy 3.2:spacewalk-proxy-management-2.8.5.6-3.11.1 SUSE Manager Proxy 3.2:spacewalk-proxy-package-manager-2.8.5.6-3.11.1 SUSE Manager Proxy 3.2:spacewalk-proxy-redirect-2.8.5.6-3.11.1 SUSE Manager Proxy 3.2:spacewalk-proxy-salt-2.8.5.6-3.11.1 SUSE Manager Proxy 3.2:susemanager-web-libs-2.8.7.17-3.30.1 SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1 SUSE Manager Server 3.2:spacewalk-backend-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-app-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-applet-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-config-files-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-config-files-common-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-config-files-tool-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-iss-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-iss-export-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-libs-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-package-push-server-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-server-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-sql-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-sql-oracle-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-sql-postgresql-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-tools-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-xml-export-libs-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-xmlrpc-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-base-2.8.7.17-3.30.1 SUSE Manager Server 3.2:spacewalk-base-minimal-2.8.7.17-3.30.1 SUSE Manager Server 3.2:spacewalk-base-minimal-config-2.8.7.17-3.30.1 SUSE Manager Server 3.2:spacewalk-html-2.8.7.17-3.30.1 SUSE Manager Server 3.2:susemanager-web-libs-2.8.7.17-3.30.1 moderate 4 AV:N/AC:L/Au:S/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20191790-1/ https://www.suse.com/security/cve/CVE-2019-10136.html CVE-2019-10136 https://bugzilla.suse.com/1136480 SUSE Bug 1136480 A path traversal flaw was found in spacewalk-proxy, all versions through 2.9, in the way the proxy processes cached client tokens. A remote, unauthenticated attacker could use this flaw to test the existence of arbitrary files, if they have access to the proxy's filesystem, or can execute arbitrary code in the context of the httpd process. CVE-2019-10137 SUSE Manager Proxy 3.2:release-notes-susemanager-proxy-3.2.9-0.16.27.1 SUSE Manager Proxy 3.2:spacewalk-backend-2.8.57.17-3.33.1 SUSE Manager Proxy 3.2:spacewalk-backend-libs-2.8.57.17-3.33.1 SUSE Manager Proxy 3.2:spacewalk-base-minimal-2.8.7.17-3.30.1 SUSE Manager Proxy 3.2:spacewalk-base-minimal-config-2.8.7.17-3.30.1 SUSE Manager Proxy 3.2:spacewalk-proxy-broker-2.8.5.6-3.11.1 SUSE Manager Proxy 3.2:spacewalk-proxy-common-2.8.5.6-3.11.1 SUSE Manager Proxy 3.2:spacewalk-proxy-management-2.8.5.6-3.11.1 SUSE Manager Proxy 3.2:spacewalk-proxy-package-manager-2.8.5.6-3.11.1 SUSE Manager Proxy 3.2:spacewalk-proxy-redirect-2.8.5.6-3.11.1 SUSE Manager Proxy 3.2:spacewalk-proxy-salt-2.8.5.6-3.11.1 SUSE Manager Proxy 3.2:susemanager-web-libs-2.8.7.17-3.30.1 SUSE Manager Server 3.2:release-notes-susemanager-3.2.9-6.35.1 SUSE Manager Server 3.2:spacewalk-backend-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-app-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-applet-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-config-files-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-config-files-common-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-config-files-tool-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-iss-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-iss-export-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-libs-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-package-push-server-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-server-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-sql-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-sql-oracle-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-sql-postgresql-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-tools-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-xml-export-libs-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-backend-xmlrpc-2.8.57.17-3.33.1 SUSE Manager Server 3.2:spacewalk-base-2.8.7.17-3.30.1 SUSE Manager Server 3.2:spacewalk-base-minimal-2.8.7.17-3.30.1 SUSE Manager Server 3.2:spacewalk-base-minimal-config-2.8.7.17-3.30.1 SUSE Manager Server 3.2:spacewalk-html-2.8.7.17-3.30.1 SUSE Manager Server 3.2:susemanager-web-libs-2.8.7.17-3.30.1 moderate 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2019/suse-su-20191790-1/ https://www.suse.com/security/cve/CVE-2019-10137.html CVE-2019-10137 https://bugzilla.suse.com/1136476 SUSE Bug 1136476