Novell

This is Your Open EnterpriseTM

SUSE Manager 6445

(3fbb4edf5375671fbc21e432ba8996c4)

This document (5145796) is provided subject to the disclaimer at the end of this document.

patches this patch supersedes

This patch does not supersede any other patches.

patches that supersede this patch

This patch is not superseded by any other patches.

patch attributes

Architecture: x86-64
Security patch: YesView security alerts.
Priority: Mandatory
Distribution Type: Public

document

Revision: 1
Document ID: 5145796
Creation Date: 2012-07-03 18:11:14

abstract

Moderate: Security update for SUSE Manager (6445)


Patch: sleman12sp1-spacewalk-backend-6445
CVEs: CVE-2012-0414
Bugs: 753326, 760306, 760771, 761165, 763878, 763891, 764532, 764544, 765053

Applies to:

Package(s): spacewalk-backend spacewalk-backend-app spacewalk-backend-applet spacewalk-backend-config-files spacewalk-backend-config-files-common spacewalk-backend-config-files-tool spacewalk-backend-iss spacewalk-backend-iss-export spacewalk-backend-libs spacewalk-backend-package-push-server spacewalk-backend-server spacewalk-backend-sql spacewalk-backend-sql-oracle spacewalk-backend-sql-postgresql spacewalk-backend-tools spacewalk-backend-xml-export-libs spacewalk-backend-xmlrpc spacewalk-backend-xp spacewalk-base spacewalk-base-minimal spacewalk-certs-tools spacewalk-dobby spacewalk-grail spacewalk-html spacewalk-java spacewalk-java-config spacewalk-java-lib spacewalk-java-oracle spacewalk-java-postgresql spacewalk-pxt spacewalk-sniglets spacewalk-taskomatic spacewalk-web susemanager susemanager-schema susemanager-tools
Product(s):
SUSE Manager 1.2 for SLE 11 SP1

details

Indications

Everbody should update.

Contraindications

None.

Description

This update fixes the following issues:

  • new function signature for image deployment
  • ignore ip6addr if provided with hw_refresh from newer client versions
  • do not add a bootstrap repository on SLES 11-SP2
  • escape image names to prevent XSS (CVE-2012-0414)
  • spacewalk-dobby now requires oracle-update
  • fix owner and permissions of /etc/rhn for spacewalk-dobby
  • make values in suseProductChannel unique before adding an unique index
  • added desktop file for susemanager_setup YaST module
  • add missing schema migration for rhnErrataBuglistTmp.
  • add option to migrate channels to RES subscriptions (bnc#765053)
  • fix schema upgrade
  • improved performance for repomd generation
  • fix ISE during registration because of duplicate ids
  • fix wrong transaction name in unsubscribe_channels
  • fix saving of SUSE Product names

How to apply this update:

1. Log in as root user to the SUSE Manager server.
2. Stop the Spacewalk service:   
    spacewalk-service stop
    If the SUSE Manager database is running on the same machine as the
    SUSE Manager server, this command also stops the SUSE Manager
    database instance.
3. Apply the patch using either zypper patch or YaST Online Update.
4. If the SUSE Manager database is running on the same machine as your
    SUSE Manager server, start the database instance with    
    /etc/init.d/oracle-xe start
    or   
    /etc/init.d/oracle start
5. Upgrade the database schema with spacewalk-schema-upgrade
6. Start the Spacewalk service:    
   spacewalk-service start

Security Issue reference:

Solution

This update is provided as a set of RPM packages that can easily be installed onto a running system by using the YaST online update module. Please install the update.

file contents

Files IncludedSizeDate
spacewalk-dobby-1.2.31-0.39.3.noarch.rpm26.0 KB (26629)2012-07-03 18:11:40
spacewalk-backend-package-push-server-1.2.74-0.58.1.x86_64.rpm25.8 KB (26504)2012-07-03 18:11:31
spacewalk-backend-server-1.2.74-0.58.1.x86_64.rpm362.3 KB (371085)2012-07-03 18:11:32
spacewalk-backend-sql-oracle-1.2.74-0.58.1.x86_64.rpm30.7 KB (31480)2012-07-03 18:11:34
spacewalk-html-1.2.31-0.39.3.noarch.rpm225.1 KB (230604)2012-07-03 18:11:42
spacewalk-backend-config-files-1.2.74-0.58.1.x86_64.rpm26.2 KB (26886)2012-07-03 18:11:27
susemanager-tools-1.2.0-0.58.1.x86_64.rpm46.2 KB (47316)2012-07-03 18:11:56
spacewalk-java-lib-1.2.115-0.60.1.noarch.rpm3.3 MB (3543030)2012-07-03 18:11:50
spacewalk-pxt-1.2.31-0.39.3.noarch.rpm35.1 KB (35965)2012-07-03 18:11:52
spacewalk-backend-iss-1.2.74-0.58.1.x86_64.rpm24.4 KB (25059)2012-07-03 18:11:29
spacewalk-java-oracle-1.2.115-0.60.1.noarch.rpm13.7 KB (14124)2012-07-03 18:11:51
spacewalk-grail-1.2.31-0.39.3.noarch.rpm11.0 KB (11331)2012-07-03 18:11:41
spacewalk-backend-iss-export-1.2.74-0.58.1.x86_64.rpm37.1 KB (38024)2012-07-03 18:11:30
spacewalk-java-1.2.115-0.60.1.noarch.rpm2.2 MB (2313526)2012-07-03 18:11:45
spacewalk-backend-libs-1.2.74-0.58.1.x86_64.rpm42.6 KB (43674)2012-07-03 18:11:31
spacewalk-sniglets-1.2.31-0.39.3.noarch.rpm111.2 KB (113886)2012-07-03 18:11:53
spacewalk-taskomatic-1.2.115-0.60.1.noarch.rpm19.1 KB (19571)2012-07-03 18:11:53
spacewalk-backend-app-1.2.74-0.58.1.x86_64.rpm31.2 KB (31974)2012-07-03 18:11:25
spacewalk-backend-xmlrpc-1.2.74-0.58.1.x86_64.rpm121.0 KB (123924)2012-07-03 18:11:36
readme_5145796.htmlN/A2012-07-03 18:17:13

source packages

Download the source code of the patches for maintained products.

disclaimer

The Origin of this information may be internal or external to Novell. Novell makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Novell makes no explicit or implied claims to the validity of this information. Any trademarks referenced in this document are the property of their respective owners. Consult your product manuals for complete trademark information.

Novell is a registered trademark of Novell, Inc. in the United States and other countries. SUSE is a registered trademark of SUSE Linux AG, a Novell business. *All third-party trademarks are the property of their respective owners.

© 2007 Novell, Inc. All Rights Reserved.