Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2017-7470 (GCVE-0-2017-7470)
Vulnerability from cvelistv5 – Published: 2018-07-27 13:00 – Updated: 2024-08-05 16:04
VLAI?
EPSS
Summary
It was found that spacewalk-channel can be used by a non-admin user or disabled users to perform administrative tasks due to an incorrect authorization check in backend/server/rhnChannel.py.
Severity ?
6.5 (Medium)
CWE
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| [UNKNOWN] | spacewalk-backend |
Affected:
n/a
|
Date Public ?
2017-05-18 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T16:04:11.576Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "RHSA-2017:1259",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2017:1259"
},
{
"name": "98569",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/98569"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7470"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "spacewalk-backend",
"vendor": "[UNKNOWN]",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2017-05-18T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "It was found that spacewalk-channel can be used by a non-admin user or disabled users to perform administrative tasks due to an incorrect authorization check in backend/server/rhnChannel.py."
}
],
"metrics": [
{
"cvssV3_0": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-863",
"description": "CWE-863",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-07-28T09:57:01.000Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "RHSA-2017:1259",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2017:1259"
},
{
"name": "98569",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/98569"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7470"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2017-7470",
"datePublished": "2018-07-27T13:00:00.000Z",
"dateReserved": "2017-04-05T00:00:00.000Z",
"dateUpdated": "2024-08-05T16:04:11.576Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2017-7470\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2018-07-27T13:29:00.333\",\"lastModified\":\"2024-11-21T03:31:58.013\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"It was found that spacewalk-channel can be used by a non-admin user or disabled users to perform administrative tasks due to an incorrect authorization check in backend/server/rhnChannel.py.\"},{\"lang\":\"es\",\"value\":\"Se ha encontrado que spacewalk-channel puede ser utilizado por un usuario no administrador o por usuarios deshabilitados para realizar tareas administrativas debido a una verificaci\u00f3n de autorizaci\u00f3n incorrecta en backend/servidor/rhnChannel.py.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-863\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-863\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:spacewalk:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4453945E-AECE-4BD2-B952-99E7DC306CA1\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:satellite:5.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D4840254-CC76-4113-BC61-360BD15582B9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:satellite:5.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"85EA16E0-9261-45C4-840F-5366E9EAC5E1\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/98569\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1259\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7470\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/98569\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2017:1259\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7470\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]}]}}"
}
}
SUSE-SU-2017:1346-1
Vulnerability from csaf_suse - Published: 2017-05-18 22:20 - Updated: 2017-05-18 22:20Summary
Security update for SUSE Manager Proxy 3.0
Severity
Moderate
Notes
Title of the patch: Security update for SUSE Manager Proxy 3.0
Description of the patch:
The following security issue in spacewalk-backend has been fixed:
- Non admin or disabled user cannot make changes to a system anymore using spacewalk-channel.
(bsc#1026633, CVE-2017-7470)
Additionally, the following non-security issues have been fixed:
rhnlib:
- Support all TLS versions in rpclib. (bsc#1025312)
spacewalk-backend:
- Do not fail with traceback when media.1 does not exist. (bsc#1032256)
- Create scap files dir beforehand. (bsc#1029755)
- Fix error if SPACEWALK_DEBUG_NO_REPORTS env variable is not present.
- Don't skip 'rhnErrataPackage' cleanup during an errata update. (bsc#1023233)
- Add support for running spacewalk-debug without creating reports. (bsc#1024714)
- Set scap store dir mod to 775 and group owner to susemanager.
- Incomplete_package_import: do import rhnPackageFile as it breaks some package installations.
- Added traceback printing to the exception block.
- Change postgresql starting commands.
spacewalk-certs-tools:
- Always restart the minion regardless of its current state. (bsc#1034956)
- Correctly honor disabling of SSL in bootstrap script. (bsc#1033383)
- Add curl dependency and move mgr-proxy-ssh* to spacewalk-proxy package.
- Exit for non-traditional bootstrap scripts. (bsc#1020904)
- Rename mgr-ssh-proxy-force-cmd -> mgr-proxy-ssh-force-cmd.
- Add mgr-proxy-ssh-force-cmd, mgr-proxy-ssh-push-init to rpm.
- Add option to configure only sshd.
- Restrictive ssh options for user mgrsshtunnel.
spacewalk-client-tools:
- Fix reboot message to use correct product name. (bsc#1031667)
spacewalk-proxy:
- Add curl dependency and move mgr-proxy-ssh* to spacewalk-proxy package.
- Lower the use-file-instead-of-memory treshold. (bsc#1030342)
spacewalk-proxy-installer:
- Do not start firewall on proxy during configuration if not already active. (bsc#1031338)
- Salt minions get repodata via a different URL; reflect by additional squid rule. (bsc#1027873)
- Only warn if parent ssh-push pub key could not be retrieved.
- Generate and auth ssh push keys for user mgrsshtunnel.
- Authorize parent salt-ssh key on proxy.
- Generate proxy ssh-push key and authorize the previous proxy in the chain.
- Generate own ssh-push key for proxy and authorize parent.
spacewalk-web:
- Remote Commands: Allow Web Socket to be opened on non-standard port.
- Improve remote cmd ui err handling.
- Show message when waiting for ssh minions times out.
- Fix remote cmd ui js err and timed out message.
- Remote cmd UI changes for salt-ssh minions.
- Fix broken help link for taskstatus. (bsc#1017422)
- Add js utility function to create Date objects in different timezones.
- Show proxy path in bootstrap UI.
- Clear proxy selection when clicking clear fields button.
- Check if proxy hostname is FQDN not name in UI.
- Show warn in bootstrap UI if proxy hostname is not a FQDN.
susemanager-sls:
- Add certificate state for CAASP.
- Add certificate state for SLES for SAP. (bsc#1031659)
- Pre-create empty top.sls with no-op. (bsc#1017754)
- Add xccdf result xslt.
- Fix mainframesysinfo module to use /proc/sysinfo on SLES11. (bsc#1025758)
- Set scap store dir mod to 775 and group owner to susemanager.
- Store uploaded scap files.
- Set minion own key owner to bootstrap ssh_push_sudo_user.
- Runner to generate ssh key and execute cmd via proxies.
- Change ssh bootstrap state to generate and auth keys for salt-ssh push with tunnel.
- Authorize parent salt-ssh key on proxy.
How to apply this update:
1. Log in as root user to the SUSE Manager proxy.
2. Stop the proxy service:
spacewalk-proxy stop
3. Apply the patch using either zypper patch or YaST Online Update.
4. Start the Spacewalk service:
spacewalk-proxy start
Patchnames: SUSE-SUSE-Manager-Proxy-3.0-2017-827
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for SUSE Manager Proxy 3.0",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe following security issue in spacewalk-backend has been fixed:\n\n- Non admin or disabled user cannot make changes to a system anymore using spacewalk-channel.\n (bsc#1026633, CVE-2017-7470)\n\nAdditionally, the following non-security issues have been fixed:\n\nrhnlib:\n\n- Support all TLS versions in rpclib. (bsc#1025312)\n\nspacewalk-backend:\n\n- Do not fail with traceback when media.1 does not exist. (bsc#1032256)\n- Create scap files dir beforehand. (bsc#1029755)\n- Fix error if SPACEWALK_DEBUG_NO_REPORTS env variable is not present.\n- Don\u0027t skip \u0027rhnErrataPackage\u0027 cleanup during an errata update. (bsc#1023233)\n- Add support for running spacewalk-debug without creating reports. (bsc#1024714)\n- Set scap store dir mod to 775 and group owner to susemanager.\n- Incomplete_package_import: do import rhnPackageFile as it breaks some package installations.\n- Added traceback printing to the exception block.\n- Change postgresql starting commands.\n\nspacewalk-certs-tools:\n\n- Always restart the minion regardless of its current state. (bsc#1034956)\n- Correctly honor disabling of SSL in bootstrap script. (bsc#1033383)\n- Add curl dependency and move mgr-proxy-ssh* to spacewalk-proxy package.\n- Exit for non-traditional bootstrap scripts. (bsc#1020904)\n- Rename mgr-ssh-proxy-force-cmd -\u003e mgr-proxy-ssh-force-cmd.\n- Add mgr-proxy-ssh-force-cmd, mgr-proxy-ssh-push-init to rpm.\n- Add option to configure only sshd.\n- Restrictive ssh options for user mgrsshtunnel.\n\nspacewalk-client-tools:\n\n- Fix reboot message to use correct product name. (bsc#1031667)\n\nspacewalk-proxy:\n\n- Add curl dependency and move mgr-proxy-ssh* to spacewalk-proxy package.\n- Lower the use-file-instead-of-memory treshold. (bsc#1030342)\n\nspacewalk-proxy-installer:\n\n- Do not start firewall on proxy during configuration if not already active. (bsc#1031338)\n- Salt minions get repodata via a different URL; reflect by additional squid rule. (bsc#1027873)\n- Only warn if parent ssh-push pub key could not be retrieved.\n- Generate and auth ssh push keys for user mgrsshtunnel.\n- Authorize parent salt-ssh key on proxy.\n- Generate proxy ssh-push key and authorize the previous proxy in the chain.\n- Generate own ssh-push key for proxy and authorize parent.\n\nspacewalk-web:\n\n- Remote Commands: Allow Web Socket to be opened on non-standard port.\n- Improve remote cmd ui err handling.\n- Show message when waiting for ssh minions times out.\n- Fix remote cmd ui js err and timed out message.\n- Remote cmd UI changes for salt-ssh minions.\n- Fix broken help link for taskstatus. (bsc#1017422)\n- Add js utility function to create Date objects in different timezones.\n- Show proxy path in bootstrap UI.\n- Clear proxy selection when clicking clear fields button.\n- Check if proxy hostname is FQDN not name in UI.\n- Show warn in bootstrap UI if proxy hostname is not a FQDN.\n\nsusemanager-sls:\n\n- Add certificate state for CAASP.\n- Add certificate state for SLES for SAP. (bsc#1031659)\n- Pre-create empty top.sls with no-op. (bsc#1017754)\n- Add xccdf result xslt.\n- Fix mainframesysinfo module to use /proc/sysinfo on SLES11. (bsc#1025758)\n- Set scap store dir mod to 775 and group owner to susemanager.\n- Store uploaded scap files.\n- Set minion own key owner to bootstrap ssh_push_sudo_user.\n- Runner to generate ssh key and execute cmd via proxies.\n- Change ssh bootstrap state to generate and auth keys for salt-ssh push with tunnel.\n- Authorize parent salt-ssh key on proxy.\n\nHow to apply this update:\n1. Log in as root user to the SUSE Manager proxy.\n2. Stop the proxy service:\nspacewalk-proxy stop\n3. Apply the patch using either zypper patch or YaST Online Update.\n4. Start the Spacewalk service:\nspacewalk-proxy start\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SUSE-Manager-Proxy-3.0-2017-827",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_1346-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2017:1346-1",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20171346-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2017:1346-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2017-May/002897.html"
},
{
"category": "self",
"summary": "SUSE Bug 1017422",
"url": "https://bugzilla.suse.com/1017422"
},
{
"category": "self",
"summary": "SUSE Bug 1017754",
"url": "https://bugzilla.suse.com/1017754"
},
{
"category": "self",
"summary": "SUSE Bug 1020904",
"url": "https://bugzilla.suse.com/1020904"
},
{
"category": "self",
"summary": "SUSE Bug 1023233",
"url": "https://bugzilla.suse.com/1023233"
},
{
"category": "self",
"summary": "SUSE Bug 1024714",
"url": "https://bugzilla.suse.com/1024714"
},
{
"category": "self",
"summary": "SUSE Bug 1025312",
"url": "https://bugzilla.suse.com/1025312"
},
{
"category": "self",
"summary": "SUSE Bug 1025758",
"url": "https://bugzilla.suse.com/1025758"
},
{
"category": "self",
"summary": "SUSE Bug 1026633",
"url": "https://bugzilla.suse.com/1026633"
},
{
"category": "self",
"summary": "SUSE Bug 1027873",
"url": "https://bugzilla.suse.com/1027873"
},
{
"category": "self",
"summary": "SUSE Bug 1029755",
"url": "https://bugzilla.suse.com/1029755"
},
{
"category": "self",
"summary": "SUSE Bug 1030342",
"url": "https://bugzilla.suse.com/1030342"
},
{
"category": "self",
"summary": "SUSE Bug 1031338",
"url": "https://bugzilla.suse.com/1031338"
},
{
"category": "self",
"summary": "SUSE Bug 1031659",
"url": "https://bugzilla.suse.com/1031659"
},
{
"category": "self",
"summary": "SUSE Bug 1031667",
"url": "https://bugzilla.suse.com/1031667"
},
{
"category": "self",
"summary": "SUSE Bug 1032256",
"url": "https://bugzilla.suse.com/1032256"
},
{
"category": "self",
"summary": "SUSE Bug 1033383",
"url": "https://bugzilla.suse.com/1033383"
},
{
"category": "self",
"summary": "SUSE Bug 1034956",
"url": "https://bugzilla.suse.com/1034956"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7470 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7470/"
}
],
"title": "Security update for SUSE Manager Proxy 3.0",
"tracking": {
"current_release_date": "2017-05-18T22:20:37Z",
"generator": {
"date": "2017-05-18T22:20:37Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2017:1346-1",
"initial_release_date": "2017-05-18T22:20:37Z",
"revision_history": [
{
"date": "2017-05-18T22:20:37Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "rhnlib-2.5.84.4-6.1.noarch",
"product": {
"name": "rhnlib-2.5.84.4-6.1.noarch",
"product_id": "rhnlib-2.5.84.4-6.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-2.5.24.9-22.1.noarch",
"product": {
"name": "spacewalk-backend-2.5.24.9-22.1.noarch",
"product_id": "spacewalk-backend-2.5.24.9-22.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-2.5.24.9-22.1.noarch",
"product": {
"name": "spacewalk-backend-libs-2.5.24.9-22.1.noarch",
"product_id": "spacewalk-backend-libs-2.5.24.9-22.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-minimal-2.5.7.15-21.1.noarch",
"product": {
"name": "spacewalk-base-minimal-2.5.7.15-21.1.noarch",
"product_id": "spacewalk-base-minimal-2.5.7.15-21.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-minimal-config-2.5.7.15-21.1.noarch",
"product": {
"name": "spacewalk-base-minimal-config-2.5.7.15-21.1.noarch",
"product_id": "spacewalk-base-minimal-config-2.5.7.15-21.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-certs-tools-2.5.1.8-17.1.noarch",
"product": {
"name": "spacewalk-certs-tools-2.5.1.8-17.1.noarch",
"product_id": "spacewalk-certs-tools-2.5.1.8-17.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-check-2.5.13.8-17.2.noarch",
"product": {
"name": "spacewalk-check-2.5.13.8-17.2.noarch",
"product_id": "spacewalk-check-2.5.13.8-17.2.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-client-setup-2.5.13.8-17.2.noarch",
"product": {
"name": "spacewalk-client-setup-2.5.13.8-17.2.noarch",
"product_id": "spacewalk-client-setup-2.5.13.8-17.2.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-client-tools-2.5.13.8-17.2.noarch",
"product": {
"name": "spacewalk-client-tools-2.5.13.8-17.2.noarch",
"product_id": "spacewalk-client-tools-2.5.13.8-17.2.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-broker-2.5.1.7-15.1.noarch",
"product": {
"name": "spacewalk-proxy-broker-2.5.1.7-15.1.noarch",
"product_id": "spacewalk-proxy-broker-2.5.1.7-15.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-common-2.5.1.7-15.1.noarch",
"product": {
"name": "spacewalk-proxy-common-2.5.1.7-15.1.noarch",
"product_id": "spacewalk-proxy-common-2.5.1.7-15.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-installer-2.5.2.5-6.1.noarch",
"product": {
"name": "spacewalk-proxy-installer-2.5.2.5-6.1.noarch",
"product_id": "spacewalk-proxy-installer-2.5.2.5-6.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-management-2.5.1.7-15.1.noarch",
"product": {
"name": "spacewalk-proxy-management-2.5.1.7-15.1.noarch",
"product_id": "spacewalk-proxy-management-2.5.1.7-15.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-package-manager-2.5.1.7-15.1.noarch",
"product": {
"name": "spacewalk-proxy-package-manager-2.5.1.7-15.1.noarch",
"product_id": "spacewalk-proxy-package-manager-2.5.1.7-15.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-redirect-2.5.1.7-15.1.noarch",
"product": {
"name": "spacewalk-proxy-redirect-2.5.1.7-15.1.noarch",
"product_id": "spacewalk-proxy-redirect-2.5.1.7-15.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-proxy-salt-2.5.1.7-15.1.noarch",
"product": {
"name": "spacewalk-proxy-salt-2.5.1.7-15.1.noarch",
"product_id": "spacewalk-proxy-salt-2.5.1.7-15.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-sls-0.1.20-23.1.noarch",
"product": {
"name": "susemanager-sls-0.1.20-23.1.noarch",
"product_id": "susemanager-sls-0.1.20-23.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Manager Proxy 3.0",
"product": {
"name": "SUSE Manager Proxy 3.0",
"product_id": "SUSE Manager Proxy 3.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-proxy:3.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhnlib-2.5.84.4-6.1.noarch as component of SUSE Manager Proxy 3.0",
"product_id": "SUSE Manager Proxy 3.0:rhnlib-2.5.84.4-6.1.noarch"
},
"product_reference": "rhnlib-2.5.84.4-6.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-2.5.24.9-22.1.noarch as component of SUSE Manager Proxy 3.0",
"product_id": "SUSE Manager Proxy 3.0:spacewalk-backend-2.5.24.9-22.1.noarch"
},
"product_reference": "spacewalk-backend-2.5.24.9-22.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-2.5.24.9-22.1.noarch as component of SUSE Manager Proxy 3.0",
"product_id": "SUSE Manager Proxy 3.0:spacewalk-backend-libs-2.5.24.9-22.1.noarch"
},
"product_reference": "spacewalk-backend-libs-2.5.24.9-22.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-2.5.7.15-21.1.noarch as component of SUSE Manager Proxy 3.0",
"product_id": "SUSE Manager Proxy 3.0:spacewalk-base-minimal-2.5.7.15-21.1.noarch"
},
"product_reference": "spacewalk-base-minimal-2.5.7.15-21.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-config-2.5.7.15-21.1.noarch as component of SUSE Manager Proxy 3.0",
"product_id": "SUSE Manager Proxy 3.0:spacewalk-base-minimal-config-2.5.7.15-21.1.noarch"
},
"product_reference": "spacewalk-base-minimal-config-2.5.7.15-21.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-certs-tools-2.5.1.8-17.1.noarch as component of SUSE Manager Proxy 3.0",
"product_id": "SUSE Manager Proxy 3.0:spacewalk-certs-tools-2.5.1.8-17.1.noarch"
},
"product_reference": "spacewalk-certs-tools-2.5.1.8-17.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-check-2.5.13.8-17.2.noarch as component of SUSE Manager Proxy 3.0",
"product_id": "SUSE Manager Proxy 3.0:spacewalk-check-2.5.13.8-17.2.noarch"
},
"product_reference": "spacewalk-check-2.5.13.8-17.2.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-client-setup-2.5.13.8-17.2.noarch as component of SUSE Manager Proxy 3.0",
"product_id": "SUSE Manager Proxy 3.0:spacewalk-client-setup-2.5.13.8-17.2.noarch"
},
"product_reference": "spacewalk-client-setup-2.5.13.8-17.2.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-client-tools-2.5.13.8-17.2.noarch as component of SUSE Manager Proxy 3.0",
"product_id": "SUSE Manager Proxy 3.0:spacewalk-client-tools-2.5.13.8-17.2.noarch"
},
"product_reference": "spacewalk-client-tools-2.5.13.8-17.2.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-proxy-broker-2.5.1.7-15.1.noarch as component of SUSE Manager Proxy 3.0",
"product_id": "SUSE Manager Proxy 3.0:spacewalk-proxy-broker-2.5.1.7-15.1.noarch"
},
"product_reference": "spacewalk-proxy-broker-2.5.1.7-15.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-proxy-common-2.5.1.7-15.1.noarch as component of SUSE Manager Proxy 3.0",
"product_id": "SUSE Manager Proxy 3.0:spacewalk-proxy-common-2.5.1.7-15.1.noarch"
},
"product_reference": "spacewalk-proxy-common-2.5.1.7-15.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-proxy-installer-2.5.2.5-6.1.noarch as component of SUSE Manager Proxy 3.0",
"product_id": "SUSE Manager Proxy 3.0:spacewalk-proxy-installer-2.5.2.5-6.1.noarch"
},
"product_reference": "spacewalk-proxy-installer-2.5.2.5-6.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-proxy-management-2.5.1.7-15.1.noarch as component of SUSE Manager Proxy 3.0",
"product_id": "SUSE Manager Proxy 3.0:spacewalk-proxy-management-2.5.1.7-15.1.noarch"
},
"product_reference": "spacewalk-proxy-management-2.5.1.7-15.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-proxy-package-manager-2.5.1.7-15.1.noarch as component of SUSE Manager Proxy 3.0",
"product_id": "SUSE Manager Proxy 3.0:spacewalk-proxy-package-manager-2.5.1.7-15.1.noarch"
},
"product_reference": "spacewalk-proxy-package-manager-2.5.1.7-15.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-proxy-redirect-2.5.1.7-15.1.noarch as component of SUSE Manager Proxy 3.0",
"product_id": "SUSE Manager Proxy 3.0:spacewalk-proxy-redirect-2.5.1.7-15.1.noarch"
},
"product_reference": "spacewalk-proxy-redirect-2.5.1.7-15.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-proxy-salt-2.5.1.7-15.1.noarch as component of SUSE Manager Proxy 3.0",
"product_id": "SUSE Manager Proxy 3.0:spacewalk-proxy-salt-2.5.1.7-15.1.noarch"
},
"product_reference": "spacewalk-proxy-salt-2.5.1.7-15.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-sls-0.1.20-23.1.noarch as component of SUSE Manager Proxy 3.0",
"product_id": "SUSE Manager Proxy 3.0:susemanager-sls-0.1.20-23.1.noarch"
},
"product_reference": "susemanager-sls-0.1.20-23.1.noarch",
"relates_to_product_reference": "SUSE Manager Proxy 3.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-7470",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7470"
}
],
"notes": [
{
"category": "general",
"text": "It was found that spacewalk-channel can be used by a non-admin user or disabled users to perform administrative tasks due to an incorrect authorization check in backend/server/rhnChannel.py.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Manager Proxy 3.0:rhnlib-2.5.84.4-6.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-backend-2.5.24.9-22.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-backend-libs-2.5.24.9-22.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-base-minimal-2.5.7.15-21.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-base-minimal-config-2.5.7.15-21.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-certs-tools-2.5.1.8-17.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-check-2.5.13.8-17.2.noarch",
"SUSE Manager Proxy 3.0:spacewalk-client-setup-2.5.13.8-17.2.noarch",
"SUSE Manager Proxy 3.0:spacewalk-client-tools-2.5.13.8-17.2.noarch",
"SUSE Manager Proxy 3.0:spacewalk-proxy-broker-2.5.1.7-15.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-proxy-common-2.5.1.7-15.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-proxy-installer-2.5.2.5-6.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-proxy-management-2.5.1.7-15.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-proxy-package-manager-2.5.1.7-15.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-proxy-redirect-2.5.1.7-15.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-proxy-salt-2.5.1.7-15.1.noarch",
"SUSE Manager Proxy 3.0:susemanager-sls-0.1.20-23.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7470",
"url": "https://www.suse.com/security/cve/CVE-2017-7470"
},
{
"category": "external",
"summary": "SUSE Bug 1026633 for CVE-2017-7470",
"url": "https://bugzilla.suse.com/1026633"
},
{
"category": "external",
"summary": "SUSE Bug 1057882 for CVE-2017-7470",
"url": "https://bugzilla.suse.com/1057882"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Manager Proxy 3.0:rhnlib-2.5.84.4-6.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-backend-2.5.24.9-22.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-backend-libs-2.5.24.9-22.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-base-minimal-2.5.7.15-21.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-base-minimal-config-2.5.7.15-21.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-certs-tools-2.5.1.8-17.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-check-2.5.13.8-17.2.noarch",
"SUSE Manager Proxy 3.0:spacewalk-client-setup-2.5.13.8-17.2.noarch",
"SUSE Manager Proxy 3.0:spacewalk-client-tools-2.5.13.8-17.2.noarch",
"SUSE Manager Proxy 3.0:spacewalk-proxy-broker-2.5.1.7-15.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-proxy-common-2.5.1.7-15.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-proxy-installer-2.5.2.5-6.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-proxy-management-2.5.1.7-15.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-proxy-package-manager-2.5.1.7-15.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-proxy-redirect-2.5.1.7-15.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-proxy-salt-2.5.1.7-15.1.noarch",
"SUSE Manager Proxy 3.0:susemanager-sls-0.1.20-23.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"SUSE Manager Proxy 3.0:rhnlib-2.5.84.4-6.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-backend-2.5.24.9-22.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-backend-libs-2.5.24.9-22.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-base-minimal-2.5.7.15-21.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-base-minimal-config-2.5.7.15-21.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-certs-tools-2.5.1.8-17.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-check-2.5.13.8-17.2.noarch",
"SUSE Manager Proxy 3.0:spacewalk-client-setup-2.5.13.8-17.2.noarch",
"SUSE Manager Proxy 3.0:spacewalk-client-tools-2.5.13.8-17.2.noarch",
"SUSE Manager Proxy 3.0:spacewalk-proxy-broker-2.5.1.7-15.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-proxy-common-2.5.1.7-15.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-proxy-installer-2.5.2.5-6.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-proxy-management-2.5.1.7-15.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-proxy-package-manager-2.5.1.7-15.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-proxy-redirect-2.5.1.7-15.1.noarch",
"SUSE Manager Proxy 3.0:spacewalk-proxy-salt-2.5.1.7-15.1.noarch",
"SUSE Manager Proxy 3.0:susemanager-sls-0.1.20-23.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-05-18T22:20:37Z",
"details": "important"
}
],
"title": "CVE-2017-7470"
}
]
}
SUSE-SU-2017:1349-1
Vulnerability from csaf_suse - Published: 2017-05-18 22:20 - Updated: 2017-05-18 22:20Summary
Security update for SUSE Manager Server 3.0
Severity
Moderate
Notes
Title of the patch: Security update for SUSE Manager Server 3.0
Description of the patch:
The following security issue in spacewalk-backend has been fixed:
- Non admin or disabled user cannot make changes to a system anymore using spacewalk-channel.
(bsc#1026633, CVE-2017-7470)
Additionally, the following non-security issues have been fixed:
rhnlib:
- Support all TLS versions in rpclib. (bsc#1025312)
salt-netapi-client:
- Fix date format for Schedule module. (bsc#1034465)
spacecmd:
- Improve output on error for listrepo. (bsc#1027426)
- Reword spacecmd removal message. (bsc#1024406)
spacewalk-backend:
- Do not fail with traceback when media.1 does not exist. (bsc#1032256)
- Create scap files directory beforehand. (bsc#1029755)
- Fix error if SPACEWALK_DEBUG_NO_REPORTS environment variable is not present.
- Don't skip 'rhnErrataPackage' cleanup during an errata update. (bsc#1023233)
- Add support for running spacewalk-debug without creating reports. (bsc#1024714)
- Set scap store directory mod to 775 and group owner to susemanager.
- incomplete_package_import: Do import rhnPackageFile as it breaks some package installations.
- Added traceback printing to the exception block.
- Change postgresql starting commands.
spacewalk-certs-tools:
- Always restart the minion regardless of its current state. (bsc#1034956)
- Correctly honor disabling of SSL in bootstrap script. (bsc#1033383)
- Add curl dependency and move mgr-proxy-ssh* to spacewalk-proxy package.
- Exit for non-traditional bootstrap scripts. (bsc#1020904)
- Rename mgr-ssh-proxy-force-cmd -> mgr-proxy-ssh-force-cmd.
- Add mgr-proxy-ssh-force-cmd, mgr-proxy-ssh-push-init to rpm.
- Add option to configure only sshd.
- Restrictive ssh options for user mgrsshtunnel.
spacewalk-client-tools:
- Fix reboot message to use correct product name. (bsc#1031667)
spacewalk-java:
- Fix missing IPs in Overview tab. (bsc#1031453)
- Fix scheduling VM deployment in future. (bsc#1034289)
- Handle empty set to not produce invalid sql. (bsc#1033497)
- Fix SSM group pagination. (bsc#1012784)
- Create PooledExecutor with pre-filled queue. (bsc#1030716)
- Make sure minion keys can only be seen/managed by appropriate user. (bsc#1025908)
- Set action status to 'failed' on uncaught exceptions. (bsc#1013606)
- Add missing library to taskomatic classpath. (bsc#1024066)
- Set log level to DEBUG for EOFException when the Websocket connection is aborted by the client. (bsc#1031826)
- Add a remote command with label as a script to the actionchain. (bsc#1011964)
- Fix architecture for default channels lookup. (bsc#1025275)
- Change required salt-netapi-client to >= 0.11.
- Using stream() during collection processing.
- Making salt presence timeouts configurable via rhn.conf. (bsc#1025761)
- Avoid blocking synchronous calls if some minions are unreachable. (bsc#1025761)
- Excludes unreachable minions from synchronous call to prevent blocking. (bsc#1025761)
- Fix LocalDateTimeISOAdapter to parse date string with timezone. (bsc#1024966)
- Create scap files directories beforehand. (bsc#1029755)
- Make country, state/province and city searchable for system location. (bsc#1020659)
- Change incorrect help link. (bsc#1017418)
- Don't allow scheduling scap scan if openscap pkg missing from minion.
- Make salt aware of rescheduled actions. (bsc#1027852)
- Close hibernate session on async salt-ssh call.
- Use a small fixed pool so we don't overwhelm the salt-api with salt-ssh executions
- Fix remote cmd ui js err and timed out message.
- Remote cmd UI changes for salt-ssh minions.
- Add support for salt ssh minions to remote cmd UI.
- Apply SessionFilter also for error pages. (bsc#1028062)
- Use correct logging class.
- Fix broken help link for taskstatus. (bsc#1017422)
- Test errata not removed from origin.
- Fix merge channels patches. (bsc#1025000)
- Change XccdfIdent.identifier mapping length to 100.
- Add xccdf result xslt.
- Fix mainframesysinfo module to use /proc/sysinfo on SLES11. (bsc#1025758)
- Use consistent spelling in UI. (bsc#1028306)
- Rewording distchannelmap text. (bsc#1017772)
- Javascript datepicker needs the timezone create a correct date object. (bsc#1024966)
- Don't show audit tab for ssh-push minions.
- Set scap store dir mod to 775 and group owner to susemanager.
- Better error handling and more tests.
- Store uploaded scap files.
- Openscap action scheduling and handling.
- Grant scap capability to minion on registration.
- Enable audit tab for salt minions.
- Scap inital xccdfEval and hibernate mappings.
- Show proxy path in bootstrap UI.
- AuthFilter tests: Update expectations to reflect cookie update at end of request.
- AuthFilter: Update cookie expiry date at end of HTTP request. (bsc#1025775)
- MinionActionCleanup: Only call list_jobs once per action id. (bsc#1025291)
- MinionActionCleanupTest: Expect that list_jobs is only called once.
- Feat: Allow salt-enabled bootstrap.sh via UI.
- Catch and display all bootstrap errors.
- Sync grains and beacons only for regular minions.
- Add new channel tokens to minion.accessTokens.
- Fix getting server path for a first level proxy.
- Fix bootstrap err when proxy not selected.
- Check if proxy hostname is FQDN not name in UI.
- Utility for runner to generate ssh key and execute cmd via proxies.
- Add proxy_pub_key to ssh bootstrap pillar.
- Add ssh timeout to temporary roster.
- Salt_ssh_connect_timeout configuration parameter.
- Authorize parent salt-ssh key on proxy.
- Java backend for salt ssh-push through proxy.
- Avoid deadlock with spacewalk-repo-sync. (bsc#1022530)
- Fix NPE when no SUSE Product was found for an installed product. (bsc#1029840)
- Keep organization after migrating a system to salt. (bsc#1026301)
- Fix glob only for noarch rpm(s).
- Feat: Dynamically detect deployed CA certificate.
- Fix restore original default (certificate).
- Rename variable (cert provided by RPM).
- Fix uniform bootstrap.sh. (bsc#1000762)
spacewalk-reports:
- Remove legacy audit logging reports. (bsc#1009545)
spacewalk-setup:
- Create /var/spacewalk/systems in spacewalk-setup and ensure perms on upgrade.
- Add xccdf result xslt.
- Authorize parent salt-ssh key on proxy.
spacewalk-web:
- Remote Commands: Allow Web Socket to be opened on non-standard port.
- Improve remote cmd ui error handling.
- Show message when waiting for ssh minions times out.
- Fix remote cmd ui js err and timed out message.
- Remote cmd UI changes for salt-ssh minions.
- Fix broken help link for taskstatus. (bsc#1017422)
- Add js utility function to create Date objects in different timezones.
- Show proxy path in bootstrap UI.
- Clear proxy selection when clicking clear fields button.
- Check if proxy hostname is FQDN not name in UI.
- Show warn in bootstrap UI if proxy hostname is not a FQDN.
subscription-matcher:
- Set -Xmx launch parameter based on customer data. (bsc#1024863)
- Small bugfixes and logging improvements.
susemanager:
- Add bootstrap repo data for SLES for SAP 12 SP2 ppc64le.
- Add python-setuptools to bootstrap repo. (bsc#1033731)
- Create directory manually if mksubvolume fails, so we now support btrfs based systems with missing mksubvoume
utility. (bsc#1031885)
- Create /var/spacewalk/systems in spacewalk-setup and ensure perms on upgrade
- Fix typo in comment noting option with-custom-channels. (bsc#1031092)
- Pre require tomcat and salt.
- Fix %%pre and %%post scripts in susemanager.spec.
- Append salt,tomcat,wwwrung to susemanager group.
- Susemanager group and change owner and permissions for /var/susemanager/systems.
susemanager-schema:
- Don't fail if capability already exists.
- Show update message only when updating the schema package. (bsc#1024456)
- Fix audit log disabling in Oracle.
- Grant minions scap capability.
- Clean up stale logging data and triggers. (bsc#1009545)
- Fix deduplicate to work with more than two duplicates.
susemanager-sls:
- Add certificate state for CAASP.
- Add certificate state for SLES for SAP. (bsc#1031659)
- Pre-create empty top.sls with no-op. (bsc#1017754)
- Add xccdf result xslt.
- Fix mainframesysinfo module to use /proc/sysinfo on SLES11. (bsc#1025758)
- Set scap store dir mod to 775 and group owner to susemanager.
- Store uploaded scap files.
- Set minion own key owner to bootstrap ssh_push_sudo_user.
- Runner to generate ssh key and execute cmd via proxies.
- Change ssh bootstrap state to generate and auth keys for salt-ssh push with tunnel.
- Authorize parent salt-ssh key on proxy.
susemanager-sync-data:
- Support Cloud 7 - Magnum Orchestration (bsc#1026266) and SLES for SAP 12 SP2 ppc64le.
virtual-host-gatherer:
- Adding support for exploring 'vim.Folder'. (bsc#1025421)
How to apply this update:
1. Log in as root user to the SUSE Manager server.
2. Stop the Spacewalk service:
spacewalk-service stop
3. Apply the patch using either zypper patch or YaST Online Update.
4. Upgrade the database schema:
spacewalk-schema-upgrade
5. Start the Spacewalk service:
spacewalk-service start
Patchnames: SUSE-SUSE-Manager-Server-3.0-2017-827
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for SUSE Manager Server 3.0",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe following security issue in spacewalk-backend has been fixed:\n\n- Non admin or disabled user cannot make changes to a system anymore using spacewalk-channel.\n (bsc#1026633, CVE-2017-7470)\n\nAdditionally, the following non-security issues have been fixed:\n\nrhnlib:\n\n- Support all TLS versions in rpclib. (bsc#1025312)\n\nsalt-netapi-client:\n\n- Fix date format for Schedule module. (bsc#1034465)\n\nspacecmd:\n\n- Improve output on error for listrepo. (bsc#1027426)\n- Reword spacecmd removal message. (bsc#1024406)\n\nspacewalk-backend:\n\n- Do not fail with traceback when media.1 does not exist. (bsc#1032256)\n- Create scap files directory beforehand. (bsc#1029755)\n- Fix error if SPACEWALK_DEBUG_NO_REPORTS environment variable is not present.\n- Don\u0027t skip \u0027rhnErrataPackage\u0027 cleanup during an errata update. (bsc#1023233)\n- Add support for running spacewalk-debug without creating reports. (bsc#1024714)\n- Set scap store directory mod to 775 and group owner to susemanager.\n- incomplete_package_import: Do import rhnPackageFile as it breaks some package installations.\n- Added traceback printing to the exception block.\n- Change postgresql starting commands.\n\nspacewalk-certs-tools:\n\n- Always restart the minion regardless of its current state. (bsc#1034956)\n- Correctly honor disabling of SSL in bootstrap script. (bsc#1033383)\n- Add curl dependency and move mgr-proxy-ssh* to spacewalk-proxy package.\n- Exit for non-traditional bootstrap scripts. (bsc#1020904)\n- Rename mgr-ssh-proxy-force-cmd -\u003e mgr-proxy-ssh-force-cmd.\n- Add mgr-proxy-ssh-force-cmd, mgr-proxy-ssh-push-init to rpm.\n- Add option to configure only sshd.\n- Restrictive ssh options for user mgrsshtunnel.\n\nspacewalk-client-tools:\n\n- Fix reboot message to use correct product name. (bsc#1031667)\n\nspacewalk-java:\n\n- Fix missing IPs in Overview tab. (bsc#1031453)\n- Fix scheduling VM deployment in future. (bsc#1034289)\n- Handle empty set to not produce invalid sql. (bsc#1033497)\n- Fix SSM group pagination. (bsc#1012784)\n- Create PooledExecutor with pre-filled queue. (bsc#1030716)\n- Make sure minion keys can only be seen/managed by appropriate user. (bsc#1025908)\n- Set action status to \u0027failed\u0027 on uncaught exceptions. (bsc#1013606)\n- Add missing library to taskomatic classpath. (bsc#1024066)\n- Set log level to DEBUG for EOFException when the Websocket connection is aborted by the client. (bsc#1031826)\n- Add a remote command with label as a script to the actionchain. (bsc#1011964)\n- Fix architecture for default channels lookup. (bsc#1025275)\n- Change required salt-netapi-client to \u003e= 0.11.\n- Using stream() during collection processing.\n- Making salt presence timeouts configurable via rhn.conf. (bsc#1025761)\n- Avoid blocking synchronous calls if some minions are unreachable. (bsc#1025761)\n- Excludes unreachable minions from synchronous call to prevent blocking. (bsc#1025761)\n- Fix LocalDateTimeISOAdapter to parse date string with timezone. (bsc#1024966)\n- Create scap files directories beforehand. (bsc#1029755)\n- Make country, state/province and city searchable for system location. (bsc#1020659)\n- Change incorrect help link. (bsc#1017418)\n- Don\u0027t allow scheduling scap scan if openscap pkg missing from minion.\n- Make salt aware of rescheduled actions. (bsc#1027852)\n- Close hibernate session on async salt-ssh call.\n- Use a small fixed pool so we don\u0027t overwhelm the salt-api with salt-ssh executions\n- Fix remote cmd ui js err and timed out message.\n- Remote cmd UI changes for salt-ssh minions.\n- Add support for salt ssh minions to remote cmd UI.\n- Apply SessionFilter also for error pages. (bsc#1028062)\n- Use correct logging class.\n- Fix broken help link for taskstatus. (bsc#1017422)\n- Test errata not removed from origin.\n- Fix merge channels patches. (bsc#1025000)\n- Change XccdfIdent.identifier mapping length to 100.\n- Add xccdf result xslt.\n- Fix mainframesysinfo module to use /proc/sysinfo on SLES11. (bsc#1025758)\n- Use consistent spelling in UI. (bsc#1028306)\n- Rewording distchannelmap text. (bsc#1017772)\n- Javascript datepicker needs the timezone create a correct date object. (bsc#1024966)\n- Don\u0027t show audit tab for ssh-push minions.\n- Set scap store dir mod to 775 and group owner to susemanager.\n- Better error handling and more tests.\n- Store uploaded scap files.\n- Openscap action scheduling and handling.\n- Grant scap capability to minion on registration.\n- Enable audit tab for salt minions.\n- Scap inital xccdfEval and hibernate mappings.\n- Show proxy path in bootstrap UI.\n- AuthFilter tests: Update expectations to reflect cookie update at end of request.\n- AuthFilter: Update cookie expiry date at end of HTTP request. (bsc#1025775)\n- MinionActionCleanup: Only call list_jobs once per action id. (bsc#1025291)\n- MinionActionCleanupTest: Expect that list_jobs is only called once.\n- Feat: Allow salt-enabled bootstrap.sh via UI.\n- Catch and display all bootstrap errors.\n- Sync grains and beacons only for regular minions.\n- Add new channel tokens to minion.accessTokens.\n- Fix getting server path for a first level proxy.\n- Fix bootstrap err when proxy not selected.\n- Check if proxy hostname is FQDN not name in UI.\n- Utility for runner to generate ssh key and execute cmd via proxies.\n- Add proxy_pub_key to ssh bootstrap pillar.\n- Add ssh timeout to temporary roster.\n- Salt_ssh_connect_timeout configuration parameter.\n- Authorize parent salt-ssh key on proxy.\n- Java backend for salt ssh-push through proxy.\n- Avoid deadlock with spacewalk-repo-sync. (bsc#1022530)\n- Fix NPE when no SUSE Product was found for an installed product. (bsc#1029840)\n- Keep organization after migrating a system to salt. (bsc#1026301)\n- Fix glob only for noarch rpm(s).\n- Feat: Dynamically detect deployed CA certificate.\n- Fix restore original default (certificate).\n- Rename variable (cert provided by RPM).\n- Fix uniform bootstrap.sh. (bsc#1000762)\n\nspacewalk-reports:\n\n- Remove legacy audit logging reports. (bsc#1009545)\n\nspacewalk-setup:\n\n- Create /var/spacewalk/systems in spacewalk-setup and ensure perms on upgrade.\n- Add xccdf result xslt.\n- Authorize parent salt-ssh key on proxy.\n\nspacewalk-web:\n\n- Remote Commands: Allow Web Socket to be opened on non-standard port.\n- Improve remote cmd ui error handling.\n- Show message when waiting for ssh minions times out.\n- Fix remote cmd ui js err and timed out message.\n- Remote cmd UI changes for salt-ssh minions.\n- Fix broken help link for taskstatus. (bsc#1017422)\n- Add js utility function to create Date objects in different timezones.\n- Show proxy path in bootstrap UI.\n- Clear proxy selection when clicking clear fields button.\n- Check if proxy hostname is FQDN not name in UI.\n- Show warn in bootstrap UI if proxy hostname is not a FQDN.\n\nsubscription-matcher:\n\n- Set -Xmx launch parameter based on customer data. (bsc#1024863) \n- Small bugfixes and logging improvements.\n\nsusemanager:\n\n- Add bootstrap repo data for SLES for SAP 12 SP2 ppc64le.\n- Add python-setuptools to bootstrap repo. (bsc#1033731)\n- Create directory manually if mksubvolume fails, so we now support btrfs based systems with missing mksubvoume\n utility. (bsc#1031885)\n- Create /var/spacewalk/systems in spacewalk-setup and ensure perms on upgrade\n- Fix typo in comment noting option with-custom-channels. (bsc#1031092)\n- Pre require tomcat and salt.\n- Fix %%pre and %%post scripts in susemanager.spec.\n- Append salt,tomcat,wwwrung to susemanager group.\n- Susemanager group and change owner and permissions for /var/susemanager/systems.\n\nsusemanager-schema:\n\n- Don\u0027t fail if capability already exists.\n- Show update message only when updating the schema package. (bsc#1024456)\n- Fix audit log disabling in Oracle.\n- Grant minions scap capability.\n- Clean up stale logging data and triggers. (bsc#1009545)\n- Fix deduplicate to work with more than two duplicates.\n\nsusemanager-sls:\n\n- Add certificate state for CAASP.\n- Add certificate state for SLES for SAP. (bsc#1031659)\n- Pre-create empty top.sls with no-op. (bsc#1017754)\n- Add xccdf result xslt.\n- Fix mainframesysinfo module to use /proc/sysinfo on SLES11. (bsc#1025758)\n- Set scap store dir mod to 775 and group owner to susemanager.\n- Store uploaded scap files.\n- Set minion own key owner to bootstrap ssh_push_sudo_user.\n- Runner to generate ssh key and execute cmd via proxies.\n- Change ssh bootstrap state to generate and auth keys for salt-ssh push with tunnel.\n- Authorize parent salt-ssh key on proxy.\n\nsusemanager-sync-data:\n\n- Support Cloud 7 - Magnum Orchestration (bsc#1026266) and SLES for SAP 12 SP2 ppc64le.\n\nvirtual-host-gatherer:\n\n- Adding support for exploring \u0027vim.Folder\u0027. (bsc#1025421)\n\nHow to apply this update:\n1. Log in as root user to the SUSE Manager server.\n2. Stop the Spacewalk service:\nspacewalk-service stop\n3. Apply the patch using either zypper patch or YaST Online Update.\n4. Upgrade the database schema:\nspacewalk-schema-upgrade\n5. Start the Spacewalk service:\nspacewalk-service start\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SUSE-Manager-Server-3.0-2017-827",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_1349-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2017:1349-1",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20171349-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2017:1349-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2017-May/002899.html"
},
{
"category": "self",
"summary": "SUSE Bug 1000762",
"url": "https://bugzilla.suse.com/1000762"
},
{
"category": "self",
"summary": "SUSE Bug 1009545",
"url": "https://bugzilla.suse.com/1009545"
},
{
"category": "self",
"summary": "SUSE Bug 1011964",
"url": "https://bugzilla.suse.com/1011964"
},
{
"category": "self",
"summary": "SUSE Bug 1012784",
"url": "https://bugzilla.suse.com/1012784"
},
{
"category": "self",
"summary": "SUSE Bug 1013606",
"url": "https://bugzilla.suse.com/1013606"
},
{
"category": "self",
"summary": "SUSE Bug 1017418",
"url": "https://bugzilla.suse.com/1017418"
},
{
"category": "self",
"summary": "SUSE Bug 1017422",
"url": "https://bugzilla.suse.com/1017422"
},
{
"category": "self",
"summary": "SUSE Bug 1017754",
"url": "https://bugzilla.suse.com/1017754"
},
{
"category": "self",
"summary": "SUSE Bug 1017772",
"url": "https://bugzilla.suse.com/1017772"
},
{
"category": "self",
"summary": "SUSE Bug 1020659",
"url": "https://bugzilla.suse.com/1020659"
},
{
"category": "self",
"summary": "SUSE Bug 1020904",
"url": "https://bugzilla.suse.com/1020904"
},
{
"category": "self",
"summary": "SUSE Bug 1022530",
"url": "https://bugzilla.suse.com/1022530"
},
{
"category": "self",
"summary": "SUSE Bug 1023233",
"url": "https://bugzilla.suse.com/1023233"
},
{
"category": "self",
"summary": "SUSE Bug 1024066",
"url": "https://bugzilla.suse.com/1024066"
},
{
"category": "self",
"summary": "SUSE Bug 1024406",
"url": "https://bugzilla.suse.com/1024406"
},
{
"category": "self",
"summary": "SUSE Bug 1024456",
"url": "https://bugzilla.suse.com/1024456"
},
{
"category": "self",
"summary": "SUSE Bug 1024714",
"url": "https://bugzilla.suse.com/1024714"
},
{
"category": "self",
"summary": "SUSE Bug 1024863",
"url": "https://bugzilla.suse.com/1024863"
},
{
"category": "self",
"summary": "SUSE Bug 1024966",
"url": "https://bugzilla.suse.com/1024966"
},
{
"category": "self",
"summary": "SUSE Bug 1025000",
"url": "https://bugzilla.suse.com/1025000"
},
{
"category": "self",
"summary": "SUSE Bug 1025275",
"url": "https://bugzilla.suse.com/1025275"
},
{
"category": "self",
"summary": "SUSE Bug 1025291",
"url": "https://bugzilla.suse.com/1025291"
},
{
"category": "self",
"summary": "SUSE Bug 1025312",
"url": "https://bugzilla.suse.com/1025312"
},
{
"category": "self",
"summary": "SUSE Bug 1025421",
"url": "https://bugzilla.suse.com/1025421"
},
{
"category": "self",
"summary": "SUSE Bug 1025758",
"url": "https://bugzilla.suse.com/1025758"
},
{
"category": "self",
"summary": "SUSE Bug 1025761",
"url": "https://bugzilla.suse.com/1025761"
},
{
"category": "self",
"summary": "SUSE Bug 1025775",
"url": "https://bugzilla.suse.com/1025775"
},
{
"category": "self",
"summary": "SUSE Bug 1025908",
"url": "https://bugzilla.suse.com/1025908"
},
{
"category": "self",
"summary": "SUSE Bug 1026266",
"url": "https://bugzilla.suse.com/1026266"
},
{
"category": "self",
"summary": "SUSE Bug 1026301",
"url": "https://bugzilla.suse.com/1026301"
},
{
"category": "self",
"summary": "SUSE Bug 1026633",
"url": "https://bugzilla.suse.com/1026633"
},
{
"category": "self",
"summary": "SUSE Bug 1027426",
"url": "https://bugzilla.suse.com/1027426"
},
{
"category": "self",
"summary": "SUSE Bug 1027852",
"url": "https://bugzilla.suse.com/1027852"
},
{
"category": "self",
"summary": "SUSE Bug 1028062",
"url": "https://bugzilla.suse.com/1028062"
},
{
"category": "self",
"summary": "SUSE Bug 1028306",
"url": "https://bugzilla.suse.com/1028306"
},
{
"category": "self",
"summary": "SUSE Bug 1029755",
"url": "https://bugzilla.suse.com/1029755"
},
{
"category": "self",
"summary": "SUSE Bug 1029840",
"url": "https://bugzilla.suse.com/1029840"
},
{
"category": "self",
"summary": "SUSE Bug 1030716",
"url": "https://bugzilla.suse.com/1030716"
},
{
"category": "self",
"summary": "SUSE Bug 1031092",
"url": "https://bugzilla.suse.com/1031092"
},
{
"category": "self",
"summary": "SUSE Bug 1031453",
"url": "https://bugzilla.suse.com/1031453"
},
{
"category": "self",
"summary": "SUSE Bug 1031659",
"url": "https://bugzilla.suse.com/1031659"
},
{
"category": "self",
"summary": "SUSE Bug 1031667",
"url": "https://bugzilla.suse.com/1031667"
},
{
"category": "self",
"summary": "SUSE Bug 1031826",
"url": "https://bugzilla.suse.com/1031826"
},
{
"category": "self",
"summary": "SUSE Bug 1031885",
"url": "https://bugzilla.suse.com/1031885"
},
{
"category": "self",
"summary": "SUSE Bug 1032256",
"url": "https://bugzilla.suse.com/1032256"
},
{
"category": "self",
"summary": "SUSE Bug 1033383",
"url": "https://bugzilla.suse.com/1033383"
},
{
"category": "self",
"summary": "SUSE Bug 1033497",
"url": "https://bugzilla.suse.com/1033497"
},
{
"category": "self",
"summary": "SUSE Bug 1033731",
"url": "https://bugzilla.suse.com/1033731"
},
{
"category": "self",
"summary": "SUSE Bug 1034289",
"url": "https://bugzilla.suse.com/1034289"
},
{
"category": "self",
"summary": "SUSE Bug 1034465",
"url": "https://bugzilla.suse.com/1034465"
},
{
"category": "self",
"summary": "SUSE Bug 1034956",
"url": "https://bugzilla.suse.com/1034956"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7470 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7470/"
}
],
"title": "Security update for SUSE Manager Server 3.0",
"tracking": {
"current_release_date": "2017-05-18T22:20:39Z",
"generator": {
"date": "2017-05-18T22:20:39Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2017:1349-1",
"initial_release_date": "2017-05-18T22:20:39Z",
"revision_history": [
{
"date": "2017-05-18T22:20:39Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "rhnlib-2.5.84.4-6.1.noarch",
"product": {
"name": "rhnlib-2.5.84.4-6.1.noarch",
"product_id": "rhnlib-2.5.84.4-6.1.noarch"
}
},
{
"category": "product_version",
"name": "salt-netapi-client-0.11.1-12.1.noarch",
"product": {
"name": "salt-netapi-client-0.11.1-12.1.noarch",
"product_id": "salt-netapi-client-0.11.1-12.1.noarch"
}
},
{
"category": "product_version",
"name": "spacecmd-2.5.5.5-12.1.noarch",
"product": {
"name": "spacecmd-2.5.5.5-12.1.noarch",
"product_id": "spacecmd-2.5.5.5-12.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-2.5.24.9-22.1.noarch",
"product": {
"name": "spacewalk-backend-2.5.24.9-22.1.noarch",
"product_id": "spacewalk-backend-2.5.24.9-22.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-app-2.5.24.9-22.1.noarch",
"product": {
"name": "spacewalk-backend-app-2.5.24.9-22.1.noarch",
"product_id": "spacewalk-backend-app-2.5.24.9-22.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-applet-2.5.24.9-22.1.noarch",
"product": {
"name": "spacewalk-backend-applet-2.5.24.9-22.1.noarch",
"product_id": "spacewalk-backend-applet-2.5.24.9-22.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-2.5.24.9-22.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-2.5.24.9-22.1.noarch",
"product_id": "spacewalk-backend-config-files-2.5.24.9-22.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-common-2.5.24.9-22.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-common-2.5.24.9-22.1.noarch",
"product_id": "spacewalk-backend-config-files-common-2.5.24.9-22.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-tool-2.5.24.9-22.1.noarch",
"product": {
"name": "spacewalk-backend-config-files-tool-2.5.24.9-22.1.noarch",
"product_id": "spacewalk-backend-config-files-tool-2.5.24.9-22.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-2.5.24.9-22.1.noarch",
"product": {
"name": "spacewalk-backend-iss-2.5.24.9-22.1.noarch",
"product_id": "spacewalk-backend-iss-2.5.24.9-22.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-export-2.5.24.9-22.1.noarch",
"product": {
"name": "spacewalk-backend-iss-export-2.5.24.9-22.1.noarch",
"product_id": "spacewalk-backend-iss-export-2.5.24.9-22.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-2.5.24.9-22.1.noarch",
"product": {
"name": "spacewalk-backend-libs-2.5.24.9-22.1.noarch",
"product_id": "spacewalk-backend-libs-2.5.24.9-22.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-package-push-server-2.5.24.9-22.1.noarch",
"product": {
"name": "spacewalk-backend-package-push-server-2.5.24.9-22.1.noarch",
"product_id": "spacewalk-backend-package-push-server-2.5.24.9-22.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-server-2.5.24.9-22.1.noarch",
"product": {
"name": "spacewalk-backend-server-2.5.24.9-22.1.noarch",
"product_id": "spacewalk-backend-server-2.5.24.9-22.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-2.5.24.9-22.1.noarch",
"product": {
"name": "spacewalk-backend-sql-2.5.24.9-22.1.noarch",
"product_id": "spacewalk-backend-sql-2.5.24.9-22.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-oracle-2.5.24.9-22.1.noarch",
"product": {
"name": "spacewalk-backend-sql-oracle-2.5.24.9-22.1.noarch",
"product_id": "spacewalk-backend-sql-oracle-2.5.24.9-22.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-postgresql-2.5.24.9-22.1.noarch",
"product": {
"name": "spacewalk-backend-sql-postgresql-2.5.24.9-22.1.noarch",
"product_id": "spacewalk-backend-sql-postgresql-2.5.24.9-22.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-tools-2.5.24.9-22.1.noarch",
"product": {
"name": "spacewalk-backend-tools-2.5.24.9-22.1.noarch",
"product_id": "spacewalk-backend-tools-2.5.24.9-22.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xml-export-libs-2.5.24.9-22.1.noarch",
"product": {
"name": "spacewalk-backend-xml-export-libs-2.5.24.9-22.1.noarch",
"product_id": "spacewalk-backend-xml-export-libs-2.5.24.9-22.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xmlrpc-2.5.24.9-22.1.noarch",
"product": {
"name": "spacewalk-backend-xmlrpc-2.5.24.9-22.1.noarch",
"product_id": "spacewalk-backend-xmlrpc-2.5.24.9-22.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-2.5.7.15-21.1.noarch",
"product": {
"name": "spacewalk-base-2.5.7.15-21.1.noarch",
"product_id": "spacewalk-base-2.5.7.15-21.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-minimal-2.5.7.15-21.1.noarch",
"product": {
"name": "spacewalk-base-minimal-2.5.7.15-21.1.noarch",
"product_id": "spacewalk-base-minimal-2.5.7.15-21.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-base-minimal-config-2.5.7.15-21.1.noarch",
"product": {
"name": "spacewalk-base-minimal-config-2.5.7.15-21.1.noarch",
"product_id": "spacewalk-base-minimal-config-2.5.7.15-21.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-certs-tools-2.5.1.8-17.1.noarch",
"product": {
"name": "spacewalk-certs-tools-2.5.1.8-17.1.noarch",
"product_id": "spacewalk-certs-tools-2.5.1.8-17.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-client-tools-2.5.13.8-17.2.noarch",
"product": {
"name": "spacewalk-client-tools-2.5.13.8-17.2.noarch",
"product_id": "spacewalk-client-tools-2.5.13.8-17.2.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-html-2.5.7.15-21.1.noarch",
"product": {
"name": "spacewalk-html-2.5.7.15-21.1.noarch",
"product_id": "spacewalk-html-2.5.7.15-21.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-2.5.59.14-23.2.noarch",
"product": {
"name": "spacewalk-java-2.5.59.14-23.2.noarch",
"product_id": "spacewalk-java-2.5.59.14-23.2.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-config-2.5.59.14-23.2.noarch",
"product": {
"name": "spacewalk-java-config-2.5.59.14-23.2.noarch",
"product_id": "spacewalk-java-config-2.5.59.14-23.2.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-lib-2.5.59.14-23.2.noarch",
"product": {
"name": "spacewalk-java-lib-2.5.59.14-23.2.noarch",
"product_id": "spacewalk-java-lib-2.5.59.14-23.2.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-oracle-2.5.59.14-23.2.noarch",
"product": {
"name": "spacewalk-java-oracle-2.5.59.14-23.2.noarch",
"product_id": "spacewalk-java-oracle-2.5.59.14-23.2.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-java-postgresql-2.5.59.14-23.2.noarch",
"product": {
"name": "spacewalk-java-postgresql-2.5.59.14-23.2.noarch",
"product_id": "spacewalk-java-postgresql-2.5.59.14-23.2.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-reports-2.5.1.2-3.1.noarch",
"product": {
"name": "spacewalk-reports-2.5.1.2-3.1.noarch",
"product_id": "spacewalk-reports-2.5.1.2-3.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-setup-2.5.3.12-15.1.noarch",
"product": {
"name": "spacewalk-setup-2.5.3.12-15.1.noarch",
"product_id": "spacewalk-setup-2.5.3.12-15.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-taskomatic-2.5.59.14-23.2.noarch",
"product": {
"name": "spacewalk-taskomatic-2.5.59.14-23.2.noarch",
"product_id": "spacewalk-taskomatic-2.5.59.14-23.2.noarch"
}
},
{
"category": "product_version",
"name": "subscription-matcher-0.18-5.1.noarch",
"product": {
"name": "subscription-matcher-0.18-5.1.noarch",
"product_id": "subscription-matcher-0.18-5.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-schema-3.0.19-21.2.noarch",
"product": {
"name": "susemanager-schema-3.0.19-21.2.noarch",
"product_id": "susemanager-schema-3.0.19-21.2.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-sls-0.1.20-23.1.noarch",
"product": {
"name": "susemanager-sls-0.1.20-23.1.noarch",
"product_id": "susemanager-sls-0.1.20-23.1.noarch"
}
},
{
"category": "product_version",
"name": "susemanager-sync-data-3.0.16-24.1.noarch",
"product": {
"name": "susemanager-sync-data-3.0.16-24.1.noarch",
"product_id": "susemanager-sync-data-3.0.16-24.1.noarch"
}
},
{
"category": "product_version",
"name": "virtual-host-gatherer-1.0.13-6.1.noarch",
"product": {
"name": "virtual-host-gatherer-1.0.13-6.1.noarch",
"product_id": "virtual-host-gatherer-1.0.13-6.1.noarch"
}
},
{
"category": "product_version",
"name": "virtual-host-gatherer-VMware-1.0.13-6.1.noarch",
"product": {
"name": "virtual-host-gatherer-VMware-1.0.13-6.1.noarch",
"product_id": "virtual-host-gatherer-VMware-1.0.13-6.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "susemanager-3.0.21-21.1.s390x",
"product": {
"name": "susemanager-3.0.21-21.1.s390x",
"product_id": "susemanager-3.0.21-21.1.s390x"
}
},
{
"category": "product_version",
"name": "susemanager-tools-3.0.21-21.1.s390x",
"product": {
"name": "susemanager-tools-3.0.21-21.1.s390x",
"product_id": "susemanager-tools-3.0.21-21.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "susemanager-3.0.21-21.1.x86_64",
"product": {
"name": "susemanager-3.0.21-21.1.x86_64",
"product_id": "susemanager-3.0.21-21.1.x86_64"
}
},
{
"category": "product_version",
"name": "susemanager-tools-3.0.21-21.1.x86_64",
"product": {
"name": "susemanager-tools-3.0.21-21.1.x86_64",
"product_id": "susemanager-tools-3.0.21-21.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Manager Server 3.0",
"product": {
"name": "SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-manager-server:3.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhnlib-2.5.84.4-6.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:rhnlib-2.5.84.4-6.1.noarch"
},
"product_reference": "rhnlib-2.5.84.4-6.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "salt-netapi-client-0.11.1-12.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:salt-netapi-client-0.11.1-12.1.noarch"
},
"product_reference": "salt-netapi-client-0.11.1-12.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-2.5.5.5-12.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacecmd-2.5.5.5-12.1.noarch"
},
"product_reference": "spacecmd-2.5.5.5-12.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-2.5.24.9-22.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-2.5.24.9-22.1.noarch"
},
"product_reference": "spacewalk-backend-2.5.24.9-22.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-app-2.5.24.9-22.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-app-2.5.24.9-22.1.noarch"
},
"product_reference": "spacewalk-backend-app-2.5.24.9-22.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-applet-2.5.24.9-22.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-applet-2.5.24.9-22.1.noarch"
},
"product_reference": "spacewalk-backend-applet-2.5.24.9-22.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-2.5.24.9-22.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-config-files-2.5.24.9-22.1.noarch"
},
"product_reference": "spacewalk-backend-config-files-2.5.24.9-22.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-common-2.5.24.9-22.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-config-files-common-2.5.24.9-22.1.noarch"
},
"product_reference": "spacewalk-backend-config-files-common-2.5.24.9-22.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-tool-2.5.24.9-22.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-config-files-tool-2.5.24.9-22.1.noarch"
},
"product_reference": "spacewalk-backend-config-files-tool-2.5.24.9-22.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-2.5.24.9-22.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-iss-2.5.24.9-22.1.noarch"
},
"product_reference": "spacewalk-backend-iss-2.5.24.9-22.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-export-2.5.24.9-22.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-iss-export-2.5.24.9-22.1.noarch"
},
"product_reference": "spacewalk-backend-iss-export-2.5.24.9-22.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-2.5.24.9-22.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-libs-2.5.24.9-22.1.noarch"
},
"product_reference": "spacewalk-backend-libs-2.5.24.9-22.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-package-push-server-2.5.24.9-22.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-package-push-server-2.5.24.9-22.1.noarch"
},
"product_reference": "spacewalk-backend-package-push-server-2.5.24.9-22.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-server-2.5.24.9-22.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-server-2.5.24.9-22.1.noarch"
},
"product_reference": "spacewalk-backend-server-2.5.24.9-22.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-2.5.24.9-22.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-sql-2.5.24.9-22.1.noarch"
},
"product_reference": "spacewalk-backend-sql-2.5.24.9-22.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-oracle-2.5.24.9-22.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-sql-oracle-2.5.24.9-22.1.noarch"
},
"product_reference": "spacewalk-backend-sql-oracle-2.5.24.9-22.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-postgresql-2.5.24.9-22.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-sql-postgresql-2.5.24.9-22.1.noarch"
},
"product_reference": "spacewalk-backend-sql-postgresql-2.5.24.9-22.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-tools-2.5.24.9-22.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-tools-2.5.24.9-22.1.noarch"
},
"product_reference": "spacewalk-backend-tools-2.5.24.9-22.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xml-export-libs-2.5.24.9-22.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-xml-export-libs-2.5.24.9-22.1.noarch"
},
"product_reference": "spacewalk-backend-xml-export-libs-2.5.24.9-22.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xmlrpc-2.5.24.9-22.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-backend-xmlrpc-2.5.24.9-22.1.noarch"
},
"product_reference": "spacewalk-backend-xmlrpc-2.5.24.9-22.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-2.5.7.15-21.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-base-2.5.7.15-21.1.noarch"
},
"product_reference": "spacewalk-base-2.5.7.15-21.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-2.5.7.15-21.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-base-minimal-2.5.7.15-21.1.noarch"
},
"product_reference": "spacewalk-base-minimal-2.5.7.15-21.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-base-minimal-config-2.5.7.15-21.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-base-minimal-config-2.5.7.15-21.1.noarch"
},
"product_reference": "spacewalk-base-minimal-config-2.5.7.15-21.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-certs-tools-2.5.1.8-17.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-certs-tools-2.5.1.8-17.1.noarch"
},
"product_reference": "spacewalk-certs-tools-2.5.1.8-17.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-client-tools-2.5.13.8-17.2.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-client-tools-2.5.13.8-17.2.noarch"
},
"product_reference": "spacewalk-client-tools-2.5.13.8-17.2.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-html-2.5.7.15-21.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-html-2.5.7.15-21.1.noarch"
},
"product_reference": "spacewalk-html-2.5.7.15-21.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-2.5.59.14-23.2.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-java-2.5.59.14-23.2.noarch"
},
"product_reference": "spacewalk-java-2.5.59.14-23.2.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-config-2.5.59.14-23.2.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-java-config-2.5.59.14-23.2.noarch"
},
"product_reference": "spacewalk-java-config-2.5.59.14-23.2.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-lib-2.5.59.14-23.2.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-java-lib-2.5.59.14-23.2.noarch"
},
"product_reference": "spacewalk-java-lib-2.5.59.14-23.2.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-oracle-2.5.59.14-23.2.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-java-oracle-2.5.59.14-23.2.noarch"
},
"product_reference": "spacewalk-java-oracle-2.5.59.14-23.2.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-java-postgresql-2.5.59.14-23.2.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-java-postgresql-2.5.59.14-23.2.noarch"
},
"product_reference": "spacewalk-java-postgresql-2.5.59.14-23.2.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-reports-2.5.1.2-3.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-reports-2.5.1.2-3.1.noarch"
},
"product_reference": "spacewalk-reports-2.5.1.2-3.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-setup-2.5.3.12-15.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-setup-2.5.3.12-15.1.noarch"
},
"product_reference": "spacewalk-setup-2.5.3.12-15.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-taskomatic-2.5.59.14-23.2.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:spacewalk-taskomatic-2.5.59.14-23.2.noarch"
},
"product_reference": "spacewalk-taskomatic-2.5.59.14-23.2.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subscription-matcher-0.18-5.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:subscription-matcher-0.18-5.1.noarch"
},
"product_reference": "subscription-matcher-0.18-5.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-3.0.21-21.1.s390x as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:susemanager-3.0.21-21.1.s390x"
},
"product_reference": "susemanager-3.0.21-21.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-3.0.21-21.1.x86_64 as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:susemanager-3.0.21-21.1.x86_64"
},
"product_reference": "susemanager-3.0.21-21.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-schema-3.0.19-21.2.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:susemanager-schema-3.0.19-21.2.noarch"
},
"product_reference": "susemanager-schema-3.0.19-21.2.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-sls-0.1.20-23.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:susemanager-sls-0.1.20-23.1.noarch"
},
"product_reference": "susemanager-sls-0.1.20-23.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-sync-data-3.0.16-24.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:susemanager-sync-data-3.0.16-24.1.noarch"
},
"product_reference": "susemanager-sync-data-3.0.16-24.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-tools-3.0.21-21.1.s390x as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:susemanager-tools-3.0.21-21.1.s390x"
},
"product_reference": "susemanager-tools-3.0.21-21.1.s390x",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "susemanager-tools-3.0.21-21.1.x86_64 as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:susemanager-tools-3.0.21-21.1.x86_64"
},
"product_reference": "susemanager-tools-3.0.21-21.1.x86_64",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "virtual-host-gatherer-1.0.13-6.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:virtual-host-gatherer-1.0.13-6.1.noarch"
},
"product_reference": "virtual-host-gatherer-1.0.13-6.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "virtual-host-gatherer-VMware-1.0.13-6.1.noarch as component of SUSE Manager Server 3.0",
"product_id": "SUSE Manager Server 3.0:virtual-host-gatherer-VMware-1.0.13-6.1.noarch"
},
"product_reference": "virtual-host-gatherer-VMware-1.0.13-6.1.noarch",
"relates_to_product_reference": "SUSE Manager Server 3.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-7470",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7470"
}
],
"notes": [
{
"category": "general",
"text": "It was found that spacewalk-channel can be used by a non-admin user or disabled users to perform administrative tasks due to an incorrect authorization check in backend/server/rhnChannel.py.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Manager Server 3.0:rhnlib-2.5.84.4-6.1.noarch",
"SUSE Manager Server 3.0:salt-netapi-client-0.11.1-12.1.noarch",
"SUSE Manager Server 3.0:spacecmd-2.5.5.5-12.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-app-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-applet-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-config-files-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-config-files-common-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-config-files-tool-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-iss-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-iss-export-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-libs-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-package-push-server-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-server-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-sql-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-sql-oracle-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-sql-postgresql-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-tools-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-xml-export-libs-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-xmlrpc-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-base-2.5.7.15-21.1.noarch",
"SUSE Manager Server 3.0:spacewalk-base-minimal-2.5.7.15-21.1.noarch",
"SUSE Manager Server 3.0:spacewalk-base-minimal-config-2.5.7.15-21.1.noarch",
"SUSE Manager Server 3.0:spacewalk-certs-tools-2.5.1.8-17.1.noarch",
"SUSE Manager Server 3.0:spacewalk-client-tools-2.5.13.8-17.2.noarch",
"SUSE Manager Server 3.0:spacewalk-html-2.5.7.15-21.1.noarch",
"SUSE Manager Server 3.0:spacewalk-java-2.5.59.14-23.2.noarch",
"SUSE Manager Server 3.0:spacewalk-java-config-2.5.59.14-23.2.noarch",
"SUSE Manager Server 3.0:spacewalk-java-lib-2.5.59.14-23.2.noarch",
"SUSE Manager Server 3.0:spacewalk-java-oracle-2.5.59.14-23.2.noarch",
"SUSE Manager Server 3.0:spacewalk-java-postgresql-2.5.59.14-23.2.noarch",
"SUSE Manager Server 3.0:spacewalk-reports-2.5.1.2-3.1.noarch",
"SUSE Manager Server 3.0:spacewalk-setup-2.5.3.12-15.1.noarch",
"SUSE Manager Server 3.0:spacewalk-taskomatic-2.5.59.14-23.2.noarch",
"SUSE Manager Server 3.0:subscription-matcher-0.18-5.1.noarch",
"SUSE Manager Server 3.0:susemanager-3.0.21-21.1.s390x",
"SUSE Manager Server 3.0:susemanager-3.0.21-21.1.x86_64",
"SUSE Manager Server 3.0:susemanager-schema-3.0.19-21.2.noarch",
"SUSE Manager Server 3.0:susemanager-sls-0.1.20-23.1.noarch",
"SUSE Manager Server 3.0:susemanager-sync-data-3.0.16-24.1.noarch",
"SUSE Manager Server 3.0:susemanager-tools-3.0.21-21.1.s390x",
"SUSE Manager Server 3.0:susemanager-tools-3.0.21-21.1.x86_64",
"SUSE Manager Server 3.0:virtual-host-gatherer-1.0.13-6.1.noarch",
"SUSE Manager Server 3.0:virtual-host-gatherer-VMware-1.0.13-6.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7470",
"url": "https://www.suse.com/security/cve/CVE-2017-7470"
},
{
"category": "external",
"summary": "SUSE Bug 1026633 for CVE-2017-7470",
"url": "https://bugzilla.suse.com/1026633"
},
{
"category": "external",
"summary": "SUSE Bug 1057882 for CVE-2017-7470",
"url": "https://bugzilla.suse.com/1057882"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Manager Server 3.0:rhnlib-2.5.84.4-6.1.noarch",
"SUSE Manager Server 3.0:salt-netapi-client-0.11.1-12.1.noarch",
"SUSE Manager Server 3.0:spacecmd-2.5.5.5-12.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-app-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-applet-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-config-files-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-config-files-common-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-config-files-tool-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-iss-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-iss-export-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-libs-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-package-push-server-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-server-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-sql-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-sql-oracle-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-sql-postgresql-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-tools-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-xml-export-libs-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-xmlrpc-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-base-2.5.7.15-21.1.noarch",
"SUSE Manager Server 3.0:spacewalk-base-minimal-2.5.7.15-21.1.noarch",
"SUSE Manager Server 3.0:spacewalk-base-minimal-config-2.5.7.15-21.1.noarch",
"SUSE Manager Server 3.0:spacewalk-certs-tools-2.5.1.8-17.1.noarch",
"SUSE Manager Server 3.0:spacewalk-client-tools-2.5.13.8-17.2.noarch",
"SUSE Manager Server 3.0:spacewalk-html-2.5.7.15-21.1.noarch",
"SUSE Manager Server 3.0:spacewalk-java-2.5.59.14-23.2.noarch",
"SUSE Manager Server 3.0:spacewalk-java-config-2.5.59.14-23.2.noarch",
"SUSE Manager Server 3.0:spacewalk-java-lib-2.5.59.14-23.2.noarch",
"SUSE Manager Server 3.0:spacewalk-java-oracle-2.5.59.14-23.2.noarch",
"SUSE Manager Server 3.0:spacewalk-java-postgresql-2.5.59.14-23.2.noarch",
"SUSE Manager Server 3.0:spacewalk-reports-2.5.1.2-3.1.noarch",
"SUSE Manager Server 3.0:spacewalk-setup-2.5.3.12-15.1.noarch",
"SUSE Manager Server 3.0:spacewalk-taskomatic-2.5.59.14-23.2.noarch",
"SUSE Manager Server 3.0:subscription-matcher-0.18-5.1.noarch",
"SUSE Manager Server 3.0:susemanager-3.0.21-21.1.s390x",
"SUSE Manager Server 3.0:susemanager-3.0.21-21.1.x86_64",
"SUSE Manager Server 3.0:susemanager-schema-3.0.19-21.2.noarch",
"SUSE Manager Server 3.0:susemanager-sls-0.1.20-23.1.noarch",
"SUSE Manager Server 3.0:susemanager-sync-data-3.0.16-24.1.noarch",
"SUSE Manager Server 3.0:susemanager-tools-3.0.21-21.1.s390x",
"SUSE Manager Server 3.0:susemanager-tools-3.0.21-21.1.x86_64",
"SUSE Manager Server 3.0:virtual-host-gatherer-1.0.13-6.1.noarch",
"SUSE Manager Server 3.0:virtual-host-gatherer-VMware-1.0.13-6.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"SUSE Manager Server 3.0:rhnlib-2.5.84.4-6.1.noarch",
"SUSE Manager Server 3.0:salt-netapi-client-0.11.1-12.1.noarch",
"SUSE Manager Server 3.0:spacecmd-2.5.5.5-12.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-app-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-applet-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-config-files-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-config-files-common-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-config-files-tool-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-iss-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-iss-export-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-libs-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-package-push-server-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-server-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-sql-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-sql-oracle-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-sql-postgresql-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-tools-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-xml-export-libs-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-backend-xmlrpc-2.5.24.9-22.1.noarch",
"SUSE Manager Server 3.0:spacewalk-base-2.5.7.15-21.1.noarch",
"SUSE Manager Server 3.0:spacewalk-base-minimal-2.5.7.15-21.1.noarch",
"SUSE Manager Server 3.0:spacewalk-base-minimal-config-2.5.7.15-21.1.noarch",
"SUSE Manager Server 3.0:spacewalk-certs-tools-2.5.1.8-17.1.noarch",
"SUSE Manager Server 3.0:spacewalk-client-tools-2.5.13.8-17.2.noarch",
"SUSE Manager Server 3.0:spacewalk-html-2.5.7.15-21.1.noarch",
"SUSE Manager Server 3.0:spacewalk-java-2.5.59.14-23.2.noarch",
"SUSE Manager Server 3.0:spacewalk-java-config-2.5.59.14-23.2.noarch",
"SUSE Manager Server 3.0:spacewalk-java-lib-2.5.59.14-23.2.noarch",
"SUSE Manager Server 3.0:spacewalk-java-oracle-2.5.59.14-23.2.noarch",
"SUSE Manager Server 3.0:spacewalk-java-postgresql-2.5.59.14-23.2.noarch",
"SUSE Manager Server 3.0:spacewalk-reports-2.5.1.2-3.1.noarch",
"SUSE Manager Server 3.0:spacewalk-setup-2.5.3.12-15.1.noarch",
"SUSE Manager Server 3.0:spacewalk-taskomatic-2.5.59.14-23.2.noarch",
"SUSE Manager Server 3.0:subscription-matcher-0.18-5.1.noarch",
"SUSE Manager Server 3.0:susemanager-3.0.21-21.1.s390x",
"SUSE Manager Server 3.0:susemanager-3.0.21-21.1.x86_64",
"SUSE Manager Server 3.0:susemanager-schema-3.0.19-21.2.noarch",
"SUSE Manager Server 3.0:susemanager-sls-0.1.20-23.1.noarch",
"SUSE Manager Server 3.0:susemanager-sync-data-3.0.16-24.1.noarch",
"SUSE Manager Server 3.0:susemanager-tools-3.0.21-21.1.s390x",
"SUSE Manager Server 3.0:susemanager-tools-3.0.21-21.1.x86_64",
"SUSE Manager Server 3.0:virtual-host-gatherer-1.0.13-6.1.noarch",
"SUSE Manager Server 3.0:virtual-host-gatherer-VMware-1.0.13-6.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-05-18T22:20:39Z",
"details": "important"
}
],
"title": "CVE-2017-7470"
}
]
}
SUSE-SU-2017:1347-1
Vulnerability from csaf_suse - Published: 2017-05-18 22:19 - Updated: 2017-05-18 22:19Summary
Security update for SUSE Manager Client Tools
Severity
Moderate
Notes
Title of the patch: Security update for SUSE Manager Client Tools
Description of the patch:
The following security issue in spacewalk-backend has been fixed:
- Non admin or disabled user cannot make changes to a system anymore using spacewalk-channel.
(bsc#1026633, CVE-2017-7470)
Additionally, the following non-security issues have been fixed:
rhnlib:
- Support all TLS versions in rpclib. (bsc#1025312)
spacecmd:
- Improve output on error for listrepo. (bsc#1027426)
- Reword spacecmd removal message. (bsc#1024406)
spacewalk-backend:
- Do not fail with traceback when media.1 does not exist. (bsc#1032256)
- Create scap files directory beforehand. (bsc#1029755)
- Fix error if SPACEWALK_DEBUG_NO_REPORTS environment variable is not present.
- Don't skip 'rhnErrataPackage' cleanup during an errata update. (bsc#1023233)
- Add support for running spacewalk-debug without creating reports. (bsc#1024714)
- Set scap store directory mod to 775 and group owner to susemanager.
- incomplete_package_import: Do import rhnPackageFile as it breaks some package installations.
- Added traceback printing to the exception block.
- Change postgresql starting commands.
spacewalk-client-tools:
- Fix reboot message to use correct product name. (bsc#1031667)
Patchnames: slesctsp3-client-tools-201704-13115,slesctsp4-client-tools-201704-13115
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for SUSE Manager Client Tools",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe following security issue in spacewalk-backend has been fixed:\n\n- Non admin or disabled user cannot make changes to a system anymore using spacewalk-channel.\n (bsc#1026633, CVE-2017-7470)\n\nAdditionally, the following non-security issues have been fixed:\n\nrhnlib:\n\n- Support all TLS versions in rpclib. (bsc#1025312)\n\nspacecmd:\n\n- Improve output on error for listrepo. (bsc#1027426)\n- Reword spacecmd removal message. (bsc#1024406)\n\nspacewalk-backend:\n\n- Do not fail with traceback when media.1 does not exist. (bsc#1032256)\n- Create scap files directory beforehand. (bsc#1029755)\n- Fix error if SPACEWALK_DEBUG_NO_REPORTS environment variable is not present.\n- Don\u0027t skip \u0027rhnErrataPackage\u0027 cleanup during an errata update. (bsc#1023233)\n- Add support for running spacewalk-debug without creating reports. (bsc#1024714)\n- Set scap store directory mod to 775 and group owner to susemanager.\n- incomplete_package_import: Do import rhnPackageFile as it breaks some package installations.\n- Added traceback printing to the exception block.\n- Change postgresql starting commands.\n\nspacewalk-client-tools:\n\n- Fix reboot message to use correct product name. (bsc#1031667)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "slesctsp3-client-tools-201704-13115,slesctsp4-client-tools-201704-13115",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_1347-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2017:1347-1",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20171347-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2017:1347-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2017-May/002898.html"
},
{
"category": "self",
"summary": "SUSE Bug 1023233",
"url": "https://bugzilla.suse.com/1023233"
},
{
"category": "self",
"summary": "SUSE Bug 1024406",
"url": "https://bugzilla.suse.com/1024406"
},
{
"category": "self",
"summary": "SUSE Bug 1024714",
"url": "https://bugzilla.suse.com/1024714"
},
{
"category": "self",
"summary": "SUSE Bug 1025312",
"url": "https://bugzilla.suse.com/1025312"
},
{
"category": "self",
"summary": "SUSE Bug 1026633",
"url": "https://bugzilla.suse.com/1026633"
},
{
"category": "self",
"summary": "SUSE Bug 1027426",
"url": "https://bugzilla.suse.com/1027426"
},
{
"category": "self",
"summary": "SUSE Bug 1029755",
"url": "https://bugzilla.suse.com/1029755"
},
{
"category": "self",
"summary": "SUSE Bug 1031667",
"url": "https://bugzilla.suse.com/1031667"
},
{
"category": "self",
"summary": "SUSE Bug 1032256",
"url": "https://bugzilla.suse.com/1032256"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7470 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7470/"
}
],
"title": "Security update for SUSE Manager Client Tools",
"tracking": {
"current_release_date": "2017-05-18T22:19:15Z",
"generator": {
"date": "2017-05-18T22:19:15Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2017:1347-1",
"initial_release_date": "2017-05-18T22:19:15Z",
"revision_history": [
{
"date": "2017-05-18T22:19:15Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "rhnlib-2.5.84.4-8.1.i586",
"product": {
"name": "rhnlib-2.5.84.4-8.1.i586",
"product_id": "rhnlib-2.5.84.4-8.1.i586"
}
},
{
"category": "product_version",
"name": "spacecmd-2.5.5.5-14.1.i586",
"product": {
"name": "spacecmd-2.5.5.5-14.1.i586",
"product_id": "spacecmd-2.5.5.5-14.1.i586"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-2.5.24.9-24.1.i586",
"product": {
"name": "spacewalk-backend-libs-2.5.24.9-24.1.i586",
"product_id": "spacewalk-backend-libs-2.5.24.9-24.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "rhnlib-2.5.84.4-8.1.ia64",
"product": {
"name": "rhnlib-2.5.84.4-8.1.ia64",
"product_id": "rhnlib-2.5.84.4-8.1.ia64"
}
},
{
"category": "product_version",
"name": "spacecmd-2.5.5.5-14.1.ia64",
"product": {
"name": "spacecmd-2.5.5.5-14.1.ia64",
"product_id": "spacecmd-2.5.5.5-14.1.ia64"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-2.5.24.9-24.1.ia64",
"product": {
"name": "spacewalk-backend-libs-2.5.24.9-24.1.ia64",
"product_id": "spacewalk-backend-libs-2.5.24.9-24.1.ia64"
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "spacewalk-check-2.5.13.8-23.1.noarch",
"product": {
"name": "spacewalk-check-2.5.13.8-23.1.noarch",
"product_id": "spacewalk-check-2.5.13.8-23.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-client-setup-2.5.13.8-23.1.noarch",
"product": {
"name": "spacewalk-client-setup-2.5.13.8-23.1.noarch",
"product_id": "spacewalk-client-setup-2.5.13.8-23.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-client-tools-2.5.13.8-23.1.noarch",
"product": {
"name": "spacewalk-client-tools-2.5.13.8-23.1.noarch",
"product_id": "spacewalk-client-tools-2.5.13.8-23.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "rhnlib-2.5.84.4-8.1.ppc64",
"product": {
"name": "rhnlib-2.5.84.4-8.1.ppc64",
"product_id": "rhnlib-2.5.84.4-8.1.ppc64"
}
},
{
"category": "product_version",
"name": "spacecmd-2.5.5.5-14.1.ppc64",
"product": {
"name": "spacecmd-2.5.5.5-14.1.ppc64",
"product_id": "spacecmd-2.5.5.5-14.1.ppc64"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-2.5.24.9-24.1.ppc64",
"product": {
"name": "spacewalk-backend-libs-2.5.24.9-24.1.ppc64",
"product_id": "spacewalk-backend-libs-2.5.24.9-24.1.ppc64"
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "rhnlib-2.5.84.4-8.1.s390x",
"product": {
"name": "rhnlib-2.5.84.4-8.1.s390x",
"product_id": "rhnlib-2.5.84.4-8.1.s390x"
}
},
{
"category": "product_version",
"name": "spacecmd-2.5.5.5-14.1.s390x",
"product": {
"name": "spacecmd-2.5.5.5-14.1.s390x",
"product_id": "spacecmd-2.5.5.5-14.1.s390x"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-2.5.24.9-24.1.s390x",
"product": {
"name": "spacewalk-backend-libs-2.5.24.9-24.1.s390x",
"product_id": "spacewalk-backend-libs-2.5.24.9-24.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rhnlib-2.5.84.4-8.1.x86_64",
"product": {
"name": "rhnlib-2.5.84.4-8.1.x86_64",
"product_id": "rhnlib-2.5.84.4-8.1.x86_64"
}
},
{
"category": "product_version",
"name": "spacecmd-2.5.5.5-14.1.x86_64",
"product": {
"name": "spacecmd-2.5.5.5-14.1.x86_64",
"product_id": "spacecmd-2.5.5.5-14.1.x86_64"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-2.5.24.9-24.1.x86_64",
"product": {
"name": "spacewalk-backend-libs-2.5.24.9-24.1.x86_64",
"product_id": "spacewalk-backend-libs-2.5.24.9-24.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_identification_helper": {
"cpe": "cpe:/a:suse:sle-clienttools:11:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product": {
"name": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_identification_helper": {
"cpe": "cpe:/a:suse:sle-clienttools:11:sp4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhnlib-2.5.84.4-8.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.i586"
},
"product_reference": "rhnlib-2.5.84.4-8.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhnlib-2.5.84.4-8.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.ia64"
},
"product_reference": "rhnlib-2.5.84.4-8.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhnlib-2.5.84.4-8.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.ppc64"
},
"product_reference": "rhnlib-2.5.84.4-8.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhnlib-2.5.84.4-8.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.s390x"
},
"product_reference": "rhnlib-2.5.84.4-8.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhnlib-2.5.84.4-8.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.x86_64"
},
"product_reference": "rhnlib-2.5.84.4-8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-2.5.5.5-14.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.i586"
},
"product_reference": "spacecmd-2.5.5.5-14.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-2.5.5.5-14.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.ia64"
},
"product_reference": "spacecmd-2.5.5.5-14.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-2.5.5.5-14.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.ppc64"
},
"product_reference": "spacecmd-2.5.5.5-14.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-2.5.5.5-14.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.s390x"
},
"product_reference": "spacecmd-2.5.5.5-14.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-2.5.5.5-14.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.x86_64"
},
"product_reference": "spacecmd-2.5.5.5-14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-2.5.24.9-24.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.i586"
},
"product_reference": "spacewalk-backend-libs-2.5.24.9-24.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-2.5.24.9-24.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.ia64"
},
"product_reference": "spacewalk-backend-libs-2.5.24.9-24.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-2.5.24.9-24.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.ppc64"
},
"product_reference": "spacewalk-backend-libs-2.5.24.9-24.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-2.5.24.9-24.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.s390x"
},
"product_reference": "spacewalk-backend-libs-2.5.24.9-24.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-2.5.24.9-24.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.x86_64"
},
"product_reference": "spacewalk-backend-libs-2.5.24.9-24.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-check-2.5.13.8-23.1.noarch as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-check-2.5.13.8-23.1.noarch"
},
"product_reference": "spacewalk-check-2.5.13.8-23.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-client-setup-2.5.13.8-23.1.noarch as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-client-setup-2.5.13.8-23.1.noarch"
},
"product_reference": "spacewalk-client-setup-2.5.13.8-23.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-client-tools-2.5.13.8-23.1.noarch as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-client-tools-2.5.13.8-23.1.noarch"
},
"product_reference": "spacewalk-client-tools-2.5.13.8-23.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhnlib-2.5.84.4-8.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.i586"
},
"product_reference": "rhnlib-2.5.84.4-8.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhnlib-2.5.84.4-8.1.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.ia64"
},
"product_reference": "rhnlib-2.5.84.4-8.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhnlib-2.5.84.4-8.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.ppc64"
},
"product_reference": "rhnlib-2.5.84.4-8.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhnlib-2.5.84.4-8.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.s390x"
},
"product_reference": "rhnlib-2.5.84.4-8.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhnlib-2.5.84.4-8.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.x86_64"
},
"product_reference": "rhnlib-2.5.84.4-8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-2.5.5.5-14.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.i586"
},
"product_reference": "spacecmd-2.5.5.5-14.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-2.5.5.5-14.1.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.ia64"
},
"product_reference": "spacecmd-2.5.5.5-14.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-2.5.5.5-14.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.ppc64"
},
"product_reference": "spacecmd-2.5.5.5-14.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-2.5.5.5-14.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.s390x"
},
"product_reference": "spacecmd-2.5.5.5-14.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-2.5.5.5-14.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.x86_64"
},
"product_reference": "spacecmd-2.5.5.5-14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-2.5.24.9-24.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.i586"
},
"product_reference": "spacewalk-backend-libs-2.5.24.9-24.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-2.5.24.9-24.1.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.ia64"
},
"product_reference": "spacewalk-backend-libs-2.5.24.9-24.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-2.5.24.9-24.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.ppc64"
},
"product_reference": "spacewalk-backend-libs-2.5.24.9-24.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-2.5.24.9-24.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.s390x"
},
"product_reference": "spacewalk-backend-libs-2.5.24.9-24.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-2.5.24.9-24.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.x86_64"
},
"product_reference": "spacewalk-backend-libs-2.5.24.9-24.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-check-2.5.13.8-23.1.noarch as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-check-2.5.13.8-23.1.noarch"
},
"product_reference": "spacewalk-check-2.5.13.8-23.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-client-setup-2.5.13.8-23.1.noarch as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-client-setup-2.5.13.8-23.1.noarch"
},
"product_reference": "spacewalk-client-setup-2.5.13.8-23.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-client-tools-2.5.13.8-23.1.noarch as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS",
"product_id": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-client-tools-2.5.13.8-23.1.noarch"
},
"product_reference": "spacewalk-client-tools-2.5.13.8-23.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-7470",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7470"
}
],
"notes": [
{
"category": "general",
"text": "It was found that spacewalk-channel can be used by a non-admin user or disabled users to perform administrative tasks due to an incorrect authorization check in backend/server/rhnChannel.py.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-check-2.5.13.8-23.1.noarch",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-client-setup-2.5.13.8-23.1.noarch",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-client-tools-2.5.13.8-23.1.noarch",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-check-2.5.13.8-23.1.noarch",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-client-setup-2.5.13.8-23.1.noarch",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-client-tools-2.5.13.8-23.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7470",
"url": "https://www.suse.com/security/cve/CVE-2017-7470"
},
{
"category": "external",
"summary": "SUSE Bug 1026633 for CVE-2017-7470",
"url": "https://bugzilla.suse.com/1026633"
},
{
"category": "external",
"summary": "SUSE Bug 1057882 for CVE-2017-7470",
"url": "https://bugzilla.suse.com/1057882"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-check-2.5.13.8-23.1.noarch",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-client-setup-2.5.13.8-23.1.noarch",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-client-tools-2.5.13.8-23.1.noarch",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-check-2.5.13.8-23.1.noarch",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-client-setup-2.5.13.8-23.1.noarch",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-client-tools-2.5.13.8-23.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.i586",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.ia64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.ppc64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.s390x",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-check-2.5.13.8-23.1.noarch",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-client-setup-2.5.13.8-23.1.noarch",
"SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:spacewalk-client-tools-2.5.13.8-23.1.noarch",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:rhnlib-2.5.84.4-8.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacecmd-2.5.5.5-14.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.i586",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.ia64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.ppc64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.s390x",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-backend-libs-2.5.24.9-24.1.x86_64",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-check-2.5.13.8-23.1.noarch",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-client-setup-2.5.13.8-23.1.noarch",
"SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:spacewalk-client-tools-2.5.13.8-23.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-05-18T22:19:15Z",
"details": "important"
}
],
"title": "CVE-2017-7470"
}
]
}
SUSE-SU-2017:1352-1
Vulnerability from csaf_suse - Published: 2017-05-18 22:18 - Updated: 2017-05-18 22:18Summary
Security update for SUSE Manager Client Tools
Severity
Moderate
Notes
Title of the patch: Security update for SUSE Manager Client Tools
Description of the patch:
The following security issue in spacewalk-backend has been fixed:
- Non admin or disabled user cannot make changes to a system anymore using spacewalk-channel.
(bsc#1026633, CVE-2017-7470)
Additionally, the following non-security issues have been fixed:
cobbler:
- Support UEFI boot with cobbler generated tftp tree. (bsc#1020376)
- Refresh patch for fuzzless appliance.
rhnlib:
- Support all TLS versions in rpclib. (bsc#1025312)
spacecmd:
- Improve output on error for listrepo. (bsc#1027426)
- Reword spacecmd removal message. (bsc#1024406)
spacewalk-backend:
- Do not fail with traceback when media.1 does not exist. (bsc#1032256)
- Create scap files directory beforehand. (bsc#1029755)
- Fix error if SPACEWALK_DEBUG_NO_REPORTS env variable is not present.
- Don't skip 'rhnErrataPackage' cleanup during an errata update. (bsc#1023233)
- Add support for running spacewalk-debug without creating reports. (bsc#1024714)
- Set scap store directory mod to 775 and group owner to susemanager.
- incomplete_package_import: Do import rhnPackageFile as it breaks some package installations.
- Added traceback printing to the exception block.
- Change postgresql starting commands.
spacewalk-client-tools:
- Fix reboot message to use correct product name. (bsc#1031667)
Patchnames: SUSE-SLE-Manager-Tools-12-2017-822
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
| URL | Category | |||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for SUSE Manager Client Tools",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe following security issue in spacewalk-backend has been fixed:\n\n- Non admin or disabled user cannot make changes to a system anymore using spacewalk-channel.\n (bsc#1026633, CVE-2017-7470)\n\nAdditionally, the following non-security issues have been fixed:\n\ncobbler:\n\n- Support UEFI boot with cobbler generated tftp tree. (bsc#1020376)\n- Refresh patch for fuzzless appliance.\n\nrhnlib:\n\n- Support all TLS versions in rpclib. (bsc#1025312)\n\nspacecmd:\n\n- Improve output on error for listrepo. (bsc#1027426)\n- Reword spacecmd removal message. (bsc#1024406)\n\nspacewalk-backend:\n\n- Do not fail with traceback when media.1 does not exist. (bsc#1032256)\n- Create scap files directory beforehand. (bsc#1029755)\n- Fix error if SPACEWALK_DEBUG_NO_REPORTS env variable is not present.\n- Don\u0027t skip \u0027rhnErrataPackage\u0027 cleanup during an errata update. (bsc#1023233)\n- Add support for running spacewalk-debug without creating reports. (bsc#1024714)\n- Set scap store directory mod to 775 and group owner to susemanager.\n- incomplete_package_import: Do import rhnPackageFile as it breaks some package installations.\n- Added traceback printing to the exception block.\n- Change postgresql starting commands.\n\nspacewalk-client-tools:\n\n- Fix reboot message to use correct product name. (bsc#1031667)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Manager-Tools-12-2017-822",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_1352-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2017:1352-1",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20171352-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2017:1352-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2017-May/002901.html"
},
{
"category": "self",
"summary": "SUSE Bug 1020376",
"url": "https://bugzilla.suse.com/1020376"
},
{
"category": "self",
"summary": "SUSE Bug 1023233",
"url": "https://bugzilla.suse.com/1023233"
},
{
"category": "self",
"summary": "SUSE Bug 1024406",
"url": "https://bugzilla.suse.com/1024406"
},
{
"category": "self",
"summary": "SUSE Bug 1024714",
"url": "https://bugzilla.suse.com/1024714"
},
{
"category": "self",
"summary": "SUSE Bug 1025312",
"url": "https://bugzilla.suse.com/1025312"
},
{
"category": "self",
"summary": "SUSE Bug 1026633",
"url": "https://bugzilla.suse.com/1026633"
},
{
"category": "self",
"summary": "SUSE Bug 1027426",
"url": "https://bugzilla.suse.com/1027426"
},
{
"category": "self",
"summary": "SUSE Bug 1029755",
"url": "https://bugzilla.suse.com/1029755"
},
{
"category": "self",
"summary": "SUSE Bug 1031667",
"url": "https://bugzilla.suse.com/1031667"
},
{
"category": "self",
"summary": "SUSE Bug 1032256",
"url": "https://bugzilla.suse.com/1032256"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7470 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7470/"
}
],
"title": "Security update for SUSE Manager Client Tools",
"tracking": {
"current_release_date": "2017-05-18T22:18:32Z",
"generator": {
"date": "2017-05-18T22:18:32Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2017:1352-1",
"initial_release_date": "2017-05-18T22:18:32Z",
"revision_history": [
{
"date": "2017-05-18T22:18:32Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "koan-2.6.6-45.1.noarch",
"product": {
"name": "koan-2.6.6-45.1.noarch",
"product_id": "koan-2.6.6-45.1.noarch"
}
},
{
"category": "product_version",
"name": "rhnlib-2.5.84.4-17.1.noarch",
"product": {
"name": "rhnlib-2.5.84.4-17.1.noarch",
"product_id": "rhnlib-2.5.84.4-17.1.noarch"
}
},
{
"category": "product_version",
"name": "spacecmd-2.5.5.5-34.1.noarch",
"product": {
"name": "spacecmd-2.5.5.5-34.1.noarch",
"product_id": "spacecmd-2.5.5.5-34.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-2.5.24.9-51.1.noarch",
"product": {
"name": "spacewalk-backend-libs-2.5.24.9-51.1.noarch",
"product_id": "spacewalk-backend-libs-2.5.24.9-51.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-check-2.5.13.8-48.1.noarch",
"product": {
"name": "spacewalk-check-2.5.13.8-48.1.noarch",
"product_id": "spacewalk-check-2.5.13.8-48.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-client-setup-2.5.13.8-48.1.noarch",
"product": {
"name": "spacewalk-client-setup-2.5.13.8-48.1.noarch",
"product_id": "spacewalk-client-setup-2.5.13.8-48.1.noarch"
}
},
{
"category": "product_version",
"name": "spacewalk-client-tools-2.5.13.8-48.1.noarch",
"product": {
"name": "spacewalk-client-tools-2.5.13.8-48.1.noarch",
"product_id": "spacewalk-client-tools-2.5.13.8-48.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Manager Client Tools 12",
"product": {
"name": "SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12"
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "koan-2.6.6-45.1.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:koan-2.6.6-45.1.noarch"
},
"product_reference": "koan-2.6.6-45.1.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhnlib-2.5.84.4-17.1.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:rhnlib-2.5.84.4-17.1.noarch"
},
"product_reference": "rhnlib-2.5.84.4-17.1.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-2.5.5.5-34.1.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:spacecmd-2.5.5.5-34.1.noarch"
},
"product_reference": "spacecmd-2.5.5.5-34.1.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-2.5.24.9-51.1.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:spacewalk-backend-libs-2.5.24.9-51.1.noarch"
},
"product_reference": "spacewalk-backend-libs-2.5.24.9-51.1.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-check-2.5.13.8-48.1.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:spacewalk-check-2.5.13.8-48.1.noarch"
},
"product_reference": "spacewalk-check-2.5.13.8-48.1.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-client-setup-2.5.13.8-48.1.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:spacewalk-client-setup-2.5.13.8-48.1.noarch"
},
"product_reference": "spacewalk-client-setup-2.5.13.8-48.1.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-client-tools-2.5.13.8-48.1.noarch as component of SUSE Manager Client Tools 12",
"product_id": "SUSE Manager Client Tools 12:spacewalk-client-tools-2.5.13.8-48.1.noarch"
},
"product_reference": "spacewalk-client-tools-2.5.13.8-48.1.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-7470",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7470"
}
],
"notes": [
{
"category": "general",
"text": "It was found that spacewalk-channel can be used by a non-admin user or disabled users to perform administrative tasks due to an incorrect authorization check in backend/server/rhnChannel.py.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Manager Client Tools 12:koan-2.6.6-45.1.noarch",
"SUSE Manager Client Tools 12:rhnlib-2.5.84.4-17.1.noarch",
"SUSE Manager Client Tools 12:spacecmd-2.5.5.5-34.1.noarch",
"SUSE Manager Client Tools 12:spacewalk-backend-libs-2.5.24.9-51.1.noarch",
"SUSE Manager Client Tools 12:spacewalk-check-2.5.13.8-48.1.noarch",
"SUSE Manager Client Tools 12:spacewalk-client-setup-2.5.13.8-48.1.noarch",
"SUSE Manager Client Tools 12:spacewalk-client-tools-2.5.13.8-48.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7470",
"url": "https://www.suse.com/security/cve/CVE-2017-7470"
},
{
"category": "external",
"summary": "SUSE Bug 1026633 for CVE-2017-7470",
"url": "https://bugzilla.suse.com/1026633"
},
{
"category": "external",
"summary": "SUSE Bug 1057882 for CVE-2017-7470",
"url": "https://bugzilla.suse.com/1057882"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Manager Client Tools 12:koan-2.6.6-45.1.noarch",
"SUSE Manager Client Tools 12:rhnlib-2.5.84.4-17.1.noarch",
"SUSE Manager Client Tools 12:spacecmd-2.5.5.5-34.1.noarch",
"SUSE Manager Client Tools 12:spacewalk-backend-libs-2.5.24.9-51.1.noarch",
"SUSE Manager Client Tools 12:spacewalk-check-2.5.13.8-48.1.noarch",
"SUSE Manager Client Tools 12:spacewalk-client-setup-2.5.13.8-48.1.noarch",
"SUSE Manager Client Tools 12:spacewalk-client-tools-2.5.13.8-48.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"SUSE Manager Client Tools 12:koan-2.6.6-45.1.noarch",
"SUSE Manager Client Tools 12:rhnlib-2.5.84.4-17.1.noarch",
"SUSE Manager Client Tools 12:spacecmd-2.5.5.5-34.1.noarch",
"SUSE Manager Client Tools 12:spacewalk-backend-libs-2.5.24.9-51.1.noarch",
"SUSE Manager Client Tools 12:spacewalk-check-2.5.13.8-48.1.noarch",
"SUSE Manager Client Tools 12:spacewalk-client-setup-2.5.13.8-48.1.noarch",
"SUSE Manager Client Tools 12:spacewalk-client-tools-2.5.13.8-48.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-05-18T22:18:32Z",
"details": "important"
}
],
"title": "CVE-2017-7470"
}
]
}
GSD-2017-7470
Vulnerability from gsd - Updated: 2023-12-13 01:21Details
It was found that spacewalk-channel can be used by a non-admin user or disabled users to perform administrative tasks due to an incorrect authorization check in backend/server/rhnChannel.py.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2017-7470",
"description": "It was found that spacewalk-channel can be used by a non-admin user or disabled users to perform administrative tasks due to an incorrect authorization check in backend/server/rhnChannel.py.",
"id": "GSD-2017-7470",
"references": [
"https://www.suse.com/security/cve/CVE-2017-7470.html",
"https://access.redhat.com/errata/RHSA-2017:1259"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2017-7470"
],
"details": "It was found that spacewalk-channel can be used by a non-admin user or disabled users to perform administrative tasks due to an incorrect authorization check in backend/server/rhnChannel.py.",
"id": "GSD-2017-7470",
"modified": "2023-12-13T01:21:06.866317Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2017-7470",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "spacewalk-backend",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "[UNKNOWN]"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "It was found that spacewalk-channel can be used by a non-admin user or disabled users to perform administrative tasks due to an incorrect authorization check in backend/server/rhnChannel.py."
}
]
},
"impact": {
"cvss": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"cweId": "CWE-863",
"lang": "eng",
"value": "CWE-863"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.securityfocus.com/bid/98569",
"refsource": "MISC",
"url": "http://www.securityfocus.com/bid/98569"
},
{
"name": "https://access.redhat.com/errata/RHSA-2017:1259",
"refsource": "MISC",
"url": "https://access.redhat.com/errata/RHSA-2017:1259"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7470",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7470"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:redhat:spacewalk:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:redhat:satellite:5.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:satellite:5.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2017-7470"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "It was found that spacewalk-channel can be used by a non-admin user or disabled users to perform administrative tasks due to an incorrect authorization check in backend/server/rhnChannel.py."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-863"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7470",
"refsource": "CONFIRM",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7470"
},
{
"name": "RHSA-2017:1259",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:1259"
},
{
"name": "98569",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/98569"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
},
"lastModifiedDate": "2023-02-12T23:30Z",
"publishedDate": "2018-07-27T13:29Z"
}
}
}
RHSA-2017:1259
Vulnerability from csaf_redhat - Published: 2017-05-18 22:00 - Updated: 2025-11-21 18:00Summary
Red Hat Security Advisory: spacewalk-backend security update
Severity
Moderate
Notes
Topic: An update for spacewalk-backend is now available for Red Hat Satellite 5.6 and Red Hat Satellite 5.7.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Spacewalk is an Open Source systems management solution that provides system provisioning, configuration and patching capabilities.
Security Fix(es):
* It was found that spacewalk-channel can be used by a non-admin user or disabled users to perform administrative tasks due to an incorrect authorization check in backend/server/rhnChannel.py. (CVE-2017-7470)
Red Hat would like to thank Bert Stel (SUSE) for reporting this issue.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
It was found that spacewalk-channel can be used by a non-admin user or disabled users to perform administrative tasks due to an incorrect authorization check in backend/server/rhnChannel.py.
6.5 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
For this update to take effect, Red Hat Satellite must be restarted ("/usr/sbin/rhn-satellite restart").
https://access.redhat.com/errata/RHSA-2017:1259
References
| URL | Category | |||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||
Acknowledgments
SUSE
Bert Stel
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for spacewalk-backend is now available for Red Hat Satellite 5.6 and Red Hat Satellite 5.7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Spacewalk is an Open Source systems management solution that provides system provisioning, configuration and patching capabilities.\n\nSecurity Fix(es):\n\n* It was found that spacewalk-channel can be used by a non-admin user or disabled users to perform administrative tasks due to an incorrect authorization check in backend/server/rhnChannel.py. (CVE-2017-7470)\n\nRed Hat would like to thank Bert Stel (SUSE) for reporting this issue.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2017:1259",
"url": "https://access.redhat.com/errata/RHSA-2017:1259"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "1439622",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1439622"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_1259.json"
}
],
"title": "Red Hat Security Advisory: spacewalk-backend security update",
"tracking": {
"current_release_date": "2025-11-21T18:00:39+00:00",
"generator": {
"date": "2025-11-21T18:00:39+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2017:1259",
"initial_release_date": "2017-05-18T22:00:03+00:00",
"revision_history": [
{
"date": "2017-05-18T22:00:03+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2017-05-18T22:00:03+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:00:39+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Satellite 5.7 (RHEL v.6)",
"product": {
"name": "Red Hat Satellite 5.7 (RHEL v.6)",
"product_id": "6Server-Satellite57",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:network_satellite:5.7::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 5.6 (RHEL v.5)",
"product": {
"name": "Red Hat Satellite 5.6 (RHEL v.5)",
"product_id": "5Server-Satellite56",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:network_satellite:5.6::el5"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 5.6 (RHEL v.6)",
"product": {
"name": "Red Hat Satellite 5.6 (RHEL v.6)",
"product_id": "6Server-Satellite56",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:network_satellite:5.6::el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Satellite"
},
{
"branches": [
{
"category": "product_version",
"name": "spacewalk-backend-iss-0:2.3.3-49.el6sat.noarch",
"product": {
"name": "spacewalk-backend-iss-0:2.3.3-49.el6sat.noarch",
"product_id": "spacewalk-backend-iss-0:2.3.3-49.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-iss@2.3.3-49.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-postgresql-0:2.3.3-49.el6sat.noarch",
"product": {
"name": "spacewalk-backend-sql-postgresql-0:2.3.3-49.el6sat.noarch",
"product_id": "spacewalk-backend-sql-postgresql-0:2.3.3-49.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-sql-postgresql@2.3.3-49.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-export-0:2.3.3-49.el6sat.noarch",
"product": {
"name": "spacewalk-backend-iss-export-0:2.3.3-49.el6sat.noarch",
"product_id": "spacewalk-backend-iss-export-0:2.3.3-49.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-iss-export@2.3.3-49.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xml-export-libs-0:2.3.3-49.el6sat.noarch",
"product": {
"name": "spacewalk-backend-xml-export-libs-0:2.3.3-49.el6sat.noarch",
"product_id": "spacewalk-backend-xml-export-libs-0:2.3.3-49.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-xml-export-libs@2.3.3-49.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-oracle-0:2.3.3-49.el6sat.noarch",
"product": {
"name": "spacewalk-backend-sql-oracle-0:2.3.3-49.el6sat.noarch",
"product_id": "spacewalk-backend-sql-oracle-0:2.3.3-49.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-sql-oracle@2.3.3-49.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-common-0:2.3.3-49.el6sat.noarch",
"product": {
"name": "spacewalk-backend-config-files-common-0:2.3.3-49.el6sat.noarch",
"product_id": "spacewalk-backend-config-files-common-0:2.3.3-49.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-config-files-common@2.3.3-49.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-package-push-server-0:2.3.3-49.el6sat.noarch",
"product": {
"name": "spacewalk-backend-package-push-server-0:2.3.3-49.el6sat.noarch",
"product_id": "spacewalk-backend-package-push-server-0:2.3.3-49.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-package-push-server@2.3.3-49.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-server-0:2.3.3-49.el6sat.noarch",
"product": {
"name": "spacewalk-backend-server-0:2.3.3-49.el6sat.noarch",
"product_id": "spacewalk-backend-server-0:2.3.3-49.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-server@2.3.3-49.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-tools-0:2.3.3-49.el6sat.noarch",
"product": {
"name": "spacewalk-backend-tools-0:2.3.3-49.el6sat.noarch",
"product_id": "spacewalk-backend-tools-0:2.3.3-49.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-tools@2.3.3-49.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-0:2.3.3-49.el6sat.noarch",
"product": {
"name": "spacewalk-backend-config-files-0:2.3.3-49.el6sat.noarch",
"product_id": "spacewalk-backend-config-files-0:2.3.3-49.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-config-files@2.3.3-49.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-0:2.3.3-49.el6sat.noarch",
"product": {
"name": "spacewalk-backend-libs-0:2.3.3-49.el6sat.noarch",
"product_id": "spacewalk-backend-libs-0:2.3.3-49.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-libs@2.3.3-49.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xmlrpc-0:2.3.3-49.el6sat.noarch",
"product": {
"name": "spacewalk-backend-xmlrpc-0:2.3.3-49.el6sat.noarch",
"product_id": "spacewalk-backend-xmlrpc-0:2.3.3-49.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-xmlrpc@2.3.3-49.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-applet-0:2.3.3-49.el6sat.noarch",
"product": {
"name": "spacewalk-backend-applet-0:2.3.3-49.el6sat.noarch",
"product_id": "spacewalk-backend-applet-0:2.3.3-49.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-applet@2.3.3-49.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-tool-0:2.3.3-49.el6sat.noarch",
"product": {
"name": "spacewalk-backend-config-files-tool-0:2.3.3-49.el6sat.noarch",
"product_id": "spacewalk-backend-config-files-tool-0:2.3.3-49.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-config-files-tool@2.3.3-49.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-0:2.3.3-49.el6sat.noarch",
"product": {
"name": "spacewalk-backend-0:2.3.3-49.el6sat.noarch",
"product_id": "spacewalk-backend-0:2.3.3-49.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend@2.3.3-49.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-0:2.3.3-49.el6sat.noarch",
"product": {
"name": "spacewalk-backend-sql-0:2.3.3-49.el6sat.noarch",
"product_id": "spacewalk-backend-sql-0:2.3.3-49.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-sql@2.3.3-49.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-app-0:2.3.3-49.el6sat.noarch",
"product": {
"name": "spacewalk-backend-app-0:2.3.3-49.el6sat.noarch",
"product_id": "spacewalk-backend-app-0:2.3.3-49.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-app@2.3.3-49.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-server-0:2.0.3-45.el5sat.noarch",
"product": {
"name": "spacewalk-backend-server-0:2.0.3-45.el5sat.noarch",
"product_id": "spacewalk-backend-server-0:2.0.3-45.el5sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-server@2.0.3-45.el5sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-0:2.0.3-45.el5sat.noarch",
"product": {
"name": "spacewalk-backend-sql-0:2.0.3-45.el5sat.noarch",
"product_id": "spacewalk-backend-sql-0:2.0.3-45.el5sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-sql@2.0.3-45.el5sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-0:2.0.3-45.el5sat.noarch",
"product": {
"name": "spacewalk-backend-libs-0:2.0.3-45.el5sat.noarch",
"product_id": "spacewalk-backend-libs-0:2.0.3-45.el5sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-libs@2.0.3-45.el5sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-package-push-server-0:2.0.3-45.el5sat.noarch",
"product": {
"name": "spacewalk-backend-package-push-server-0:2.0.3-45.el5sat.noarch",
"product_id": "spacewalk-backend-package-push-server-0:2.0.3-45.el5sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-package-push-server@2.0.3-45.el5sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-0:2.0.3-45.el5sat.noarch",
"product": {
"name": "spacewalk-backend-config-files-0:2.0.3-45.el5sat.noarch",
"product_id": "spacewalk-backend-config-files-0:2.0.3-45.el5sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-config-files@2.0.3-45.el5sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-common-0:2.0.3-45.el5sat.noarch",
"product": {
"name": "spacewalk-backend-config-files-common-0:2.0.3-45.el5sat.noarch",
"product_id": "spacewalk-backend-config-files-common-0:2.0.3-45.el5sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-config-files-common@2.0.3-45.el5sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-0:2.0.3-45.el5sat.noarch",
"product": {
"name": "spacewalk-backend-iss-0:2.0.3-45.el5sat.noarch",
"product_id": "spacewalk-backend-iss-0:2.0.3-45.el5sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-iss@2.0.3-45.el5sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-postgresql-0:2.0.3-45.el5sat.noarch",
"product": {
"name": "spacewalk-backend-sql-postgresql-0:2.0.3-45.el5sat.noarch",
"product_id": "spacewalk-backend-sql-postgresql-0:2.0.3-45.el5sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-sql-postgresql@2.0.3-45.el5sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-export-0:2.0.3-45.el5sat.noarch",
"product": {
"name": "spacewalk-backend-iss-export-0:2.0.3-45.el5sat.noarch",
"product_id": "spacewalk-backend-iss-export-0:2.0.3-45.el5sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-iss-export@2.0.3-45.el5sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xml-export-libs-0:2.0.3-45.el5sat.noarch",
"product": {
"name": "spacewalk-backend-xml-export-libs-0:2.0.3-45.el5sat.noarch",
"product_id": "spacewalk-backend-xml-export-libs-0:2.0.3-45.el5sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-xml-export-libs@2.0.3-45.el5sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-0:2.0.3-45.el5sat.noarch",
"product": {
"name": "spacewalk-backend-0:2.0.3-45.el5sat.noarch",
"product_id": "spacewalk-backend-0:2.0.3-45.el5sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend@2.0.3-45.el5sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-tool-0:2.0.3-45.el5sat.noarch",
"product": {
"name": "spacewalk-backend-config-files-tool-0:2.0.3-45.el5sat.noarch",
"product_id": "spacewalk-backend-config-files-tool-0:2.0.3-45.el5sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-config-files-tool@2.0.3-45.el5sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xmlrpc-0:2.0.3-45.el5sat.noarch",
"product": {
"name": "spacewalk-backend-xmlrpc-0:2.0.3-45.el5sat.noarch",
"product_id": "spacewalk-backend-xmlrpc-0:2.0.3-45.el5sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-xmlrpc@2.0.3-45.el5sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-oracle-0:2.0.3-45.el5sat.noarch",
"product": {
"name": "spacewalk-backend-sql-oracle-0:2.0.3-45.el5sat.noarch",
"product_id": "spacewalk-backend-sql-oracle-0:2.0.3-45.el5sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-sql-oracle@2.0.3-45.el5sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-tools-0:2.0.3-45.el5sat.noarch",
"product": {
"name": "spacewalk-backend-tools-0:2.0.3-45.el5sat.noarch",
"product_id": "spacewalk-backend-tools-0:2.0.3-45.el5sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-tools@2.0.3-45.el5sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-app-0:2.0.3-45.el5sat.noarch",
"product": {
"name": "spacewalk-backend-app-0:2.0.3-45.el5sat.noarch",
"product_id": "spacewalk-backend-app-0:2.0.3-45.el5sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-app@2.0.3-45.el5sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-applet-0:2.0.3-45.el5sat.noarch",
"product": {
"name": "spacewalk-backend-applet-0:2.0.3-45.el5sat.noarch",
"product_id": "spacewalk-backend-applet-0:2.0.3-45.el5sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-applet@2.0.3-45.el5sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-app-0:2.0.3-45.el6sat.noarch",
"product": {
"name": "spacewalk-backend-app-0:2.0.3-45.el6sat.noarch",
"product_id": "spacewalk-backend-app-0:2.0.3-45.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-app@2.0.3-45.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-0:2.0.3-45.el6sat.noarch",
"product": {
"name": "spacewalk-backend-config-files-0:2.0.3-45.el6sat.noarch",
"product_id": "spacewalk-backend-config-files-0:2.0.3-45.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-config-files@2.0.3-45.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-tools-0:2.0.3-45.el6sat.noarch",
"product": {
"name": "spacewalk-backend-tools-0:2.0.3-45.el6sat.noarch",
"product_id": "spacewalk-backend-tools-0:2.0.3-45.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-tools@2.0.3-45.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-0:2.0.3-45.el6sat.noarch",
"product": {
"name": "spacewalk-backend-iss-0:2.0.3-45.el6sat.noarch",
"product_id": "spacewalk-backend-iss-0:2.0.3-45.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-iss@2.0.3-45.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-0:2.0.3-45.el6sat.noarch",
"product": {
"name": "spacewalk-backend-sql-0:2.0.3-45.el6sat.noarch",
"product_id": "spacewalk-backend-sql-0:2.0.3-45.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-sql@2.0.3-45.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xml-export-libs-0:2.0.3-45.el6sat.noarch",
"product": {
"name": "spacewalk-backend-xml-export-libs-0:2.0.3-45.el6sat.noarch",
"product_id": "spacewalk-backend-xml-export-libs-0:2.0.3-45.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-xml-export-libs@2.0.3-45.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-libs-0:2.0.3-45.el6sat.noarch",
"product": {
"name": "spacewalk-backend-libs-0:2.0.3-45.el6sat.noarch",
"product_id": "spacewalk-backend-libs-0:2.0.3-45.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-libs@2.0.3-45.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-0:2.0.3-45.el6sat.noarch",
"product": {
"name": "spacewalk-backend-0:2.0.3-45.el6sat.noarch",
"product_id": "spacewalk-backend-0:2.0.3-45.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend@2.0.3-45.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-server-0:2.0.3-45.el6sat.noarch",
"product": {
"name": "spacewalk-backend-server-0:2.0.3-45.el6sat.noarch",
"product_id": "spacewalk-backend-server-0:2.0.3-45.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-server@2.0.3-45.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-tool-0:2.0.3-45.el6sat.noarch",
"product": {
"name": "spacewalk-backend-config-files-tool-0:2.0.3-45.el6sat.noarch",
"product_id": "spacewalk-backend-config-files-tool-0:2.0.3-45.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-config-files-tool@2.0.3-45.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-applet-0:2.0.3-45.el6sat.noarch",
"product": {
"name": "spacewalk-backend-applet-0:2.0.3-45.el6sat.noarch",
"product_id": "spacewalk-backend-applet-0:2.0.3-45.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-applet@2.0.3-45.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-config-files-common-0:2.0.3-45.el6sat.noarch",
"product": {
"name": "spacewalk-backend-config-files-common-0:2.0.3-45.el6sat.noarch",
"product_id": "spacewalk-backend-config-files-common-0:2.0.3-45.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-config-files-common@2.0.3-45.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-oracle-0:2.0.3-45.el6sat.noarch",
"product": {
"name": "spacewalk-backend-sql-oracle-0:2.0.3-45.el6sat.noarch",
"product_id": "spacewalk-backend-sql-oracle-0:2.0.3-45.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-sql-oracle@2.0.3-45.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-iss-export-0:2.0.3-45.el6sat.noarch",
"product": {
"name": "spacewalk-backend-iss-export-0:2.0.3-45.el6sat.noarch",
"product_id": "spacewalk-backend-iss-export-0:2.0.3-45.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-iss-export@2.0.3-45.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-sql-postgresql-0:2.0.3-45.el6sat.noarch",
"product": {
"name": "spacewalk-backend-sql-postgresql-0:2.0.3-45.el6sat.noarch",
"product_id": "spacewalk-backend-sql-postgresql-0:2.0.3-45.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-sql-postgresql@2.0.3-45.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-package-push-server-0:2.0.3-45.el6sat.noarch",
"product": {
"name": "spacewalk-backend-package-push-server-0:2.0.3-45.el6sat.noarch",
"product_id": "spacewalk-backend-package-push-server-0:2.0.3-45.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-package-push-server@2.0.3-45.el6sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-xmlrpc-0:2.0.3-45.el6sat.noarch",
"product": {
"name": "spacewalk-backend-xmlrpc-0:2.0.3-45.el6sat.noarch",
"product_id": "spacewalk-backend-xmlrpc-0:2.0.3-45.el6sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend-xmlrpc@2.0.3-45.el6sat?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "spacewalk-backend-0:2.3.3-49.el6sat.src",
"product": {
"name": "spacewalk-backend-0:2.3.3-49.el6sat.src",
"product_id": "spacewalk-backend-0:2.3.3-49.el6sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend@2.3.3-49.el6sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-0:2.0.3-45.el5sat.src",
"product": {
"name": "spacewalk-backend-0:2.0.3-45.el5sat.src",
"product_id": "spacewalk-backend-0:2.0.3-45.el5sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend@2.0.3-45.el5sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "spacewalk-backend-0:2.0.3-45.el6sat.src",
"product": {
"name": "spacewalk-backend-0:2.0.3-45.el6sat.src",
"product_id": "spacewalk-backend-0:2.0.3-45.el6sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/spacewalk-backend@2.0.3-45.el6sat?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-0:2.0.3-45.el5sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.5)",
"product_id": "5Server-Satellite56:spacewalk-backend-0:2.0.3-45.el5sat.noarch"
},
"product_reference": "spacewalk-backend-0:2.0.3-45.el5sat.noarch",
"relates_to_product_reference": "5Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-0:2.0.3-45.el5sat.src as a component of Red Hat Satellite 5.6 (RHEL v.5)",
"product_id": "5Server-Satellite56:spacewalk-backend-0:2.0.3-45.el5sat.src"
},
"product_reference": "spacewalk-backend-0:2.0.3-45.el5sat.src",
"relates_to_product_reference": "5Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-app-0:2.0.3-45.el5sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.5)",
"product_id": "5Server-Satellite56:spacewalk-backend-app-0:2.0.3-45.el5sat.noarch"
},
"product_reference": "spacewalk-backend-app-0:2.0.3-45.el5sat.noarch",
"relates_to_product_reference": "5Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-applet-0:2.0.3-45.el5sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.5)",
"product_id": "5Server-Satellite56:spacewalk-backend-applet-0:2.0.3-45.el5sat.noarch"
},
"product_reference": "spacewalk-backend-applet-0:2.0.3-45.el5sat.noarch",
"relates_to_product_reference": "5Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-0:2.0.3-45.el5sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.5)",
"product_id": "5Server-Satellite56:spacewalk-backend-config-files-0:2.0.3-45.el5sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-0:2.0.3-45.el5sat.noarch",
"relates_to_product_reference": "5Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-common-0:2.0.3-45.el5sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.5)",
"product_id": "5Server-Satellite56:spacewalk-backend-config-files-common-0:2.0.3-45.el5sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-common-0:2.0.3-45.el5sat.noarch",
"relates_to_product_reference": "5Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-tool-0:2.0.3-45.el5sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.5)",
"product_id": "5Server-Satellite56:spacewalk-backend-config-files-tool-0:2.0.3-45.el5sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-tool-0:2.0.3-45.el5sat.noarch",
"relates_to_product_reference": "5Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-0:2.0.3-45.el5sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.5)",
"product_id": "5Server-Satellite56:spacewalk-backend-iss-0:2.0.3-45.el5sat.noarch"
},
"product_reference": "spacewalk-backend-iss-0:2.0.3-45.el5sat.noarch",
"relates_to_product_reference": "5Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-export-0:2.0.3-45.el5sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.5)",
"product_id": "5Server-Satellite56:spacewalk-backend-iss-export-0:2.0.3-45.el5sat.noarch"
},
"product_reference": "spacewalk-backend-iss-export-0:2.0.3-45.el5sat.noarch",
"relates_to_product_reference": "5Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-0:2.0.3-45.el5sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.5)",
"product_id": "5Server-Satellite56:spacewalk-backend-libs-0:2.0.3-45.el5sat.noarch"
},
"product_reference": "spacewalk-backend-libs-0:2.0.3-45.el5sat.noarch",
"relates_to_product_reference": "5Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-package-push-server-0:2.0.3-45.el5sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.5)",
"product_id": "5Server-Satellite56:spacewalk-backend-package-push-server-0:2.0.3-45.el5sat.noarch"
},
"product_reference": "spacewalk-backend-package-push-server-0:2.0.3-45.el5sat.noarch",
"relates_to_product_reference": "5Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-server-0:2.0.3-45.el5sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.5)",
"product_id": "5Server-Satellite56:spacewalk-backend-server-0:2.0.3-45.el5sat.noarch"
},
"product_reference": "spacewalk-backend-server-0:2.0.3-45.el5sat.noarch",
"relates_to_product_reference": "5Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-0:2.0.3-45.el5sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.5)",
"product_id": "5Server-Satellite56:spacewalk-backend-sql-0:2.0.3-45.el5sat.noarch"
},
"product_reference": "spacewalk-backend-sql-0:2.0.3-45.el5sat.noarch",
"relates_to_product_reference": "5Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-oracle-0:2.0.3-45.el5sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.5)",
"product_id": "5Server-Satellite56:spacewalk-backend-sql-oracle-0:2.0.3-45.el5sat.noarch"
},
"product_reference": "spacewalk-backend-sql-oracle-0:2.0.3-45.el5sat.noarch",
"relates_to_product_reference": "5Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-postgresql-0:2.0.3-45.el5sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.5)",
"product_id": "5Server-Satellite56:spacewalk-backend-sql-postgresql-0:2.0.3-45.el5sat.noarch"
},
"product_reference": "spacewalk-backend-sql-postgresql-0:2.0.3-45.el5sat.noarch",
"relates_to_product_reference": "5Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-tools-0:2.0.3-45.el5sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.5)",
"product_id": "5Server-Satellite56:spacewalk-backend-tools-0:2.0.3-45.el5sat.noarch"
},
"product_reference": "spacewalk-backend-tools-0:2.0.3-45.el5sat.noarch",
"relates_to_product_reference": "5Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xml-export-libs-0:2.0.3-45.el5sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.5)",
"product_id": "5Server-Satellite56:spacewalk-backend-xml-export-libs-0:2.0.3-45.el5sat.noarch"
},
"product_reference": "spacewalk-backend-xml-export-libs-0:2.0.3-45.el5sat.noarch",
"relates_to_product_reference": "5Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xmlrpc-0:2.0.3-45.el5sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.5)",
"product_id": "5Server-Satellite56:spacewalk-backend-xmlrpc-0:2.0.3-45.el5sat.noarch"
},
"product_reference": "spacewalk-backend-xmlrpc-0:2.0.3-45.el5sat.noarch",
"relates_to_product_reference": "5Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-0:2.0.3-45.el6sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.6)",
"product_id": "6Server-Satellite56:spacewalk-backend-0:2.0.3-45.el6sat.noarch"
},
"product_reference": "spacewalk-backend-0:2.0.3-45.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-0:2.0.3-45.el6sat.src as a component of Red Hat Satellite 5.6 (RHEL v.6)",
"product_id": "6Server-Satellite56:spacewalk-backend-0:2.0.3-45.el6sat.src"
},
"product_reference": "spacewalk-backend-0:2.0.3-45.el6sat.src",
"relates_to_product_reference": "6Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-app-0:2.0.3-45.el6sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.6)",
"product_id": "6Server-Satellite56:spacewalk-backend-app-0:2.0.3-45.el6sat.noarch"
},
"product_reference": "spacewalk-backend-app-0:2.0.3-45.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-applet-0:2.0.3-45.el6sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.6)",
"product_id": "6Server-Satellite56:spacewalk-backend-applet-0:2.0.3-45.el6sat.noarch"
},
"product_reference": "spacewalk-backend-applet-0:2.0.3-45.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-0:2.0.3-45.el6sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.6)",
"product_id": "6Server-Satellite56:spacewalk-backend-config-files-0:2.0.3-45.el6sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-0:2.0.3-45.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-common-0:2.0.3-45.el6sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.6)",
"product_id": "6Server-Satellite56:spacewalk-backend-config-files-common-0:2.0.3-45.el6sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-common-0:2.0.3-45.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-tool-0:2.0.3-45.el6sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.6)",
"product_id": "6Server-Satellite56:spacewalk-backend-config-files-tool-0:2.0.3-45.el6sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-tool-0:2.0.3-45.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-0:2.0.3-45.el6sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.6)",
"product_id": "6Server-Satellite56:spacewalk-backend-iss-0:2.0.3-45.el6sat.noarch"
},
"product_reference": "spacewalk-backend-iss-0:2.0.3-45.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-export-0:2.0.3-45.el6sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.6)",
"product_id": "6Server-Satellite56:spacewalk-backend-iss-export-0:2.0.3-45.el6sat.noarch"
},
"product_reference": "spacewalk-backend-iss-export-0:2.0.3-45.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-0:2.0.3-45.el6sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.6)",
"product_id": "6Server-Satellite56:spacewalk-backend-libs-0:2.0.3-45.el6sat.noarch"
},
"product_reference": "spacewalk-backend-libs-0:2.0.3-45.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-package-push-server-0:2.0.3-45.el6sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.6)",
"product_id": "6Server-Satellite56:spacewalk-backend-package-push-server-0:2.0.3-45.el6sat.noarch"
},
"product_reference": "spacewalk-backend-package-push-server-0:2.0.3-45.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-server-0:2.0.3-45.el6sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.6)",
"product_id": "6Server-Satellite56:spacewalk-backend-server-0:2.0.3-45.el6sat.noarch"
},
"product_reference": "spacewalk-backend-server-0:2.0.3-45.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-0:2.0.3-45.el6sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.6)",
"product_id": "6Server-Satellite56:spacewalk-backend-sql-0:2.0.3-45.el6sat.noarch"
},
"product_reference": "spacewalk-backend-sql-0:2.0.3-45.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-oracle-0:2.0.3-45.el6sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.6)",
"product_id": "6Server-Satellite56:spacewalk-backend-sql-oracle-0:2.0.3-45.el6sat.noarch"
},
"product_reference": "spacewalk-backend-sql-oracle-0:2.0.3-45.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-postgresql-0:2.0.3-45.el6sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.6)",
"product_id": "6Server-Satellite56:spacewalk-backend-sql-postgresql-0:2.0.3-45.el6sat.noarch"
},
"product_reference": "spacewalk-backend-sql-postgresql-0:2.0.3-45.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-tools-0:2.0.3-45.el6sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.6)",
"product_id": "6Server-Satellite56:spacewalk-backend-tools-0:2.0.3-45.el6sat.noarch"
},
"product_reference": "spacewalk-backend-tools-0:2.0.3-45.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xml-export-libs-0:2.0.3-45.el6sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.6)",
"product_id": "6Server-Satellite56:spacewalk-backend-xml-export-libs-0:2.0.3-45.el6sat.noarch"
},
"product_reference": "spacewalk-backend-xml-export-libs-0:2.0.3-45.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xmlrpc-0:2.0.3-45.el6sat.noarch as a component of Red Hat Satellite 5.6 (RHEL v.6)",
"product_id": "6Server-Satellite56:spacewalk-backend-xmlrpc-0:2.0.3-45.el6sat.noarch"
},
"product_reference": "spacewalk-backend-xmlrpc-0:2.0.3-45.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite56"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-0:2.3.3-49.el6sat.noarch as a component of Red Hat Satellite 5.7 (RHEL v.6)",
"product_id": "6Server-Satellite57:spacewalk-backend-0:2.3.3-49.el6sat.noarch"
},
"product_reference": "spacewalk-backend-0:2.3.3-49.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite57"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-0:2.3.3-49.el6sat.src as a component of Red Hat Satellite 5.7 (RHEL v.6)",
"product_id": "6Server-Satellite57:spacewalk-backend-0:2.3.3-49.el6sat.src"
},
"product_reference": "spacewalk-backend-0:2.3.3-49.el6sat.src",
"relates_to_product_reference": "6Server-Satellite57"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-app-0:2.3.3-49.el6sat.noarch as a component of Red Hat Satellite 5.7 (RHEL v.6)",
"product_id": "6Server-Satellite57:spacewalk-backend-app-0:2.3.3-49.el6sat.noarch"
},
"product_reference": "spacewalk-backend-app-0:2.3.3-49.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite57"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-applet-0:2.3.3-49.el6sat.noarch as a component of Red Hat Satellite 5.7 (RHEL v.6)",
"product_id": "6Server-Satellite57:spacewalk-backend-applet-0:2.3.3-49.el6sat.noarch"
},
"product_reference": "spacewalk-backend-applet-0:2.3.3-49.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite57"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-0:2.3.3-49.el6sat.noarch as a component of Red Hat Satellite 5.7 (RHEL v.6)",
"product_id": "6Server-Satellite57:spacewalk-backend-config-files-0:2.3.3-49.el6sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-0:2.3.3-49.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite57"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-common-0:2.3.3-49.el6sat.noarch as a component of Red Hat Satellite 5.7 (RHEL v.6)",
"product_id": "6Server-Satellite57:spacewalk-backend-config-files-common-0:2.3.3-49.el6sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-common-0:2.3.3-49.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite57"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-config-files-tool-0:2.3.3-49.el6sat.noarch as a component of Red Hat Satellite 5.7 (RHEL v.6)",
"product_id": "6Server-Satellite57:spacewalk-backend-config-files-tool-0:2.3.3-49.el6sat.noarch"
},
"product_reference": "spacewalk-backend-config-files-tool-0:2.3.3-49.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite57"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-0:2.3.3-49.el6sat.noarch as a component of Red Hat Satellite 5.7 (RHEL v.6)",
"product_id": "6Server-Satellite57:spacewalk-backend-iss-0:2.3.3-49.el6sat.noarch"
},
"product_reference": "spacewalk-backend-iss-0:2.3.3-49.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite57"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-iss-export-0:2.3.3-49.el6sat.noarch as a component of Red Hat Satellite 5.7 (RHEL v.6)",
"product_id": "6Server-Satellite57:spacewalk-backend-iss-export-0:2.3.3-49.el6sat.noarch"
},
"product_reference": "spacewalk-backend-iss-export-0:2.3.3-49.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite57"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-libs-0:2.3.3-49.el6sat.noarch as a component of Red Hat Satellite 5.7 (RHEL v.6)",
"product_id": "6Server-Satellite57:spacewalk-backend-libs-0:2.3.3-49.el6sat.noarch"
},
"product_reference": "spacewalk-backend-libs-0:2.3.3-49.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite57"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-package-push-server-0:2.3.3-49.el6sat.noarch as a component of Red Hat Satellite 5.7 (RHEL v.6)",
"product_id": "6Server-Satellite57:spacewalk-backend-package-push-server-0:2.3.3-49.el6sat.noarch"
},
"product_reference": "spacewalk-backend-package-push-server-0:2.3.3-49.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite57"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-server-0:2.3.3-49.el6sat.noarch as a component of Red Hat Satellite 5.7 (RHEL v.6)",
"product_id": "6Server-Satellite57:spacewalk-backend-server-0:2.3.3-49.el6sat.noarch"
},
"product_reference": "spacewalk-backend-server-0:2.3.3-49.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite57"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-0:2.3.3-49.el6sat.noarch as a component of Red Hat Satellite 5.7 (RHEL v.6)",
"product_id": "6Server-Satellite57:spacewalk-backend-sql-0:2.3.3-49.el6sat.noarch"
},
"product_reference": "spacewalk-backend-sql-0:2.3.3-49.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite57"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-oracle-0:2.3.3-49.el6sat.noarch as a component of Red Hat Satellite 5.7 (RHEL v.6)",
"product_id": "6Server-Satellite57:spacewalk-backend-sql-oracle-0:2.3.3-49.el6sat.noarch"
},
"product_reference": "spacewalk-backend-sql-oracle-0:2.3.3-49.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite57"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-sql-postgresql-0:2.3.3-49.el6sat.noarch as a component of Red Hat Satellite 5.7 (RHEL v.6)",
"product_id": "6Server-Satellite57:spacewalk-backend-sql-postgresql-0:2.3.3-49.el6sat.noarch"
},
"product_reference": "spacewalk-backend-sql-postgresql-0:2.3.3-49.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite57"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-tools-0:2.3.3-49.el6sat.noarch as a component of Red Hat Satellite 5.7 (RHEL v.6)",
"product_id": "6Server-Satellite57:spacewalk-backend-tools-0:2.3.3-49.el6sat.noarch"
},
"product_reference": "spacewalk-backend-tools-0:2.3.3-49.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite57"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xml-export-libs-0:2.3.3-49.el6sat.noarch as a component of Red Hat Satellite 5.7 (RHEL v.6)",
"product_id": "6Server-Satellite57:spacewalk-backend-xml-export-libs-0:2.3.3-49.el6sat.noarch"
},
"product_reference": "spacewalk-backend-xml-export-libs-0:2.3.3-49.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite57"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacewalk-backend-xmlrpc-0:2.3.3-49.el6sat.noarch as a component of Red Hat Satellite 5.7 (RHEL v.6)",
"product_id": "6Server-Satellite57:spacewalk-backend-xmlrpc-0:2.3.3-49.el6sat.noarch"
},
"product_reference": "spacewalk-backend-xmlrpc-0:2.3.3-49.el6sat.noarch",
"relates_to_product_reference": "6Server-Satellite57"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Bert Stel"
],
"organization": "SUSE"
}
],
"cve": "CVE-2017-7470",
"cwe": {
"id": "CWE-863",
"name": "Incorrect Authorization"
},
"discovery_date": "2017-04-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1439622"
}
],
"notes": [
{
"category": "description",
"text": "It was found that spacewalk-channel can be used by a non-admin user or disabled users to perform administrative tasks due to an incorrect authorization check in backend/server/rhnChannel.py.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "spacewalk-backend: spacewalk-channel can be used by non-admin or disabled users for performing administrative tasks",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of spacewalk-backend as shipped with Red Hat Satellite version 5. Red Hat Product Security has rated this issue as having Moderate security impact. A future update may address this issue. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Satellite56:spacewalk-backend-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-0:2.0.3-45.el5sat.src",
"5Server-Satellite56:spacewalk-backend-app-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-applet-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-config-files-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-config-files-common-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-config-files-tool-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-iss-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-iss-export-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-libs-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-package-push-server-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-server-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-sql-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-sql-oracle-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-sql-postgresql-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-tools-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-xml-export-libs-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-xmlrpc-0:2.0.3-45.el5sat.noarch",
"6Server-Satellite56:spacewalk-backend-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-0:2.0.3-45.el6sat.src",
"6Server-Satellite56:spacewalk-backend-app-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-applet-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-config-files-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-config-files-common-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-config-files-tool-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-iss-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-iss-export-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-libs-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-package-push-server-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-server-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-sql-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-sql-oracle-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-sql-postgresql-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-tools-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-xml-export-libs-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-xmlrpc-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-0:2.3.3-49.el6sat.src",
"6Server-Satellite57:spacewalk-backend-app-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-applet-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-config-files-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-config-files-common-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-config-files-tool-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-iss-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-iss-export-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-libs-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-package-push-server-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-server-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-sql-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-sql-oracle-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-sql-postgresql-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-tools-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-xml-export-libs-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-xmlrpc-0:2.3.3-49.el6sat.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-7470"
},
{
"category": "external",
"summary": "RHBZ#1439622",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1439622"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-7470",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7470"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-7470",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7470"
}
],
"release_date": "2017-05-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2017-05-18T22:00:03+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor this update to take effect, Red Hat Satellite must be restarted (\"/usr/sbin/rhn-satellite restart\").",
"product_ids": [
"5Server-Satellite56:spacewalk-backend-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-0:2.0.3-45.el5sat.src",
"5Server-Satellite56:spacewalk-backend-app-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-applet-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-config-files-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-config-files-common-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-config-files-tool-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-iss-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-iss-export-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-libs-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-package-push-server-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-server-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-sql-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-sql-oracle-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-sql-postgresql-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-tools-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-xml-export-libs-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-xmlrpc-0:2.0.3-45.el5sat.noarch",
"6Server-Satellite56:spacewalk-backend-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-0:2.0.3-45.el6sat.src",
"6Server-Satellite56:spacewalk-backend-app-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-applet-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-config-files-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-config-files-common-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-config-files-tool-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-iss-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-iss-export-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-libs-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-package-push-server-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-server-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-sql-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-sql-oracle-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-sql-postgresql-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-tools-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-xml-export-libs-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-xmlrpc-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-0:2.3.3-49.el6sat.src",
"6Server-Satellite57:spacewalk-backend-app-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-applet-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-config-files-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-config-files-common-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-config-files-tool-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-iss-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-iss-export-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-libs-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-package-push-server-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-server-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-sql-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-sql-oracle-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-sql-postgresql-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-tools-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-xml-export-libs-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-xmlrpc-0:2.3.3-49.el6sat.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2017:1259"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"5Server-Satellite56:spacewalk-backend-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-0:2.0.3-45.el5sat.src",
"5Server-Satellite56:spacewalk-backend-app-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-applet-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-config-files-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-config-files-common-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-config-files-tool-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-iss-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-iss-export-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-libs-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-package-push-server-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-server-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-sql-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-sql-oracle-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-sql-postgresql-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-tools-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-xml-export-libs-0:2.0.3-45.el5sat.noarch",
"5Server-Satellite56:spacewalk-backend-xmlrpc-0:2.0.3-45.el5sat.noarch",
"6Server-Satellite56:spacewalk-backend-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-0:2.0.3-45.el6sat.src",
"6Server-Satellite56:spacewalk-backend-app-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-applet-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-config-files-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-config-files-common-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-config-files-tool-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-iss-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-iss-export-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-libs-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-package-push-server-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-server-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-sql-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-sql-oracle-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-sql-postgresql-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-tools-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-xml-export-libs-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite56:spacewalk-backend-xmlrpc-0:2.0.3-45.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-0:2.3.3-49.el6sat.src",
"6Server-Satellite57:spacewalk-backend-app-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-applet-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-config-files-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-config-files-common-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-config-files-tool-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-iss-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-iss-export-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-libs-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-package-push-server-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-server-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-sql-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-sql-oracle-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-sql-postgresql-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-tools-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-xml-export-libs-0:2.3.3-49.el6sat.noarch",
"6Server-Satellite57:spacewalk-backend-xmlrpc-0:2.3.3-49.el6sat.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "spacewalk-backend: spacewalk-channel can be used by non-admin or disabled users for performing administrative tasks"
}
]
}
GHSA-8HHP-CR56-3GG7
Vulnerability from github – Published: 2022-05-13 01:36 – Updated: 2022-05-13 01:36
VLAI?
Details
It was found that spacewalk-channel can be used by a non-admin user or disabled users to perform administrative tasks due to an incorrect authorization check in backend/server/rhnChannel.py.
Severity ?
9.8 (Critical)
{
"affected": [],
"aliases": [
"CVE-2017-7470"
],
"database_specific": {
"cwe_ids": [
"CWE-863"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2018-07-27T13:29:00Z",
"severity": "CRITICAL"
},
"details": "It was found that spacewalk-channel can be used by a non-admin user or disabled users to perform administrative tasks due to an incorrect authorization check in backend/server/rhnChannel.py.",
"id": "GHSA-8hhp-cr56-3gg7",
"modified": "2022-05-13T01:36:20Z",
"published": "2022-05-13T01:36:20Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-7470"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2017:1259"
},
{
"type": "WEB",
"url": "https://access.redhat.com/security/cve/CVE-2017-7470"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1439622"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7470"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/98569"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
CNVD-2017-10579
Vulnerability from cnvd - Published: 2017-06-22
VLAI Severity ?
Title
Red Hat spacewalk-backend安全绕过漏洞
Description
spacewalk 是一个开源免费的linux系统管理解决方案。可用于管理系统信息,安装并更新系统中的软件,收集并分发系统中自定义软件包到可管理的组,提供和管理系统中的配置文件等。
Red Hat spacewalk-backend存在安全绕过漏洞。攻击者可以利用该漏洞绕过一些安全限制执行未授权操作,并发起进一步的攻击。
Severity
中
Patch Name
Red Hat spacewalk-backend安全绕过漏洞的补丁
Patch Description
spacewalk 是一个开源免费的linux系统管理解决方案。可用于管理系统信息,安装并更新系统中的软件,收集并分发系统中自定义软件包到可管理的组,提供和管理系统中的配置文件等。
Red Hat spacewalk-backend存在安全绕过漏洞。攻击者可以利用该漏洞绕过一些安全限制执行未授权操作,并发起进一步的攻击。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
用户可参考如下厂商提供的安全补丁以修复该漏洞: https://rhn.redhat.com/errata/RHSA-2017-1259.html
Reference
http://www.securityfocus.com/bid/98569
Impacted products
| Name | ['Red Hat spacewalk-backend 0', 'RedHat Satellite (for RHEL 6) 5.7', 'RedHat Satellite (for RHEL 6) 5.6', 'RedHat Satellite (for RHEL 5) 5.6'] |
|---|
{
"bids": {
"bid": {
"bidNumber": "98569"
}
},
"cves": {
"cve": {
"cveNumber": "CVE-2017-7470",
"cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7470"
}
},
"description": "spacewalk \u662f\u4e00\u4e2a\u5f00\u6e90\u514d\u8d39\u7684linux\u7cfb\u7edf\u7ba1\u7406\u89e3\u51b3\u65b9\u6848\u3002\u53ef\u7528\u4e8e\u7ba1\u7406\u7cfb\u7edf\u4fe1\u606f\uff0c\u5b89\u88c5\u5e76\u66f4\u65b0\u7cfb\u7edf\u4e2d\u7684\u8f6f\u4ef6\uff0c\u6536\u96c6\u5e76\u5206\u53d1\u7cfb\u7edf\u4e2d\u81ea\u5b9a\u4e49\u8f6f\u4ef6\u5305\u5230\u53ef\u7ba1\u7406\u7684\u7ec4\uff0c\u63d0\u4f9b\u548c\u7ba1\u7406\u7cfb\u7edf\u4e2d\u7684\u914d\u7f6e\u6587\u4ef6\u7b49\u3002\r\n\r\nRed Hat spacewalk-backend\u5b58\u5728\u5b89\u5168\u7ed5\u8fc7\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u4ee5\u5229\u7528\u8be5\u6f0f\u6d1e\u7ed5\u8fc7\u4e00\u4e9b\u5b89\u5168\u9650\u5236\u6267\u884c\u672a\u6388\u6743\u64cd\u4f5c\uff0c\u5e76\u53d1\u8d77\u8fdb\u4e00\u6b65\u7684\u653b\u51fb\u3002",
"discovererName": "Bert Stel (SUSE)",
"formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5382\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u8865\u4e01\u4ee5\u4fee\u590d\u8be5\u6f0f\u6d1e\uff1a\r\nhttps://rhn.redhat.com/errata/RHSA-2017-1259.html",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2017-10579",
"openTime": "2017-06-22",
"patchDescription": "spacewalk \u662f\u4e00\u4e2a\u5f00\u6e90\u514d\u8d39\u7684linux\u7cfb\u7edf\u7ba1\u7406\u89e3\u51b3\u65b9\u6848\u3002\u53ef\u7528\u4e8e\u7ba1\u7406\u7cfb\u7edf\u4fe1\u606f\uff0c\u5b89\u88c5\u5e76\u66f4\u65b0\u7cfb\u7edf\u4e2d\u7684\u8f6f\u4ef6\uff0c\u6536\u96c6\u5e76\u5206\u53d1\u7cfb\u7edf\u4e2d\u81ea\u5b9a\u4e49\u8f6f\u4ef6\u5305\u5230\u53ef\u7ba1\u7406\u7684\u7ec4\uff0c\u63d0\u4f9b\u548c\u7ba1\u7406\u7cfb\u7edf\u4e2d\u7684\u914d\u7f6e\u6587\u4ef6\u7b49\u3002\r\n\r\nRed Hat spacewalk-backend\u5b58\u5728\u5b89\u5168\u7ed5\u8fc7\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u4ee5\u5229\u7528\u8be5\u6f0f\u6d1e\u7ed5\u8fc7\u4e00\u4e9b\u5b89\u5168\u9650\u5236\u6267\u884c\u672a\u6388\u6743\u64cd\u4f5c\uff0c\u5e76\u53d1\u8d77\u8fdb\u4e00\u6b65\u7684\u653b\u51fb\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Red Hat spacewalk-backend\u5b89\u5168\u7ed5\u8fc7\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": [
"Red Hat spacewalk-backend 0",
"RedHat Satellite (for RHEL 6) 5.7",
"RedHat Satellite (for RHEL 6) 5.6",
"RedHat Satellite (for RHEL 5) 5.6"
]
},
"referenceLink": "http://www.securityfocus.com/bid/98569",
"serverity": "\u4e2d",
"submitTime": "2017-05-24",
"title": "Red Hat spacewalk-backend\u5b89\u5168\u7ed5\u8fc7\u6f0f\u6d1e"
}
FKIE_CVE-2017-7470
Vulnerability from fkie_nvd - Published: 2018-07-27 13:29 - Updated: 2024-11-21 03:31
Severity ?
6.5 (Medium) - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
9.8 (Critical) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 (Critical) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
It was found that spacewalk-channel can be used by a non-admin user or disabled users to perform administrative tasks due to an incorrect authorization check in backend/server/rhnChannel.py.
References
| URL | Tags | ||
|---|---|---|---|
| secalert@redhat.com | http://www.securityfocus.com/bid/98569 | Third Party Advisory, VDB Entry | |
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2017:1259 | Third Party Advisory | |
| secalert@redhat.com | https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7470 | Issue Tracking, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/98569 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2017:1259 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7470 | Issue Tracking, Third Party Advisory |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:redhat:spacewalk:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4453945E-AECE-4BD2-B952-99E7DC306CA1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:redhat:satellite:5.6:*:*:*:*:*:*:*",
"matchCriteriaId": "D4840254-CC76-4113-BC61-360BD15582B9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:satellite:5.7:*:*:*:*:*:*:*",
"matchCriteriaId": "85EA16E0-9261-45C4-840F-5366E9EAC5E1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "It was found that spacewalk-channel can be used by a non-admin user or disabled users to perform administrative tasks due to an incorrect authorization check in backend/server/rhnChannel.py."
},
{
"lang": "es",
"value": "Se ha encontrado que spacewalk-channel puede ser utilizado por un usuario no administrador o por usuarios deshabilitados para realizar tareas administrativas debido a una verificaci\u00f3n de autorizaci\u00f3n incorrecta en backend/servidor/rhnChannel.py."
}
],
"id": "CVE-2017-7470",
"lastModified": "2024-11-21T03:31:58.013",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6,
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2018-07-27T13:29:00.333",
"references": [
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/98569"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:1259"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7470"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/98569"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2017:1259"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7470"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-863"
}
],
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-863"
}
],
"source": "nvd@nist.gov",
"type": "Secondary"
}
]
}
Loading…
Show additional events:
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…