Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-26958 (GCVE-0-2026-26958)
Vulnerability from cvelistv5 – Published: 2026-02-19 23:01 – Updated: 2026-02-20 15:39
VLAI
EPSS
Title
filippo.io/edwards25519 MultiScalarMult function produces invalid results or undefined behavior if receiver is not the identity
Summary
filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and earlier, MultiScalarMult produces invalid results or undefined behavior if the receiver is not the identity point. If (*Point).MultiScalarMult is called on an initialized point that is not the identity point, it returns an incorrect result. If the method is called on an uninitialized point, the behavior is undefined. In particular, if the receiver is the zero value, MultiScalarMult returns an invalid point that compares Equal to every other point. Note that MultiScalarMult is a rarely used, advanced API. For example, users who depend on filippo.io/edwards25519 only through github.com/go-sql-driver/mysql are not affected. This issue has been fixed in version 1.1.1.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-665 - Improper Initialization
Assigner
References
3 references
| URL | Tags |
|---|---|
| https://github.com/FiloSottile/edwards25519/secur… | x_refsource_CONFIRM |
| https://github.com/FiloSottile/edwards25519/commi… | x_refsource_MISC |
| https://github.com/FiloSottile/edwards25519/relea… | x_refsource_MISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| FiloSottile | filippo.io/edwards25519 |
Affected:
< 1.1.1
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-26958",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-02-20T15:27:08.887006Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-02-20T15:39:04.748Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "filippo.io/edwards25519",
"vendor": "FiloSottile",
"versions": [
{
"status": "affected",
"version": "\u003c 1.1.1"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and earlier, MultiScalarMult produces invalid results or undefined behavior if the receiver is not the identity point. If (*Point).MultiScalarMult is called on an initialized point that is not the identity point, it returns an incorrect result. If the method is called on an uninitialized point, the behavior is undefined. In particular, if the receiver is the zero value, MultiScalarMult returns an invalid point that compares Equal to every other point. Note that MultiScalarMult is a rarely used, advanced API. For example, users who depend on filippo.io/edwards25519 only through github.com/go-sql-driver/mysql are not affected. This issue has been fixed in version 1.1.1."
}
],
"metrics": [
{
"cvssV4_0": {
"attackComplexity": "HIGH",
"attackRequirements": "PRESENT",
"attackVector": "NETWORK",
"baseScore": 1.7,
"baseSeverity": "LOW",
"privilegesRequired": "NONE",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"vectorString": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U",
"version": "4.0",
"vulnAvailabilityImpact": "LOW",
"vulnConfidentialityImpact": "NONE",
"vulnIntegrityImpact": "NONE"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-665",
"description": "CWE-665: Improper Initialization",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-02-19T23:01:26.923Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/FiloSottile/edwards25519/security/advisories/GHSA-fw7p-63qq-7hpr",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/FiloSottile/edwards25519/security/advisories/GHSA-fw7p-63qq-7hpr"
},
{
"name": "https://github.com/FiloSottile/edwards25519/commit/d1c650afb95fad0742b98d95f2eb2cf031393abb",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/FiloSottile/edwards25519/commit/d1c650afb95fad0742b98d95f2eb2cf031393abb"
},
{
"name": "https://github.com/FiloSottile/edwards25519/releases/tag/v1.1.1",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/FiloSottile/edwards25519/releases/tag/v1.1.1"
}
],
"source": {
"advisory": "GHSA-fw7p-63qq-7hpr",
"discovery": "UNKNOWN"
},
"title": "filippo.io/edwards25519 MultiScalarMult function produces invalid results or undefined behavior if receiver is not the identity"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2026-26958",
"datePublished": "2026-02-19T23:01:26.923Z",
"dateReserved": "2026-02-16T22:20:28.611Z",
"dateUpdated": "2026-02-20T15:39:04.748Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-26958",
"date": "2026-06-05",
"epss": "0.00018",
"percentile": "0.05085"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-26958\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2026-02-19T23:16:26.577\",\"lastModified\":\"2026-02-20T13:49:47.623\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and earlier, MultiScalarMult produces invalid results or undefined behavior if the receiver is not the identity point. If (*Point).MultiScalarMult is called on an initialized point that is not the identity point, it returns an incorrect result. If the method is called on an uninitialized point, the behavior is undefined. In particular, if the receiver is the zero value, MultiScalarMult returns an invalid point that compares Equal to every other point. Note that MultiScalarMult is a rarely used, advanced API. For example, users who depend on filippo.io/edwards25519 only through github.com/go-sql-driver/mysql are not affected. This issue has been fixed in version 1.1.1.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":1.7,\"baseSeverity\":\"LOW\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"attackRequirements\":\"PRESENT\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"vulnConfidentialityImpact\":\"NONE\",\"vulnIntegrityImpact\":\"NONE\",\"vulnAvailabilityImpact\":\"LOW\",\"subConfidentialityImpact\":\"NONE\",\"subIntegrityImpact\":\"NONE\",\"subAvailabilityImpact\":\"NONE\",\"exploitMaturity\":\"UNREPORTED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-665\"}]}],\"references\":[{\"url\":\"https://github.com/FiloSottile/edwards25519/commit/d1c650afb95fad0742b98d95f2eb2cf031393abb\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/FiloSottile/edwards25519/releases/tag/v1.1.1\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/FiloSottile/edwards25519/security/advisories/GHSA-fw7p-63qq-7hpr\",\"source\":\"security-advisories@github.com\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-26958\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-02-20T15:27:08.887006Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-02-20T15:27:10.701Z\"}}], \"cna\": {\"title\": \"filippo.io/edwards25519 MultiScalarMult function produces invalid results or undefined behavior if receiver is not the identity\", \"source\": {\"advisory\": \"GHSA-fw7p-63qq-7hpr\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV4_0\": {\"version\": \"4.0\", \"baseScore\": 1.7, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"LOW\", \"vectorString\": \"CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"attackRequirements\": \"PRESENT\", \"privilegesRequired\": \"NONE\", \"subIntegrityImpact\": \"NONE\", \"vulnIntegrityImpact\": \"NONE\", \"subAvailabilityImpact\": \"NONE\", \"vulnAvailabilityImpact\": \"LOW\", \"subConfidentialityImpact\": \"NONE\", \"vulnConfidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"FiloSottile\", \"product\": \"filippo.io/edwards25519\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c 1.1.1\"}]}], \"references\": [{\"url\": \"https://github.com/FiloSottile/edwards25519/security/advisories/GHSA-fw7p-63qq-7hpr\", \"name\": \"https://github.com/FiloSottile/edwards25519/security/advisories/GHSA-fw7p-63qq-7hpr\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/FiloSottile/edwards25519/commit/d1c650afb95fad0742b98d95f2eb2cf031393abb\", \"name\": \"https://github.com/FiloSottile/edwards25519/commit/d1c650afb95fad0742b98d95f2eb2cf031393abb\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/FiloSottile/edwards25519/releases/tag/v1.1.1\", \"name\": \"https://github.com/FiloSottile/edwards25519/releases/tag/v1.1.1\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and earlier, MultiScalarMult produces invalid results or undefined behavior if the receiver is not the identity point. If (*Point).MultiScalarMult is called on an initialized point that is not the identity point, it returns an incorrect result. If the method is called on an uninitialized point, the behavior is undefined. In particular, if the receiver is the zero value, MultiScalarMult returns an invalid point that compares Equal to every other point. Note that MultiScalarMult is a rarely used, advanced API. For example, users who depend on filippo.io/edwards25519 only through github.com/go-sql-driver/mysql are not affected. This issue has been fixed in version 1.1.1.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-665\", \"description\": \"CWE-665: Improper Initialization\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2026-02-19T23:01:26.923Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-26958\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-02-20T15:39:04.748Z\", \"dateReserved\": \"2026-02-16T22:20:28.611Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2026-02-19T23:01:26.923Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
OPENSUSE-SU-2026:10618-1
Vulnerability from csaf_opensuse - Published: 2026-04-26 00:00 - Updated: 2026-04-26 00:00Summary
alloy-1.15.1-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: alloy-1.15.1-1.1 on GA media
Description of the patch: These are all security issues fixed in the alloy-1.15.1-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2026-10618
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:alloy-1.15.1-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:alloy-1.15.1-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:alloy-1.15.1-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:alloy-1.15.1-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:alloy-1.15.1-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:alloy-1.15.1-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:alloy-1.15.1-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:alloy-1.15.1-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:alloy-1.15.1-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:alloy-1.15.1-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:alloy-1.15.1-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:alloy-1.15.1-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
11 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "alloy-1.15.1-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the alloy-1.15.1-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2026-10618",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_10618-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25934 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26958 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26958/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
}
],
"title": "alloy-1.15.1-1.1 on GA media",
"tracking": {
"current_release_date": "2026-04-26T00:00:00Z",
"generator": {
"date": "2026-04-26T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:10618-1",
"initial_release_date": "2026-04-26T00:00:00Z",
"revision_history": [
{
"date": "2026-04-26T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "alloy-1.15.1-1.1.aarch64",
"product": {
"name": "alloy-1.15.1-1.1.aarch64",
"product_id": "alloy-1.15.1-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "alloy-1.15.1-1.1.ppc64le",
"product": {
"name": "alloy-1.15.1-1.1.ppc64le",
"product_id": "alloy-1.15.1-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "alloy-1.15.1-1.1.s390x",
"product": {
"name": "alloy-1.15.1-1.1.s390x",
"product_id": "alloy-1.15.1-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "alloy-1.15.1-1.1.x86_64",
"product": {
"name": "alloy-1.15.1-1.1.x86_64",
"product_id": "alloy-1.15.1-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.15.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:alloy-1.15.1-1.1.aarch64"
},
"product_reference": "alloy-1.15.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.15.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:alloy-1.15.1-1.1.ppc64le"
},
"product_reference": "alloy-1.15.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.15.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:alloy-1.15.1-1.1.s390x"
},
"product_reference": "alloy-1.15.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.15.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:alloy-1.15.1-1.1.x86_64"
},
"product_reference": "alloy-1.15.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25934"
}
],
"notes": [
{
"category": "general",
"text": "go-git is a highly extensible git implementation library written in pure Go. Prior to 5.16.5, a vulnerability was discovered in go-git whereby data integrity values for .pack and .idx files were not properly verified. This resulted in go-git potentially consuming corrupted files, which would likely result in unexpected errors such as object not found. For context, clients fetch packfiles from upstream Git servers. Those files contain a checksum of their contents, so that clients can perform integrity checks before consuming it. The pack indexes (.idx) are generated locally by go-git, or the git cli, when new .pack files are received and processed. The integrity checks for both files were not being verified correctly. This vulnerability is fixed in 5.16.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:alloy-1.15.1-1.1.aarch64",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.ppc64le",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.s390x",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25934",
"url": "https://www.suse.com/security/cve/CVE-2026-25934"
},
{
"category": "external",
"summary": "SUSE Bug 1258093 for CVE-2026-25934",
"url": "https://bugzilla.suse.com/1258093"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:alloy-1.15.1-1.1.aarch64",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.ppc64le",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.s390x",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:alloy-1.15.1-1.1.aarch64",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.ppc64le",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.s390x",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-26T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-25934"
},
{
"cve": "CVE-2026-26958",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26958"
}
],
"notes": [
{
"category": "general",
"text": "filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and earlier, MultiScalarMult produces invalid results or undefined behavior if the receiver is not the identity point. If (*Point).MultiScalarMult is called on an initialized point that is not the identity point, it returns an incorrect result. If the method is called on an uninitialized point, the behavior is undefined. In particular, if the receiver is the zero value, MultiScalarMult returns an invalid point that compares Equal to every other point. Note that MultiScalarMult is a rarely used, advanced API. For example, users who depend on filippo.io/edwards25519 only through github.com/go-sql-driver/mysql are not affected. This issue has been fixed in version 1.1.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:alloy-1.15.1-1.1.aarch64",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.ppc64le",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.s390x",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26958",
"url": "https://www.suse.com/security/cve/CVE-2026-26958"
},
{
"category": "external",
"summary": "SUSE Bug 1258570 for CVE-2026-26958",
"url": "https://bugzilla.suse.com/1258570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:alloy-1.15.1-1.1.aarch64",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.ppc64le",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.s390x",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:alloy-1.15.1-1.1.aarch64",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.ppc64le",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.s390x",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-26T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-26958"
},
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:alloy-1.15.1-1.1.aarch64",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.ppc64le",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.s390x",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:alloy-1.15.1-1.1.aarch64",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.ppc64le",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.s390x",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:alloy-1.15.1-1.1.aarch64",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.ppc64le",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.s390x",
"openSUSE Tumbleweed:alloy-1.15.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-26T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
}
]
}
SUSE-SU-2026:0777-1
Vulnerability from csaf_suse - Published: 2026-03-03 13:22 - Updated: 2026-03-03 13:22Summary
Security update for cosign
Severity
Moderate
Notes
Title of the patch: Security update for cosign
Description of the patch: This update for cosign fixes the following issues:
Update to version 3.0.5 (jsc#SLE-23879).
Security issues fixed:
- CVE-2025-11065: github.com/go-viper/mapstructure/v2: sensitive Information leak in logs (bsc#1250620).
- CVE-2025-58181: golang.org/x/crypto/ssh: invalidated number of mechanisms can cause unbounded memory consumption
(bsc#1253913).
- CVE-2026-22703: Verification accepts any valid Rekor entry under certain conditions (bsc#1256496).
- CVE-2026-22772: github.com/sigstore/fulcio: bypass MetaIssuer URL validation bypass can trigger SSRF to arbitrary
internal services (bsc#1256562).
- CVE-2026-23991: github.com/theupdateframework/go-tuf/v2: denial of service due to invalid TUF metadata JSON returned
by TUF repository (bsc#1257080).
- CVE-2026-23992: github.com/theupdateframework/go-tuf/v2: unauthorized modification to TUF metadata files due to a
compromised or misconfigured TUF repository (bsc#1257085).
- CVE-2026-24122: improper validation of certificates that outlive expired CA certificates (bsc#1258542).
- CVE-2026-24137: github.com/sigstore/sigstore/pkg/tuf: legacy TUF client allows for arbitrary file writes with target
cache path traversal (bsc#1257139).
- CVE-2026-26958: filippo.io/edwards25519: failure to initialize receiver in MultiScalarMult can produce invalid results
and lead to undefined behavior (bsc#1258612).
Other updates and bugfixes:
* chore(deps): bump google.golang.org/api from 0.260.0 to 0.264.0 (#4679)
* chore(deps): bump github.com/sigstore/rekor-tiles/v2 from 2.0.1 to 2.1.0 (#4670)
* chore(deps): bump filippo.io/edwards25519 from 1.1.0 to 1.1.1 (#4712)
* chore(deps): bump gitlab.com/gitlab-org/api/client-go (#4680)
* chore(deps): bump the gomod group across 1 directory with 4 updates (#4702)
* chore(deps): bump the actions group with 3 updates (#4703)
* update golang builder to use go1.25.7 (#4687)
* update golangci-lint to v2.8.x (#4688)
* Support DSSE signing conformance test (#4685)
* chore(deps): bump the actions group across 1 directory with 8 updates (#4689)
* Deprecate rekor-entry-type flag (#4691)
* Deprecate cosign triangulate (#4676)
* Deprecate cosign copy (#4681)
* Enforce TSA requirement for Rekor v2, Fuclio signing (#4683)
* chore(deps): bump github.com/theupdateframework/go-tuf/v2 (#4668)
* chore(deps): bump golang from 1.25.5 to 1.25.6 in the all group (#4673)
* Automatically require signed timestamp with Rekor v2 entries (#4666)
* Fix syntax issue in conformance test, update nightly (#4664)
* Add mTLS support for TSA client connections when signing with a signing config (#4620)
* fix: avoid panic on malformed tlog entry body (#4652)
* Verify validity of chain rather than just certificate (#4663)
* Allow --local-image with --new-bundle-format for v2 and v3 signatures (#4626)
* chore(deps): bump the gomod group across 1 directory with 3 updates (#4662)
* Bump sigstore/sigstore to resolve GHSA (#4660)
* Gracefully fail if bundle payload body is not a string (#4648)
* fix: avoid panic on malformed replace payload (#4653)
* chore(deps): bump github.com/sigstore/rekor from 1.4.3 to 1.5.0 (#4659)
* fix: avoid panic on malformed attestation payload (#4651)
* fix: avoid panic on malformed tlog entries (#4649)
* Update conformance to latest
* docs(cosign): clarify RFC3161 revocation semantics (#4642)
* Add empty predicate to cosign sign when payload type is application/vnd.in-toto+json (#4635)
* chore(deps): bump github.com/sigstore/fulcio from 1.8.4 to 1.8.5 (#4637)
* Add origin key for ctfe trusted root
* Add changelog updates for v3.0.4 and v2.6.2 (#4625)
- Update to version 3.0.4:
* Fix bundle verify path for old bundle/trusted root (#4623)
* chore(deps): bump gitlab.com/gitlab-org/api/client-go (#4616)
* chore(deps): bump cuelang.org/go in the gomod group (#4615)
* Optimize cosign tree performance by caching digest resolution (#4612)
* Don't require a trusted root to verify offline with a key (#4613)
* Support default services for trusted-root and signing-config creation (#4592)
* chore(deps): bump gitlab.com/gitlab-org/api/client-go (#4602)
* chore(deps): bump github.com/sigstore/sigstore-go (#4578)
* chore(deps): bump github.com/buildkite/agent/v3 from 3.114.1 to 3.115.2 (#4601)
* chore(deps): bump google.golang.org/api from 0.257.0 to 0.258.0 (#4611)
* chore(deps): bump k8s.io/client-go from 0.34.3 to 0.35.0 (#4604)
* chore(deps): bump actions/upload-artifact from 5.0.0 to 6.0.0 (#4588)
* chore(deps): bump golang.org/x/oauth2 from 0.33.0 to 0.34.0 (#4586)
* chore(deps): bump the gomod group with 5 updates (#4599)
* chore(deps): bump github.com/open-policy-agent/opa from 1.10.1 to 1.12.1 (#4600)
* chore(deps): bump golang.org/x/term from 0.37.0 to 0.38.0 (#4584)
* chore(deps): bump the actions group with 3 updates (#4587)
* chore(deps): bump actions/cache from 4.3.0 to 5.0.1 (#4589)
* chore(deps): bump the gomod group with 9 updates (#4577)
- Update to version 3.0.3:
* 4554: Closes 4554 - Add warning when --output* is used (#4556)
* chore(deps): bump golangci/golangci-lint-action from 8.0.0 to 9.1.0 (#4545)
* chore(deps): bump github.com/buildkite/agent/v3 from 3.111.0 to 3.113.0 (#4542)
* chore(deps): bump github.com/awslabs/amazon-ecr-credential-helper/ecr-login (#4543)
* chore(deps): bump actions/checkout from 5.0.0 to 6.0.0 (#4546)
* chore(deps): bump the actions group with 4 updates (#4544)
* chore(deps): bump the gomod group across 1 directory with 5 updates (#4567)
* chore(deps): bump golang from 1.25.4 to 1.25.5 in the all group (#4568)
* update builder to use go1.25.5 (#4566)
* Protobuf bundle support for subcommand `clean` (#4539)
* Add staging flag to initialize with staging TUF metadata
* update slack invite link (#4560)
* Updating sign-blob to also support signing with a certificate (#4547)
* Bump sigstore library dependencies (#4532)
* Protobuf bundle support for subcommands `save` and `load` (#4538)
* Fix cert attachment for new bundle with signing config
* Fix OCI verification with local cert - old bundle
* chore(deps): bump github.com/sigstore/fulcio from 1.7.1 to 1.8.1 (#4519)
* chore(deps): bump golang.org/x/crypto in /test/fakeoidc (#4535)
* chore(deps): bump golang.org/x/crypto from 0.43.0 to 0.45.0 (#4536)
* update go builder and cosign (#4529)
* chore(deps): bump the gomod group across 1 directory with 7 updates (#4528)
* chore(deps): bump sigstore/cosign-installer from 3.10.0 to 4.0.0 (#4478)
* chore(deps): bump gitlab.com/gitlab-org/api/client-go (#4520)
* chore(deps): bump golang from 1.25.3 to 1.25.4 in the all group (#4515)
* chore(deps): bump golang.org/x/oauth2 from 0.32.0 to 0.33.0 (#4518)
* chore(deps): bump cuelang.org/go from 0.14.2 to 0.15.0 (#4524)
* chore(deps): bump github.com/open-policy-agent/opa from 1.9.0 to 1.10.1 (#4521)
* chore(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 (#4502)
* chore(deps): bump the actions group across 1 directory with 2 updates (#4516)
* chore(deps): bump github.com/buildkite/agent/v3 from 3.110.0 to 3.111.0 (#4523)
* chore(deps): bump github.com/theupdateframework/go-tuf/v2 (#4522)
* Deprecate tlog-upload flag (#4458)
* fix: Use signal context for `sign` cli package.
* update offline verification directions (#4526)
* Fix signing/verifying annotations for new bundle
* Add support to download and attach for protobuf bundles (#4477)
* Add --signing-algorithm flag (#3497)
* Refactor signcommon bundle helpers
* Add --bundle and fix --upload for new bundle
* Pass insecure registry flags through to referrers
* chore(deps): bump github.com/buildkite/agent/v3 from 3.108.0 to 3.109.1 (#4483)
* Add protobuf bundle support for tree subcommand (#4491)
* Remove stale embed import (#4492)
* Support multiple container identities
* chore(deps): bump gitlab.com/gitlab-org/api/client-go (#4484)
* chore(deps): bump chainguard-dev/actions in the actions group (#4480)
* chore(deps): bump github.com/sigstore/rekor-tiles/v2 (#4485)
* chore(deps): bump golang.org/x/crypto from 0.42.0 to 0.43.0 (#4486)
* chore(deps): bump cuelang.org/go in the gomod group (#4479)
* upgrade OSS-Fuzz build tooling (#4487)
* Fix segfault when no attestations are found (#4472)
* Use overridden repository for new bundle format (#4473)
* update go to 1.25.3 (#4471)
* Remove --out flag from `cosign initialize` (#4462)
* chore(deps): bump the actions group with 2 updates (#4460)
* Deprecate offline flag (#4457)
* Deduplicate code in sign/attest* and verify* commands (#4449)
* Cache signing config when calling initialize (#4456)
* Update changelog for v3.0.2 (#4455)
* chore(deps): bump google.golang.org/api from 0.250.0 to 0.251.0
* chore(deps): bump gitlab.com/gitlab-org/api/client-go
* chore(deps): bump the actions group with 3 updates
* chore(deps): bump github.com/buildkite/agent/v3 from 3.107.2 to 3.108.0
* choose different signature filename for KMS-signed release signatures (#4448)
* chore(deps): bump github.com/go-jose/go-jose/v4 (#4451)
* Update rekor-tiles version path
* update CL for v3.0.1 release (#4447)
* update goreleaser config for v3.0.0 release (#4446)
* Create changelog for v3.0.0 (#4440)
* Fetch service URLs from the TUF PGI signing config by default (#4428)
* Create changelog for v2.6.1 (#4439)
* chore(deps): bump google.golang.org/api from 0.249.0 to 0.250.0 (#4432)
* chore(deps): bump the gomod group with 2 updates (#4429)
* chore(deps): bump github.com/open-policy-agent/opa from 1.8.0 to 1.9.0 (#4433)
* chore(deps): bump the actions group with 3 updates (#4434)
* chore(deps): bump github.com/go-openapi/swag from 0.24.1 to 0.25.1 (#4435)
* chore(deps): bump gitlab.com/gitlab-org/api/client-go (#4436)
* chore(deps): bump github.com/go-openapi/runtime from 0.28.0 to 0.29.0 (#4437)
* Bump module version to v3 for Cosign v3.0 (#4427)
* Move sigstore-conformance back to tagged release (#4425)
* Bump sigstore-go to v1.1.3 (#4423)
* Partially populate the output of cosign verify when working with new bundles (#4416)
* chore(deps): bump gitlab.com/gitlab-org/api/client-go (#4419)
* chore(deps): bump github.com/theupdateframework/go-tuf/v2 (#4418)
* chore(deps): bump github.com/buildkite/agent/v3 from 3.105.0 to 3.107.0 (#4420)
* chore(deps): bump chainguard-dev/actions in the actions group (#4421)
* bump go builder to use 1.25.1 and cosign (#4417)
* Bump sigstore-go for more precise user agents (#4413)
* chore(deps): bump github.com/spf13/viper from 1.20.1 to 1.21.0 (#4408)
* chore(deps): bump the actions group with 2 updates (#4407)
* chore(deps): bump gitlab.com/gitlab-org/api/client-go (#4410)
* chore(deps): bump github.com/buildkite/agent/v3 from 3.104.0 to 3.105.0 (#4411)
* Default to using the new protobuf format (#4318)
- Update to version 2.6.0:
* Require exclusively a SigningConfig or service URLs when signing (#4403)
* Add a terminal spinner while signing with sigstore-go (#4402)
* Bump sigstore-go, support alternative hash algorithms with keys (#4386)
* Add support for SigningConfig in sign/attest (#4371)
* Support self-managed keys when signing with sigstore-go (#4368)
* Remove SHA256 assumption in sign-blob/verify-blob (#4050)
* introduce dockerfile to pin the go version to decouple go version from go.mod (#4369)
* refactor: extract function to write referrer attestations (#4357)
* Break import cycle with e2e build tag (#4370)
* Update conformance test binary for signing config (#4367)
* update builder image to use go1.25 (#4366)
* Don't load content from TUF if trusted root path is specified (#4347)
* Don't require timestamps when verifying with a key (#4337)
* Fixes to cosign sign / verify for the new bundle format (#4346)
* update builder to use go1.24.6 (#4334)
* bump golangci-lint to v2.3.x (#4333)
* Have cosign sign support bundle format (#4316)
* Add support for SigningConfig for sign-blob/attest-blob, support Rekor v2 (#4319)
* Verify subject with bundle only when checking claims (#4320)
* Add to `attest-blob` the ability to supply a complete in-toto statement, and add to `verify-blob-attestation` the
ability to verify with just a digest (#4306)
Patchnames: SUSE-2026-777,SUSE-SLE-Module-Basesystem-15-SP7-2026-777,openSUSE-SLE-15.6-2026-777
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.5 (Medium)
Affected products
Recommended
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.5 (Medium)
Affected products
Recommended
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.8 (Medium)
Affected products
Recommended
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
40 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for cosign",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for cosign fixes the following issues:\n\nUpdate to version 3.0.5 (jsc#SLE-23879).\n\nSecurity issues fixed: \n\n- CVE-2025-11065: github.com/go-viper/mapstructure/v2: sensitive Information leak in logs (bsc#1250620).\n- CVE-2025-58181: golang.org/x/crypto/ssh: invalidated number of mechanisms can cause unbounded memory consumption\n (bsc#1253913).\n- CVE-2026-22703: Verification accepts any valid Rekor entry under certain conditions (bsc#1256496).\n- CVE-2026-22772: github.com/sigstore/fulcio: bypass MetaIssuer URL validation bypass can trigger SSRF to arbitrary\n internal services (bsc#1256562).\n- CVE-2026-23991: github.com/theupdateframework/go-tuf/v2: denial of service due to invalid TUF metadata JSON returned\n by TUF repository (bsc#1257080).\n- CVE-2026-23992: github.com/theupdateframework/go-tuf/v2: unauthorized modification to TUF metadata files due to a\n compromised or misconfigured TUF repository (bsc#1257085).\n- CVE-2026-24122: improper validation of certificates that outlive expired CA certificates (bsc#1258542).\n- CVE-2026-24137: github.com/sigstore/sigstore/pkg/tuf: legacy TUF client allows for arbitrary file writes with target\n cache path traversal (bsc#1257139).\n- CVE-2026-26958: filippo.io/edwards25519: failure to initialize receiver in MultiScalarMult can produce invalid results\n and lead to undefined behavior (bsc#1258612).\n\nOther updates and bugfixes:\n\n* chore(deps): bump google.golang.org/api from 0.260.0 to 0.264.0 (#4679)\n* chore(deps): bump github.com/sigstore/rekor-tiles/v2 from 2.0.1 to 2.1.0 (#4670)\n* chore(deps): bump filippo.io/edwards25519 from 1.1.0 to 1.1.1 (#4712)\n* chore(deps): bump gitlab.com/gitlab-org/api/client-go (#4680)\n* chore(deps): bump the gomod group across 1 directory with 4 updates (#4702)\n* chore(deps): bump the actions group with 3 updates (#4703)\n* update golang builder to use go1.25.7 (#4687)\n* update golangci-lint to v2.8.x (#4688)\n* Support DSSE signing conformance test (#4685)\n* chore(deps): bump the actions group across 1 directory with 8 updates (#4689)\n* Deprecate rekor-entry-type flag (#4691)\n* Deprecate cosign triangulate (#4676)\n* Deprecate cosign copy (#4681)\n* Enforce TSA requirement for Rekor v2, Fuclio signing (#4683)\n* chore(deps): bump github.com/theupdateframework/go-tuf/v2 (#4668)\n* chore(deps): bump golang from 1.25.5 to 1.25.6 in the all group (#4673)\n* Automatically require signed timestamp with Rekor v2 entries (#4666)\n* Fix syntax issue in conformance test, update nightly (#4664)\n* Add mTLS support for TSA client connections when signing with a signing config (#4620)\n* fix: avoid panic on malformed tlog entry body (#4652)\n* Verify validity of chain rather than just certificate (#4663)\n* Allow --local-image with --new-bundle-format for v2 and v3 signatures (#4626)\n* chore(deps): bump the gomod group across 1 directory with 3 updates (#4662)\n* Bump sigstore/sigstore to resolve GHSA (#4660)\n* Gracefully fail if bundle payload body is not a string (#4648)\n* fix: avoid panic on malformed replace payload (#4653)\n* chore(deps): bump github.com/sigstore/rekor from 1.4.3 to 1.5.0 (#4659)\n* fix: avoid panic on malformed attestation payload (#4651)\n* fix: avoid panic on malformed tlog entries (#4649)\n* Update conformance to latest\n* docs(cosign): clarify RFC3161 revocation semantics (#4642)\n* Add empty predicate to cosign sign when payload type is application/vnd.in-toto+json (#4635)\n* chore(deps): bump github.com/sigstore/fulcio from 1.8.4 to 1.8.5 (#4637)\n* Add origin key for ctfe trusted root\n* Add changelog updates for v3.0.4 and v2.6.2 (#4625)\n \n- Update to version 3.0.4:\n \n* Fix bundle verify path for old bundle/trusted root (#4623)\n* chore(deps): bump gitlab.com/gitlab-org/api/client-go (#4616)\n* chore(deps): bump cuelang.org/go in the gomod group (#4615)\n* Optimize cosign tree performance by caching digest resolution (#4612)\n* Don\u0027t require a trusted root to verify offline with a key (#4613)\n* Support default services for trusted-root and signing-config creation (#4592)\n* chore(deps): bump gitlab.com/gitlab-org/api/client-go (#4602)\n* chore(deps): bump github.com/sigstore/sigstore-go (#4578)\n* chore(deps): bump github.com/buildkite/agent/v3 from 3.114.1 to 3.115.2 (#4601)\n* chore(deps): bump google.golang.org/api from 0.257.0 to 0.258.0 (#4611)\n* chore(deps): bump k8s.io/client-go from 0.34.3 to 0.35.0 (#4604)\n* chore(deps): bump actions/upload-artifact from 5.0.0 to 6.0.0 (#4588)\n* chore(deps): bump golang.org/x/oauth2 from 0.33.0 to 0.34.0 (#4586)\n* chore(deps): bump the gomod group with 5 updates (#4599)\n* chore(deps): bump github.com/open-policy-agent/opa from 1.10.1 to 1.12.1 (#4600)\n* chore(deps): bump golang.org/x/term from 0.37.0 to 0.38.0 (#4584)\n* chore(deps): bump the actions group with 3 updates (#4587)\n* chore(deps): bump actions/cache from 4.3.0 to 5.0.1 (#4589)\n* chore(deps): bump the gomod group with 9 updates (#4577)\n \n- Update to version 3.0.3:\n \n* 4554: Closes 4554 - Add warning when --output* is used (#4556)\n* chore(deps): bump golangci/golangci-lint-action from 8.0.0 to 9.1.0 (#4545)\n* chore(deps): bump github.com/buildkite/agent/v3 from 3.111.0 to 3.113.0 (#4542)\n* chore(deps): bump github.com/awslabs/amazon-ecr-credential-helper/ecr-login (#4543)\n* chore(deps): bump actions/checkout from 5.0.0 to 6.0.0 (#4546)\n* chore(deps): bump the actions group with 4 updates (#4544)\n* chore(deps): bump the gomod group across 1 directory with 5 updates (#4567)\n* chore(deps): bump golang from 1.25.4 to 1.25.5 in the all group (#4568)\n* update builder to use go1.25.5 (#4566)\n* Protobuf bundle support for subcommand `clean` (#4539)\n* Add staging flag to initialize with staging TUF metadata\n* update slack invite link (#4560)\n* Updating sign-blob to also support signing with a certificate (#4547)\n* Bump sigstore library dependencies (#4532)\n* Protobuf bundle support for subcommands `save` and `load` (#4538)\n* Fix cert attachment for new bundle with signing config\n* Fix OCI verification with local cert - old bundle\n* chore(deps): bump github.com/sigstore/fulcio from 1.7.1 to 1.8.1 (#4519)\n* chore(deps): bump golang.org/x/crypto in /test/fakeoidc (#4535)\n* chore(deps): bump golang.org/x/crypto from 0.43.0 to 0.45.0 (#4536)\n* update go builder and cosign (#4529)\n* chore(deps): bump the gomod group across 1 directory with 7 updates (#4528)\n* chore(deps): bump sigstore/cosign-installer from 3.10.0 to 4.0.0 (#4478)\n* chore(deps): bump gitlab.com/gitlab-org/api/client-go (#4520)\n* chore(deps): bump golang from 1.25.3 to 1.25.4 in the all group (#4515)\n* chore(deps): bump golang.org/x/oauth2 from 0.32.0 to 0.33.0 (#4518)\n* chore(deps): bump cuelang.org/go from 0.14.2 to 0.15.0 (#4524)\n* chore(deps): bump github.com/open-policy-agent/opa from 1.9.0 to 1.10.1 (#4521)\n* chore(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 (#4502)\n* chore(deps): bump the actions group across 1 directory with 2 updates (#4516)\n* chore(deps): bump github.com/buildkite/agent/v3 from 3.110.0 to 3.111.0 (#4523)\n* chore(deps): bump github.com/theupdateframework/go-tuf/v2 (#4522)\n* Deprecate tlog-upload flag (#4458)\n* fix: Use signal context for `sign` cli package.\n* update offline verification directions (#4526)\n* Fix signing/verifying annotations for new bundle\n* Add support to download and attach for protobuf bundles (#4477)\n* Add --signing-algorithm flag (#3497)\n* Refactor signcommon bundle helpers\n* Add --bundle and fix --upload for new bundle\n* Pass insecure registry flags through to referrers\n* chore(deps): bump github.com/buildkite/agent/v3 from 3.108.0 to 3.109.1 (#4483)\n* Add protobuf bundle support for tree subcommand (#4491)\n* Remove stale embed import (#4492)\n* Support multiple container identities\n* chore(deps): bump gitlab.com/gitlab-org/api/client-go (#4484)\n* chore(deps): bump chainguard-dev/actions in the actions group (#4480)\n* chore(deps): bump github.com/sigstore/rekor-tiles/v2 (#4485)\n* chore(deps): bump golang.org/x/crypto from 0.42.0 to 0.43.0 (#4486)\n* chore(deps): bump cuelang.org/go in the gomod group (#4479)\n* upgrade OSS-Fuzz build tooling (#4487)\n* Fix segfault when no attestations are found (#4472)\n* Use overridden repository for new bundle format (#4473)\n* update go to 1.25.3 (#4471)\n* Remove --out flag from `cosign initialize` (#4462)\n* chore(deps): bump the actions group with 2 updates (#4460)\n* Deprecate offline flag (#4457)\n* Deduplicate code in sign/attest* and verify* commands (#4449)\n* Cache signing config when calling initialize (#4456)\n* Update changelog for v3.0.2 (#4455)\n* chore(deps): bump google.golang.org/api from 0.250.0 to 0.251.0\n* chore(deps): bump gitlab.com/gitlab-org/api/client-go\n* chore(deps): bump the actions group with 3 updates\n* chore(deps): bump github.com/buildkite/agent/v3 from 3.107.2 to 3.108.0\n* choose different signature filename for KMS-signed release signatures (#4448)\n* chore(deps): bump github.com/go-jose/go-jose/v4 (#4451)\n* Update rekor-tiles version path\n* update CL for v3.0.1 release (#4447)\n* update goreleaser config for v3.0.0 release (#4446)\n* Create changelog for v3.0.0 (#4440)\n* Fetch service URLs from the TUF PGI signing config by default (#4428)\n* Create changelog for v2.6.1 (#4439)\n* chore(deps): bump google.golang.org/api from 0.249.0 to 0.250.0 (#4432)\n* chore(deps): bump the gomod group with 2 updates (#4429)\n* chore(deps): bump github.com/open-policy-agent/opa from 1.8.0 to 1.9.0 (#4433)\n* chore(deps): bump the actions group with 3 updates (#4434)\n* chore(deps): bump github.com/go-openapi/swag from 0.24.1 to 0.25.1 (#4435)\n* chore(deps): bump gitlab.com/gitlab-org/api/client-go (#4436)\n* chore(deps): bump github.com/go-openapi/runtime from 0.28.0 to 0.29.0 (#4437)\n* Bump module version to v3 for Cosign v3.0 (#4427)\n* Move sigstore-conformance back to tagged release (#4425)\n* Bump sigstore-go to v1.1.3 (#4423)\n* Partially populate the output of cosign verify when working with new bundles (#4416)\n* chore(deps): bump gitlab.com/gitlab-org/api/client-go (#4419)\n* chore(deps): bump github.com/theupdateframework/go-tuf/v2 (#4418)\n* chore(deps): bump github.com/buildkite/agent/v3 from 3.105.0 to 3.107.0 (#4420)\n* chore(deps): bump chainguard-dev/actions in the actions group (#4421)\n* bump go builder to use 1.25.1 and cosign (#4417)\n* Bump sigstore-go for more precise user agents (#4413)\n* chore(deps): bump github.com/spf13/viper from 1.20.1 to 1.21.0 (#4408)\n* chore(deps): bump the actions group with 2 updates (#4407)\n* chore(deps): bump gitlab.com/gitlab-org/api/client-go (#4410)\n* chore(deps): bump github.com/buildkite/agent/v3 from 3.104.0 to 3.105.0 (#4411)\n* Default to using the new protobuf format (#4318)\n \n- Update to version 2.6.0:\n \n* Require exclusively a SigningConfig or service URLs when signing (#4403)\n* Add a terminal spinner while signing with sigstore-go (#4402)\n* Bump sigstore-go, support alternative hash algorithms with keys (#4386)\n* Add support for SigningConfig in sign/attest (#4371)\n* Support self-managed keys when signing with sigstore-go (#4368)\n* Remove SHA256 assumption in sign-blob/verify-blob (#4050)\n* introduce dockerfile to pin the go version to decouple go version from go.mod (#4369)\n* refactor: extract function to write referrer attestations (#4357)\n* Break import cycle with e2e build tag (#4370)\n* Update conformance test binary for signing config (#4367)\n* update builder image to use go1.25 (#4366)\n* Don\u0027t load content from TUF if trusted root path is specified (#4347)\n* Don\u0027t require timestamps when verifying with a key (#4337)\n* Fixes to cosign sign / verify for the new bundle format (#4346)\n* update builder to use go1.24.6 (#4334)\n* bump golangci-lint to v2.3.x (#4333)\n* Have cosign sign support bundle format (#4316)\n* Add support for SigningConfig for sign-blob/attest-blob, support Rekor v2 (#4319)\n* Verify subject with bundle only when checking claims (#4320)\n* Add to `attest-blob` the ability to supply a complete in-toto statement, and add to `verify-blob-attestation` the\n ability to verify with just a digest (#4306)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-777,SUSE-SLE-Module-Basesystem-15-SP7-2026-777,openSUSE-SLE-15.6-2026-777",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_0777-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:0777-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20260777-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:0777-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024541.html"
},
{
"category": "self",
"summary": "SUSE Bug 1250620",
"url": "https://bugzilla.suse.com/1250620"
},
{
"category": "self",
"summary": "SUSE Bug 1253913",
"url": "https://bugzilla.suse.com/1253913"
},
{
"category": "self",
"summary": "SUSE Bug 1256496",
"url": "https://bugzilla.suse.com/1256496"
},
{
"category": "self",
"summary": "SUSE Bug 1256562",
"url": "https://bugzilla.suse.com/1256562"
},
{
"category": "self",
"summary": "SUSE Bug 1257080",
"url": "https://bugzilla.suse.com/1257080"
},
{
"category": "self",
"summary": "SUSE Bug 1257085",
"url": "https://bugzilla.suse.com/1257085"
},
{
"category": "self",
"summary": "SUSE Bug 1257139",
"url": "https://bugzilla.suse.com/1257139"
},
{
"category": "self",
"summary": "SUSE Bug 1258542",
"url": "https://bugzilla.suse.com/1258542"
},
{
"category": "self",
"summary": "SUSE Bug 1258612",
"url": "https://bugzilla.suse.com/1258612"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-11065 page",
"url": "https://www.suse.com/security/cve/CVE-2025-11065/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-58181 page",
"url": "https://www.suse.com/security/cve/CVE-2025-58181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22703 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22703/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22772 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22772/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23991 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23992 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23992/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-24122 page",
"url": "https://www.suse.com/security/cve/CVE-2026-24122/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-24137 page",
"url": "https://www.suse.com/security/cve/CVE-2026-24137/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26958 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26958/"
}
],
"title": "Security update for cosign",
"tracking": {
"current_release_date": "2026-03-03T13:22:27Z",
"generator": {
"date": "2026-03-03T13:22:27Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:0777-1",
"initial_release_date": "2026-03-03T13:22:27Z",
"revision_history": [
{
"date": "2026-03-03T13:22:27Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cosign-3.0.5-150400.3.35.1.aarch64",
"product": {
"name": "cosign-3.0.5-150400.3.35.1.aarch64",
"product_id": "cosign-3.0.5-150400.3.35.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "cosign-3.0.5-150400.3.35.1.i586",
"product": {
"name": "cosign-3.0.5-150400.3.35.1.i586",
"product_id": "cosign-3.0.5-150400.3.35.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"product": {
"name": "cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"product_id": "cosign-bash-completion-3.0.5-150400.3.35.1.noarch"
}
},
{
"category": "product_version",
"name": "cosign-fish-completion-3.0.5-150400.3.35.1.noarch",
"product": {
"name": "cosign-fish-completion-3.0.5-150400.3.35.1.noarch",
"product_id": "cosign-fish-completion-3.0.5-150400.3.35.1.noarch"
}
},
{
"category": "product_version",
"name": "cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"product": {
"name": "cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"product_id": "cosign-zsh-completion-3.0.5-150400.3.35.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cosign-3.0.5-150400.3.35.1.ppc64le",
"product": {
"name": "cosign-3.0.5-150400.3.35.1.ppc64le",
"product_id": "cosign-3.0.5-150400.3.35.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cosign-3.0.5-150400.3.35.1.s390x",
"product": {
"name": "cosign-3.0.5-150400.3.35.1.s390x",
"product_id": "cosign-3.0.5-150400.3.35.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cosign-3.0.5-150400.3.35.1.x86_64",
"product": {
"name": "cosign-3.0.5-150400.3.35.1.x86_64",
"product_id": "cosign-3.0.5-150400.3.35.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp7"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.6",
"product": {
"name": "openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-3.0.5-150400.3.35.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64"
},
"product_reference": "cosign-3.0.5-150400.3.35.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-3.0.5-150400.3.35.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le"
},
"product_reference": "cosign-3.0.5-150400.3.35.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-3.0.5-150400.3.35.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x"
},
"product_reference": "cosign-3.0.5-150400.3.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-3.0.5-150400.3.35.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64"
},
"product_reference": "cosign-3.0.5-150400.3.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-bash-completion-3.0.5-150400.3.35.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch"
},
"product_reference": "cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-zsh-completion-3.0.5-150400.3.35.1.noarch as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch"
},
"product_reference": "cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-3.0.5-150400.3.35.1.aarch64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64"
},
"product_reference": "cosign-3.0.5-150400.3.35.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-3.0.5-150400.3.35.1.ppc64le as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le"
},
"product_reference": "cosign-3.0.5-150400.3.35.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-3.0.5-150400.3.35.1.s390x as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x"
},
"product_reference": "cosign-3.0.5-150400.3.35.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-3.0.5-150400.3.35.1.x86_64 as component of openSUSE Leap 15.6",
"product_id": "openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
},
"product_reference": "cosign-3.0.5-150400.3.35.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-11065",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-11065"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in github.com/go-viper/mapstructure/v2, in the field processing component using mapstructure.WeakDecode. This vulnerability allows information disclosure through detailed error messages that may leak sensitive input values via malformed user-supplied data processed in security-critical contexts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-11065",
"url": "https://www.suse.com/security/cve/CVE-2025-11065"
},
{
"category": "external",
"summary": "SUSE Bug 1250608 for CVE-2025-11065",
"url": "https://bugzilla.suse.com/1250608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T13:22:27Z",
"details": "moderate"
}
],
"title": "CVE-2025-11065"
},
{
"cve": "CVE-2025-58181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-58181"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-58181",
"url": "https://www.suse.com/security/cve/CVE-2025-58181"
},
{
"category": "external",
"summary": "SUSE Bug 1253784 for CVE-2025-58181",
"url": "https://bugzilla.suse.com/1253784"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T13:22:27Z",
"details": "moderate"
}
],
"title": "CVE-2025-58181"
},
{
"cve": "CVE-2026-22703",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22703"
}
],
"notes": [
{
"category": "general",
"text": "Cosign provides code signing and transparency for containers and binaries. Prior to versions 2.6.2 and 3.0.4, Cosign bundle can be crafted to successfully verify an artifact even if the embedded Rekor entry does not reference the artifact\u0027s digest, signature or public key. When verifying a Rekor entry, Cosign verifies the Rekor entry signature, and also compares the artifact\u0027s digest, the user\u0027s public key from either a Fulcio certificate or provided by the user, and the artifact signature to the Rekor entry contents. Without these comparisons, Cosign would accept any response from Rekor as valid. A malicious actor that has compromised a user\u0027s identity or signing key could construct a valid Cosign bundle by including any arbitrary Rekor entry, thus preventing the user from being able to audit the signing event. This issue has been patched in versions 2.6.2 and 3.0.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22703",
"url": "https://www.suse.com/security/cve/CVE-2026-22703"
},
{
"category": "external",
"summary": "SUSE Bug 1256496 for CVE-2026-22703",
"url": "https://bugzilla.suse.com/1256496"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T13:22:27Z",
"details": "moderate"
}
],
"title": "CVE-2026-22703"
},
{
"cve": "CVE-2026-22772",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22772"
}
],
"notes": [
{
"category": "general",
"text": "Fulcio is a certificate authority for issuing code signing certificates for an OpenID Connect (OIDC) identity. Prior to 1.8.5, Fulcio\u0027s metaRegex() function uses unanchored regex, allowing attackers to bypass MetaIssuer URL validation and trigger SSRF to arbitrary internal services. Since the SSRF only can trigger GET requests, the request cannot mutate state. The response from the GET request is not returned to the caller so data exfiltration is not possible. A malicious actor could attempt to probe an internal network through Blind SSRF. This vulnerability is fixed in 1.8.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22772",
"url": "https://www.suse.com/security/cve/CVE-2026-22772"
},
{
"category": "external",
"summary": "SUSE Bug 1256532 for CVE-2026-22772",
"url": "https://bugzilla.suse.com/1256532"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T13:22:27Z",
"details": "moderate"
}
],
"title": "CVE-2026-22772"
},
{
"cve": "CVE-2026-23991",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23991"
}
],
"notes": [
{
"category": "general",
"text": "go-tuf is a Go implementation of The Update Framework (TUF). Starting in version 2.0.0 and prior to version 2.3.1, if the TUF repository (or any of its mirrors) returns invalid TUF metadata JSON (valid JSON but not well formed TUF metadata), the client will panic during parsing, causing a denial of service. The panic happens before any signature is validated. This means that a compromised repository/mirror/cache can DoS clients without having access to any signing key. Version 2.3.1 fixes the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23991",
"url": "https://www.suse.com/security/cve/CVE-2026-23991"
},
{
"category": "external",
"summary": "SUSE Bug 1257079 for CVE-2026-23991",
"url": "https://bugzilla.suse.com/1257079"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T13:22:27Z",
"details": "moderate"
}
],
"title": "CVE-2026-23991"
},
{
"cve": "CVE-2026-23992",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23992"
}
],
"notes": [
{
"category": "general",
"text": "go-tuf is a Go implementation of The Update Framework (TUF). Starting in version 2.0.0 and prior to version 2.3.1, a compromised or misconfigured TUF repository can have the configured value of signature thresholds set to 0, which effectively disables signature verification. This can lead to unauthorized modification to TUF metadata files is possible at rest, or during transit as no integrity checks are made. Version 2.3.1 fixes the issue. As a workaround, always make sure that the TUF metadata roles are configured with a threshold of at least 1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23992",
"url": "https://www.suse.com/security/cve/CVE-2026-23992"
},
{
"category": "external",
"summary": "SUSE Bug 1257084 for CVE-2026-23992",
"url": "https://bugzilla.suse.com/1257084"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T13:22:27Z",
"details": "moderate"
}
],
"title": "CVE-2026-23992"
},
{
"cve": "CVE-2026-24122",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-24122"
}
],
"notes": [
{
"category": "general",
"text": "Cosign provides code signing and transparency for containers and binaries. In versions 3.0.4 and below, an issuing certificate with a validity that expires before the leaf certificate will be considered valid during verification even if the provided timestamp would mean the issuing certificate should be considered expired. When verifying artifact signatures using a certificate, Cosign first verifies the certificate chain using the leaf certificate\u0027s \"not before\" timestamp and later checks expiry of the leaf certificate using either a signed timestamp provided by the Rekor transparency log or from a timestamp authority, or using the current time. The root and all issuing certificates are assumed to be valid during the leaf certificate\u0027s validity. There is no impact to users of the public Sigstore infrastructure. This may affect private deployments with customized PKIs. This issue has been fixed in version 3.0.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-24122",
"url": "https://www.suse.com/security/cve/CVE-2026-24122"
},
{
"category": "external",
"summary": "SUSE Bug 1258540 for CVE-2026-24122",
"url": "https://bugzilla.suse.com/1258540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T13:22:27Z",
"details": "moderate"
}
],
"title": "CVE-2026-24122"
},
{
"cve": "CVE-2026-24137",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-24137"
}
],
"notes": [
{
"category": "general",
"text": "sigstore framework is a common go library shared across sigstore services and clients. In versions 1.10.3 and below, the legacy TUF client (pkg/tuf/client.go) supports caching target files to disk. It constructs a filesystem path by joining a cache base directory with a target name sourced from signed target metadata; however, it does not validate that the resulting path stays within the cache base directory. A malicious TUF repository can trigger arbitrary file overwriting, limited to the permissions that the calling process has. Note that this should only affect clients that are directly using the TUF client in sigstore/sigstore or are using an older version of Cosign. Public Sigstore deployment users are unaffected, as TUF metadata is validated by a quorum of trusted collaborators. This issue has been fixed in version 1.10.4. As a workaround, users can disable disk caching for the legacy client by setting SIGSTORE_NO_CACHE=true in the environment, migrate to https://github.com/sigstore/sigstore-go/tree/main/pkg/tuf, or upgrade to the latest sigstore/sigstore release.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-24137",
"url": "https://www.suse.com/security/cve/CVE-2026-24137"
},
{
"category": "external",
"summary": "SUSE Bug 1257137 for CVE-2026-24137",
"url": "https://bugzilla.suse.com/1257137"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T13:22:27Z",
"details": "moderate"
}
],
"title": "CVE-2026-24137"
},
{
"cve": "CVE-2026-26958",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26958"
}
],
"notes": [
{
"category": "general",
"text": "filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and earlier, MultiScalarMult produces invalid results or undefined behavior if the receiver is not the identity point. If (*Point).MultiScalarMult is called on an initialized point that is not the identity point, it returns an incorrect result. If the method is called on an uninitialized point, the behavior is undefined. In particular, if the receiver is the zero value, MultiScalarMult returns an invalid point that compares Equal to every other point. Note that MultiScalarMult is a rarely used, advanced API. For example, users who depend on filippo.io/edwards25519 only through github.com/go-sql-driver/mysql are not affected. This issue has been fixed in version 1.1.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26958",
"url": "https://www.suse.com/security/cve/CVE-2026-26958"
},
{
"category": "external",
"summary": "SUSE Bug 1258570 for CVE-2026-26958",
"url": "https://bugzilla.suse.com/1258570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-3.0.5-150400.3.35.1.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-bash-completion-3.0.5-150400.3.35.1.noarch",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:cosign-zsh-completion-3.0.5-150400.3.35.1.noarch",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.aarch64",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.ppc64le",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.s390x",
"openSUSE Leap 15.6:cosign-3.0.5-150400.3.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-03T13:22:27Z",
"details": "moderate"
}
],
"title": "CVE-2026-26958"
}
]
}
SUSE-SU-2026:1524-1
Vulnerability from csaf_suse - Published: 2026-04-21 09:26 - Updated: 2026-04-21 09:26Summary
Security update 5.1.3 for Multi-Linux Manager Client Tools
Severity
Critical
Notes
Title of the patch: Security update 5.1.3 for Multi-Linux Manager Client Tools
Description of the patch: This update fixes the following issues:
golang-github-lusitaniae-apache_exporter:
- Internal changes to fix build issues with no impact for customers
golang-github-prometheus-prometheus:
- Security issues fixed:
* CVE-2026-27606: Fixed arbitrary file write via path traversal in rollup (bsc#1258893)
+ Bumped rollup to version 4.59.0
* CVE-2026-25547: Fixed unbounded brace range expansion leading to excessive CPU and memory consumption (bsc#1257841)
+ Bumped brace-expansion to version 5.0.2
* CVE-2026-1615, CVE-2025-61140 The old web UI is no longer built due to security issues (bsc#1257897, bsc#1257442)
* CVE-2025-13465: Bumped lodash package to version 4.17.23 to fix prototype pollution vulnerability (bsc#1257329)
* CVE-2026-33186: Fixed authorization bypass due to improper validation of the HTTP/2 :path pseudo-header (bsc#1260267)
+ Bumped google.golang.org/grpc to version 1.79.3
grafana:
- Security issues fixed:
* CVE-2026-21722: Public dashboards annotations: use dashboard timerange if time selection disabled (bsc#1258136)
* CVE-2026-21721: Fixed access control by the dashboard permissions API (bsc#1257337)
* CVE-2026-21720: Fixed unauthenticated DoS (bsc#1257349)
* CVE-2025-3415: Fixed exposure of DingDing alerting integration URL to Viewer level users (bsc#1245302)
* CVE-2026-26958: Bumped filippo.io/edwards25519 to version 1.1.1 (bsc#1258595)
* CVE-2026-21725: Fixed missing UID when deleting datasource by name (bsc#1258873)
* CVE-2026-21725: Fixed missing UID when deleting datasource by name (bsc#1258873)
* CVE-2026-27876: Fixed remote arbitrary code execution via chained SQL Expressions (bsc#1261025)
* CVE-2026-27877: Fixed information disclosure of data-source passwords via public dashboards (bsc#1261026)
* CVE-2026-28375: Fixed denial of service via testdata data-source (bsc#1261029)
* CVE-2026-27879: Fixed denial of service via resample query (bsc#1261027)
* CVE-2026-33186: Fixed authorization bypass due to improper validation of the HTTP/2 :path pseudo-header (bsc#1260263)
* CVE-2026-21724: Fixed authorization bypass allows modification of protected webhook URLs (bsc#1260878)
- Version update from 11.5.10 to 11.6.14+security01 with the following highlighted changes and fixes:
* Public Dashboards: Wired the public dashboard service to the HTTP server to ensure proper connectivity and availability
* Authentication: Refined the redirect logic to ensure consistent behavior during login and logout sequences
* Dashboard Reliability: Resolved a bug preventing single panels from rendering correctly when dashboard variables are referenced
* Performance Boost: Introduced WebGL-powered geomaps for smoother map visualizations and
removed blurred backgrounds from UI overlays to speed up the interface
* One-Click Actions: Visualizations now support faster navigation via one-click links and actions
* Alerting History: Added version history for alert rules, allowing you to track changes over time
* Service Accounts: Automated the migration of old API keys to more secure Service Accounts upon startup
* Cron Support: Annotations now support Cron syntax for more flexible scheduling
* Identity and Auth: Hardened the Avatar feature (now requires sign-in) and fixed several login redirection issues
when Grafana is hosted on a subpath
* Data Source Support: Added support for Cloud Partner Prometheus data sources and improved Azure legend formatting
* Alerting Limits: Added size limits for expanded notification templates to prevent system strain
* RBAC: Integrated Role-Based Access Control (RBAC) into the Alertmanager via the reqAction field
* Data Consistency: Fixed several issues with Graphite and InfluxDB regarding how variables are handled in repeated
rows or nested queries
* Dashboard Reliability:
+ Fixed bugs involving row repeats and 'self-referencing' data links
+ Fixed a bug preventing single panels from rendering correctly when dashboard variables are referenced
* Alerting Fixes: Patched a critical 'panic' (crash) caused by a race condition in alert rules and fixed issues where
contact points weren't working correctly
* URL Handling: Fixed a bug where 'true' values in URL parameters weren't being read correctly
prometheus-blackbox_exporter:
- Internal changes to fix build issues with no impact for customers
spacecmd:
- Version 5.1.13-0
* Update translation strings
uyuni-tools:
- Version 5.1.26-0
* Fixed applying PTF with images from RPMs (bsc#1252548)
* Ssl Key file can miss if CA password is blank (bsc#1254154)
* mgrpxy ssh tuning should happens before crypto policies (bsc#1254619)
* Fixed default value for helm registry (bsc#1258927).
* Remove hub register command
* Optimize postgres migration disk space usage (bsc#1257447)
* Added continuous database backup support (bsc#1250367)
* Explicitly start proxy pods after operations
(bsc#1258015)
* Use static supportconfig name to avoid dynamic search
(bsc#1257941)
* Do not nest multiple tarball files and instead collect
all files into one tarball (bsc#1252964)
* Show where final tarball was generated (bsc#1259208)
* Set proxy config file permissions (bsc#1257660)
- Version 5.1.25-0
* If PTF image doesn't exists, use the current service image (bsc#1258418)
Patchnames: SUSE-2026-1524,SUSE-MultiLinuxManagerTools-SLE-15-2026-1524,SUSE-MultiLinuxManagerTools-SLE-Micro-5-2026-1524
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.2 (High)
Affected products
Recommended
39 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
4.3 (Medium)
Affected products
Recommended
39 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
39 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
9.8 (Critical)
Affected products
Recommended
39 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
7.5 (High)
Affected products
Recommended
39 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
39 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
39 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.4 (Medium)
Affected products
Recommended
39 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
39 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
7.5 (High)
Affected products
Recommended
39 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
39 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
39 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
9.1 (Critical)
Affected products
Recommended
39 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
7.5 (High)
Affected products
Recommended
39 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
39 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
39 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
39 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
85 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update 5.1.3 for Multi-Linux Manager Client Tools",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update fixes the following issues:\n\ngolang-github-lusitaniae-apache_exporter:\n\n- Internal changes to fix build issues with no impact for customers\n \ngolang-github-prometheus-prometheus:\n\n- Security issues fixed:\n\n * CVE-2026-27606: Fixed arbitrary file write via path traversal in rollup (bsc#1258893)\n + Bumped rollup to version 4.59.0\n * CVE-2026-25547: Fixed unbounded brace range expansion leading to excessive CPU and memory consumption (bsc#1257841)\n + Bumped brace-expansion to version 5.0.2\n * CVE-2026-1615, CVE-2025-61140 The old web UI is no longer built due to security issues (bsc#1257897, bsc#1257442)\n * CVE-2025-13465: Bumped lodash package to version 4.17.23 to fix prototype pollution vulnerability (bsc#1257329)\n * CVE-2026-33186: Fixed authorization bypass due to improper validation of the HTTP/2 :path pseudo-header (bsc#1260267)\n + Bumped google.golang.org/grpc to version 1.79.3\n \n \ngrafana:\n\n- Security issues fixed:\n\n * CVE-2026-21722: Public dashboards annotations: use dashboard timerange if time selection disabled (bsc#1258136)\n * CVE-2026-21721: Fixed access control by the dashboard permissions API (bsc#1257337)\n * CVE-2026-21720: Fixed unauthenticated DoS (bsc#1257349)\n * CVE-2025-3415: Fixed exposure of DingDing alerting integration URL to Viewer level users (bsc#1245302)\n * CVE-2026-26958: Bumped filippo.io/edwards25519 to version 1.1.1 (bsc#1258595)\n * CVE-2026-21725: Fixed missing UID when deleting datasource by name (bsc#1258873)\n * CVE-2026-21725: Fixed missing UID when deleting datasource by name (bsc#1258873)\n * CVE-2026-27876: Fixed remote arbitrary code execution via chained SQL Expressions (bsc#1261025)\n * CVE-2026-27877: Fixed information disclosure of data-source passwords via public dashboards (bsc#1261026)\n * CVE-2026-28375: Fixed denial of service via testdata data-source (bsc#1261029)\n * CVE-2026-27879: Fixed denial of service via resample query (bsc#1261027)\n * CVE-2026-33186: Fixed authorization bypass due to improper validation of the HTTP/2 :path pseudo-header (bsc#1260263)\n * CVE-2026-21724: Fixed authorization bypass allows modification of protected webhook URLs (bsc#1260878)\n\n- Version update from 11.5.10 to 11.6.14+security01 with the following highlighted changes and fixes:\n \n * Public Dashboards: Wired the public dashboard service to the HTTP server to ensure proper connectivity and availability\n * Authentication: Refined the redirect logic to ensure consistent behavior during login and logout sequences\n * Dashboard Reliability: Resolved a bug preventing single panels from rendering correctly when dashboard variables are referenced\n * Performance Boost: Introduced WebGL-powered geomaps for smoother map visualizations and\n removed blurred backgrounds from UI overlays to speed up the interface\n * One-Click Actions: Visualizations now support faster navigation via one-click links and actions\n * Alerting History: Added version history for alert rules, allowing you to track changes over time\n * Service Accounts: Automated the migration of old API keys to more secure Service Accounts upon startup\n * Cron Support: Annotations now support Cron syntax for more flexible scheduling\n * Identity and Auth: Hardened the Avatar feature (now requires sign-in) and fixed several login redirection issues\n when Grafana is hosted on a subpath\n * Data Source Support: Added support for Cloud Partner Prometheus data sources and improved Azure legend formatting\n * Alerting Limits: Added size limits for expanded notification templates to prevent system strain\n * RBAC: Integrated Role-Based Access Control (RBAC) into the Alertmanager via the reqAction field\n * Data Consistency: Fixed several issues with Graphite and InfluxDB regarding how variables are handled in repeated\n rows or nested queries\n * Dashboard Reliability: \n + Fixed bugs involving row repeats and \u0027self-referencing\u0027 data links\n + Fixed a bug preventing single panels from rendering correctly when dashboard variables are referenced\n * Alerting Fixes: Patched a critical \u0027panic\u0027 (crash) caused by a race condition in alert rules and fixed issues where\n contact points weren\u0027t working correctly\n * URL Handling: Fixed a bug where \u0027true\u0027 values in URL parameters weren\u0027t being read correctly\n\nprometheus-blackbox_exporter:\n\n- Internal changes to fix build issues with no impact for customers\n\nspacecmd:\n\n- Version 5.1.13-0\n * Update translation strings\n\nuyuni-tools:\n\n- Version 5.1.26-0\n * Fixed applying PTF with images from RPMs (bsc#1252548)\n * Ssl Key file can miss if CA password is blank (bsc#1254154)\n * mgrpxy ssh tuning should happens before crypto policies (bsc#1254619)\n * Fixed default value for helm registry (bsc#1258927).\n * Remove hub register command\n * Optimize postgres migration disk space usage (bsc#1257447)\n * Added continuous database backup support (bsc#1250367)\n * Explicitly start proxy pods after operations\n (bsc#1258015)\n * Use static supportconfig name to avoid dynamic search\n (bsc#1257941)\n * Do not nest multiple tarball files and instead collect\n all files into one tarball (bsc#1252964)\n * Show where final tarball was generated (bsc#1259208)\n * Set proxy config file permissions (bsc#1257660)\n- Version 5.1.25-0\n * If PTF image doesn\u0027t exists, use the current service image (bsc#1258418)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-1524,SUSE-MultiLinuxManagerTools-SLE-15-2026-1524,SUSE-MultiLinuxManagerTools-SLE-Micro-5-2026-1524",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_1524-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:1524-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261524-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:1524-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-April/045834.html"
},
{
"category": "self",
"summary": "SUSE Bug 1245302",
"url": "https://bugzilla.suse.com/1245302"
},
{
"category": "self",
"summary": "SUSE Bug 1250367",
"url": "https://bugzilla.suse.com/1250367"
},
{
"category": "self",
"summary": "SUSE Bug 1252548",
"url": "https://bugzilla.suse.com/1252548"
},
{
"category": "self",
"summary": "SUSE Bug 1252964",
"url": "https://bugzilla.suse.com/1252964"
},
{
"category": "self",
"summary": "SUSE Bug 1254154",
"url": "https://bugzilla.suse.com/1254154"
},
{
"category": "self",
"summary": "SUSE Bug 1254619",
"url": "https://bugzilla.suse.com/1254619"
},
{
"category": "self",
"summary": "SUSE Bug 1257329",
"url": "https://bugzilla.suse.com/1257329"
},
{
"category": "self",
"summary": "SUSE Bug 1257337",
"url": "https://bugzilla.suse.com/1257337"
},
{
"category": "self",
"summary": "SUSE Bug 1257349",
"url": "https://bugzilla.suse.com/1257349"
},
{
"category": "self",
"summary": "SUSE Bug 1257442",
"url": "https://bugzilla.suse.com/1257442"
},
{
"category": "self",
"summary": "SUSE Bug 1257447",
"url": "https://bugzilla.suse.com/1257447"
},
{
"category": "self",
"summary": "SUSE Bug 1257660",
"url": "https://bugzilla.suse.com/1257660"
},
{
"category": "self",
"summary": "SUSE Bug 1257841",
"url": "https://bugzilla.suse.com/1257841"
},
{
"category": "self",
"summary": "SUSE Bug 1257897",
"url": "https://bugzilla.suse.com/1257897"
},
{
"category": "self",
"summary": "SUSE Bug 1257941",
"url": "https://bugzilla.suse.com/1257941"
},
{
"category": "self",
"summary": "SUSE Bug 1258015",
"url": "https://bugzilla.suse.com/1258015"
},
{
"category": "self",
"summary": "SUSE Bug 1258136",
"url": "https://bugzilla.suse.com/1258136"
},
{
"category": "self",
"summary": "SUSE Bug 1258418",
"url": "https://bugzilla.suse.com/1258418"
},
{
"category": "self",
"summary": "SUSE Bug 1258595",
"url": "https://bugzilla.suse.com/1258595"
},
{
"category": "self",
"summary": "SUSE Bug 1258873",
"url": "https://bugzilla.suse.com/1258873"
},
{
"category": "self",
"summary": "SUSE Bug 1258893",
"url": "https://bugzilla.suse.com/1258893"
},
{
"category": "self",
"summary": "SUSE Bug 1258927",
"url": "https://bugzilla.suse.com/1258927"
},
{
"category": "self",
"summary": "SUSE Bug 1259208",
"url": "https://bugzilla.suse.com/1259208"
},
{
"category": "self",
"summary": "SUSE Bug 1260263",
"url": "https://bugzilla.suse.com/1260263"
},
{
"category": "self",
"summary": "SUSE Bug 1260267",
"url": "https://bugzilla.suse.com/1260267"
},
{
"category": "self",
"summary": "SUSE Bug 1260878",
"url": "https://bugzilla.suse.com/1260878"
},
{
"category": "self",
"summary": "SUSE Bug 1261025",
"url": "https://bugzilla.suse.com/1261025"
},
{
"category": "self",
"summary": "SUSE Bug 1261026",
"url": "https://bugzilla.suse.com/1261026"
},
{
"category": "self",
"summary": "SUSE Bug 1261027",
"url": "https://bugzilla.suse.com/1261027"
},
{
"category": "self",
"summary": "SUSE Bug 1261029",
"url": "https://bugzilla.suse.com/1261029"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-13465 page",
"url": "https://www.suse.com/security/cve/CVE-2025-13465/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-3415 page",
"url": "https://www.suse.com/security/cve/CVE-2025-3415/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-61140 page",
"url": "https://www.suse.com/security/cve/CVE-2025-61140/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-1615 page",
"url": "https://www.suse.com/security/cve/CVE-2026-1615/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-21720 page",
"url": "https://www.suse.com/security/cve/CVE-2026-21720/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-21721 page",
"url": "https://www.suse.com/security/cve/CVE-2026-21721/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-21722 page",
"url": "https://www.suse.com/security/cve/CVE-2026-21722/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-21724 page",
"url": "https://www.suse.com/security/cve/CVE-2026-21724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-21725 page",
"url": "https://www.suse.com/security/cve/CVE-2026-21725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25547 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25547/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26958 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26958/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27606 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27606/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27876 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27876/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27877 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27877/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27879 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27879/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-28375 page",
"url": "https://www.suse.com/security/cve/CVE-2026-28375/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
}
],
"title": "Security update 5.1.3 for Multi-Linux Manager Client Tools",
"tracking": {
"current_release_date": "2026-04-21T09:26:09Z",
"generator": {
"date": "2026-04-21T09:26:09Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:1524-1",
"initial_release_date": "2026-04-21T09:26:09Z",
"revision_history": [
{
"date": "2026-04-21T09:26:09Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"product": {
"name": "firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"product_id": "firewalld-prometheus-config-0.1-150002.3.8.1.aarch64"
}
},
{
"category": "product_version",
"name": "golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"product": {
"name": "golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"product_id": "golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"product": {
"name": "golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"product_id": "golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64"
}
},
{
"category": "product_version",
"name": "grafana-11.6.14+security01-150002.4.14.1.aarch64",
"product": {
"name": "grafana-11.6.14+security01-150002.4.14.1.aarch64",
"product_id": "grafana-11.6.14+security01-150002.4.14.1.aarch64"
}
},
{
"category": "product_version",
"name": "mgrctl-5.1.26-150002.3.12.1.aarch64",
"product": {
"name": "mgrctl-5.1.26-150002.3.12.1.aarch64",
"product_id": "mgrctl-5.1.26-150002.3.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"product": {
"name": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"product_id": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"product": {
"name": "mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"product_id": "mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch"
}
},
{
"category": "product_version",
"name": "mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"product": {
"name": "mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"product_id": "mgrctl-lang-5.1.26-150002.3.12.1.noarch"
}
},
{
"category": "product_version",
"name": "mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"product": {
"name": "mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"product_id": "mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch"
}
},
{
"category": "product_version",
"name": "spacecmd-5.1.13-150002.3.9.3.noarch",
"product": {
"name": "spacecmd-5.1.13-150002.3.9.3.noarch",
"product_id": "spacecmd-5.1.13-150002.3.9.3.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"product": {
"name": "firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"product_id": "firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le"
}
},
{
"category": "product_version",
"name": "golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"product": {
"name": "golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"product_id": "golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"product": {
"name": "golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"product_id": "golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"product": {
"name": "grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"product_id": "grafana-11.6.14+security01-150002.4.14.1.ppc64le"
}
},
{
"category": "product_version",
"name": "mgrctl-5.1.26-150002.3.12.1.ppc64le",
"product": {
"name": "mgrctl-5.1.26-150002.3.12.1.ppc64le",
"product_id": "mgrctl-5.1.26-150002.3.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"product": {
"name": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"product_id": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"product": {
"name": "firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"product_id": "firewalld-prometheus-config-0.1-150002.3.8.1.s390x"
}
},
{
"category": "product_version",
"name": "golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"product": {
"name": "golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"product_id": "golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"product": {
"name": "golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"product_id": "golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x"
}
},
{
"category": "product_version",
"name": "grafana-11.6.14+security01-150002.4.14.1.s390x",
"product": {
"name": "grafana-11.6.14+security01-150002.4.14.1.s390x",
"product_id": "grafana-11.6.14+security01-150002.4.14.1.s390x"
}
},
{
"category": "product_version",
"name": "mgrctl-5.1.26-150002.3.12.1.s390x",
"product": {
"name": "mgrctl-5.1.26-150002.3.12.1.s390x",
"product_id": "mgrctl-5.1.26-150002.3.12.1.s390x"
}
},
{
"category": "product_version",
"name": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"product": {
"name": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"product_id": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"product": {
"name": "firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"product_id": "firewalld-prometheus-config-0.1-150002.3.8.1.x86_64"
}
},
{
"category": "product_version",
"name": "golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"product": {
"name": "golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"product_id": "golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"product": {
"name": "golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"product_id": "golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64"
}
},
{
"category": "product_version",
"name": "grafana-11.6.14+security01-150002.4.14.1.x86_64",
"product": {
"name": "grafana-11.6.14+security01-150002.4.14.1.x86_64",
"product_id": "grafana-11.6.14+security01-150002.4.14.1.x86_64"
}
},
{
"category": "product_version",
"name": "mgrctl-5.1.26-150002.3.12.1.x86_64",
"product": {
"name": "mgrctl-5.1.26-150002.3.12.1.x86_64",
"product_id": "mgrctl-5.1.26-150002.3.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"product": {
"name": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"product_id": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Multi Linux Manager Tools SLE-15",
"product": {
"name": "SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15"
}
},
{
"category": "product_name",
"name": "SUSE Multi Linux Manager Tools SLE-Micro-5",
"product": {
"name": "SUSE Multi Linux Manager Tools SLE-Micro-5",
"product_id": "SUSE Multi Linux Manager Tools SLE-Micro-5"
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "firewalld-prometheus-config-0.1-150002.3.8.1.aarch64 as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64"
},
"product_reference": "firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le"
},
"product_reference": "firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firewalld-prometheus-config-0.1-150002.3.8.1.s390x as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x"
},
"product_reference": "firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firewalld-prometheus-config-0.1-150002.3.8.1.x86_64 as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64"
},
"product_reference": "firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64 as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64"
},
"product_reference": "golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le"
},
"product_reference": "golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x"
},
"product_reference": "golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64 as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64"
},
"product_reference": "golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64 as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64"
},
"product_reference": "golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le"
},
"product_reference": "golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x"
},
"product_reference": "golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64 as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64"
},
"product_reference": "golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.14+security01-150002.4.14.1.aarch64 as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64"
},
"product_reference": "grafana-11.6.14+security01-150002.4.14.1.aarch64",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.14+security01-150002.4.14.1.ppc64le as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le"
},
"product_reference": "grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.14+security01-150002.4.14.1.s390x as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x"
},
"product_reference": "grafana-11.6.14+security01-150002.4.14.1.s390x",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.14+security01-150002.4.14.1.x86_64 as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64"
},
"product_reference": "grafana-11.6.14+security01-150002.4.14.1.x86_64",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-5.1.26-150002.3.12.1.aarch64 as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64"
},
"product_reference": "mgrctl-5.1.26-150002.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-5.1.26-150002.3.12.1.ppc64le as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le"
},
"product_reference": "mgrctl-5.1.26-150002.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-5.1.26-150002.3.12.1.s390x as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x"
},
"product_reference": "mgrctl-5.1.26-150002.3.12.1.s390x",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-5.1.26-150002.3.12.1.x86_64 as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64"
},
"product_reference": "mgrctl-5.1.26-150002.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch"
},
"product_reference": "mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-lang-5.1.26-150002.3.12.1.noarch as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch"
},
"product_reference": "mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch"
},
"product_reference": "mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64"
},
"product_reference": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le"
},
"product_reference": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x"
},
"product_reference": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
},
"product_reference": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-5.1.13-150002.3.9.3.noarch as component of SUSE Multi Linux Manager Tools SLE-15",
"product_id": "SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch"
},
"product_reference": "spacecmd-5.1.13-150002.3.9.3.noarch",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-5.1.26-150002.3.12.1.aarch64 as component of SUSE Multi Linux Manager Tools SLE-Micro-5",
"product_id": "SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64"
},
"product_reference": "mgrctl-5.1.26-150002.3.12.1.aarch64",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-Micro-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-5.1.26-150002.3.12.1.ppc64le as component of SUSE Multi Linux Manager Tools SLE-Micro-5",
"product_id": "SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le"
},
"product_reference": "mgrctl-5.1.26-150002.3.12.1.ppc64le",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-Micro-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-5.1.26-150002.3.12.1.s390x as component of SUSE Multi Linux Manager Tools SLE-Micro-5",
"product_id": "SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x"
},
"product_reference": "mgrctl-5.1.26-150002.3.12.1.s390x",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-Micro-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-5.1.26-150002.3.12.1.x86_64 as component of SUSE Multi Linux Manager Tools SLE-Micro-5",
"product_id": "SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64"
},
"product_reference": "mgrctl-5.1.26-150002.3.12.1.x86_64",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-Micro-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch as component of SUSE Multi Linux Manager Tools SLE-Micro-5",
"product_id": "SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch"
},
"product_reference": "mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-Micro-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-lang-5.1.26-150002.3.12.1.noarch as component of SUSE Multi Linux Manager Tools SLE-Micro-5",
"product_id": "SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch"
},
"product_reference": "mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-Micro-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch as component of SUSE Multi Linux Manager Tools SLE-Micro-5",
"product_id": "SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch"
},
"product_reference": "mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-Micro-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64 as component of SUSE Multi Linux Manager Tools SLE-Micro-5",
"product_id": "SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64"
},
"product_reference": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-Micro-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le as component of SUSE Multi Linux Manager Tools SLE-Micro-5",
"product_id": "SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le"
},
"product_reference": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-Micro-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x as component of SUSE Multi Linux Manager Tools SLE-Micro-5",
"product_id": "SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x"
},
"product_reference": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-Micro-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64 as component of SUSE Multi Linux Manager Tools SLE-Micro-5",
"product_id": "SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
},
"product_reference": "prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"relates_to_product_reference": "SUSE Multi Linux Manager Tools SLE-Micro-5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-13465",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-13465"
}
],
"notes": [
{
"category": "general",
"text": "Lodash versions 4.0.0 through 4.17.22 are vulnerable to prototype pollution in the _.unset and _.omit functions. An attacker can pass crafted paths which cause Lodash to delete methods from global prototypes.\n\nThe issue permits deletion of properties but does not allow overwriting their original behavior.\n\nThis issue is patched on 4.17.23",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-13465",
"url": "https://www.suse.com/security/cve/CVE-2025-13465"
},
{
"category": "external",
"summary": "SUSE Bug 1257321 for CVE-2025-13465",
"url": "https://bugzilla.suse.com/1257321"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-21T09:26:09Z",
"details": "important"
}
],
"title": "CVE-2025-13465"
},
{
"cve": "CVE-2025-3415",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-3415"
}
],
"notes": [
{
"category": "general",
"text": "Grafana is an open-source platform for monitoring and observability. The Grafana Alerting DingDing integration was not properly protected and could be exposed to users with Viewer permission. \nFixed in versions 10.4.19+security-01, 11.2.10+security-01, 11.3.7+security-01, 11.4.5+security-01, 11.5.5+security-01, 11.6.2+security-01 and 12.0.1+security-01",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-3415",
"url": "https://www.suse.com/security/cve/CVE-2025-3415"
},
{
"category": "external",
"summary": "SUSE Bug 1245302 for CVE-2025-3415",
"url": "https://bugzilla.suse.com/1245302"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-21T09:26:09Z",
"details": "moderate"
}
],
"title": "CVE-2025-3415"
},
{
"cve": "CVE-2025-61140",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-61140"
}
],
"notes": [
{
"category": "general",
"text": "The value function in jsonpath 1.1.1 lib/index.js is vulnerable to Prototype Pollution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-61140",
"url": "https://www.suse.com/security/cve/CVE-2025-61140"
},
{
"category": "external",
"summary": "SUSE Bug 1257442 for CVE-2025-61140",
"url": "https://bugzilla.suse.com/1257442"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-21T09:26:09Z",
"details": "important"
}
],
"title": "CVE-2025-61140"
},
{
"cve": "CVE-2026-1615",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-1615"
}
],
"notes": [
{
"category": "general",
"text": "Versions of the package jsonpath before 1.3.0 are vulnerable to Arbitrary Code Injection via unsafe evaluation of user-supplied JSON Path expressions. The library relies on the static-eval module to process JSON Path input, which is not designed to handle untrusted data safely. An attacker can exploit this vulnerability by supplying a malicious JSON Path expression that, when evaluated, executes arbitrary JavaScript code, leading to Remote Code Execution in Node.js environments or Cross-site Scripting (XSS) in browser contexts. This affects all methods that evaluate JSON Paths against objects, including .query, .nodes, .paths, .value, .parent, and .apply.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-1615",
"url": "https://www.suse.com/security/cve/CVE-2026-1615"
},
{
"category": "external",
"summary": "SUSE Bug 1257897 for CVE-2026-1615",
"url": "https://bugzilla.suse.com/1257897"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-21T09:26:09Z",
"details": "critical"
}
],
"title": "CVE-2026-1615"
},
{
"cve": "CVE-2026-21720",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-21720"
}
],
"notes": [
{
"category": "general",
"text": "Every uncached /avatar/:hash request spawns a goroutine that refreshes the Gravatar image. If the refresh sits in the 10-slot worker queue longer than three seconds, the handler times out and stops listening for the result, so that goroutine blocks forever trying to send on an unbuffered channel. Sustained traffic with random hashes keeps tripping this timeout, so goroutine count grows linearly, eventually exhausting memory and causing Grafana to crash on some systems.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-21720",
"url": "https://www.suse.com/security/cve/CVE-2026-21720"
},
{
"category": "external",
"summary": "SUSE Bug 1257349 for CVE-2026-21720",
"url": "https://bugzilla.suse.com/1257349"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-21T09:26:09Z",
"details": "important"
}
],
"title": "CVE-2026-21720"
},
{
"cve": "CVE-2026-21721",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-21721"
}
],
"notes": [
{
"category": "general",
"text": "The dashboard permissions API does not verify the target dashboard scope and only checks the dashboards.permissions:* action. As a result, a user who has permission management rights on one dashboard can read and modify permissions on other dashboards. This is an organization-internal privilege escalation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-21721",
"url": "https://www.suse.com/security/cve/CVE-2026-21721"
},
{
"category": "external",
"summary": "SUSE Bug 1257337 for CVE-2026-21721",
"url": "https://bugzilla.suse.com/1257337"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-21T09:26:09Z",
"details": "important"
}
],
"title": "CVE-2026-21721"
},
{
"cve": "CVE-2026-21722",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-21722"
}
],
"notes": [
{
"category": "general",
"text": "Public dashboards with annotations enabled did not limit their annotation timerange to the locked timerange of the public dashboard. This means one could read the entire history of annotations visible on the specific dashboard, even those outside the locked timerange.\n\nThis did not leak any annotations that would not otherwise be visible on the public dashboard.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-21722",
"url": "https://www.suse.com/security/cve/CVE-2026-21722"
},
{
"category": "external",
"summary": "SUSE Bug 1258136 for CVE-2026-21722",
"url": "https://bugzilla.suse.com/1258136"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-21T09:26:09Z",
"details": "moderate"
}
],
"title": "CVE-2026-21722"
},
{
"cve": "CVE-2026-21724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-21724"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability has been discovered in Grafana OSS where an authorization bypass in the provisioning contact points API allows users with Editor role to modify protected webhook URLs without the required alert.notifications.receivers.protected:write permission.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-21724",
"url": "https://www.suse.com/security/cve/CVE-2026-21724"
},
{
"category": "external",
"summary": "SUSE Bug 1260878 for CVE-2026-21724",
"url": "https://bugzilla.suse.com/1260878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-21T09:26:09Z",
"details": "moderate"
}
],
"title": "CVE-2026-21724"
},
{
"cve": "CVE-2026-21725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-21725"
}
],
"notes": [
{
"category": "general",
"text": "A time-of-create-to-time-of-use (TOCTOU) vulnerability lets recently deleted-then-recreated data sources be re-deleted without permission to do so.\n\nThis requires several very stringent conditions to be met:\n\n- The attacker must have admin access to the specific datasource prior to its first deletion.\n- Upon deletion, all steps within the attack must happen within the next 30 seconds and on the same pod of Grafana.\n- The attacker must delete the datasource, then someone must recreate it.\n- The new datasource must not have the attacker as an admin.\n- The new datasource must have the same UID as the prior datasource. These are randomised by default.\n- The datasource can now be re-deleted by the attacker.\n- Once 30 seconds are up, the attack is spent and cannot be repeated.\n- No datasource with any other UID can be attacked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-21725",
"url": "https://www.suse.com/security/cve/CVE-2026-21725"
},
{
"category": "external",
"summary": "SUSE Bug 1258873 for CVE-2026-21725",
"url": "https://bugzilla.suse.com/1258873"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-21T09:26:09Z",
"details": "low"
}
],
"title": "CVE-2026-21725"
},
{
"cve": "CVE-2026-25547",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25547"
}
],
"notes": [
{
"category": "general",
"text": "@isaacs/brace-expansion is a hybrid CJS/ESM TypeScript fork of brace-expansion. Prior to version 5.0.1, @isaacs/brace-expansion is vulnerable to a denial of service (DoS) issue caused by unbounded brace range expansion. When an attacker provides a pattern containing repeated numeric brace ranges, the library attempts to eagerly generate every possible combination synchronously. Because the expansion grows exponentially, even a small input can consume excessive CPU and memory and may crash the Node.js process. This issue has been patched in version 5.0.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25547",
"url": "https://www.suse.com/security/cve/CVE-2026-25547"
},
{
"category": "external",
"summary": "SUSE Bug 1257834 for CVE-2026-25547",
"url": "https://bugzilla.suse.com/1257834"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-21T09:26:09Z",
"details": "important"
}
],
"title": "CVE-2026-25547"
},
{
"cve": "CVE-2026-26958",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26958"
}
],
"notes": [
{
"category": "general",
"text": "filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and earlier, MultiScalarMult produces invalid results or undefined behavior if the receiver is not the identity point. If (*Point).MultiScalarMult is called on an initialized point that is not the identity point, it returns an incorrect result. If the method is called on an uninitialized point, the behavior is undefined. In particular, if the receiver is the zero value, MultiScalarMult returns an invalid point that compares Equal to every other point. Note that MultiScalarMult is a rarely used, advanced API. For example, users who depend on filippo.io/edwards25519 only through github.com/go-sql-driver/mysql are not affected. This issue has been fixed in version 1.1.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26958",
"url": "https://www.suse.com/security/cve/CVE-2026-26958"
},
{
"category": "external",
"summary": "SUSE Bug 1258570 for CVE-2026-26958",
"url": "https://bugzilla.suse.com/1258570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-21T09:26:09Z",
"details": "moderate"
}
],
"title": "CVE-2026-26958"
},
{
"cve": "CVE-2026-27606",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27606"
}
],
"notes": [
{
"category": "general",
"text": "Rollup is a module bundler for JavaScript. Versions prior to 2.80.0, 3.30.0, and 4.59.0 of the Rollup module bundler (specifically v4.x and present in current source) is vulnerable to an Arbitrary File Write via Path Traversal. Insecure file name sanitization in the core engine allows an attacker to control output filenames (e.g., via CLI named inputs, manual chunk aliases, or malicious plugins) and use traversal sequences (`../`) to overwrite files anywhere on the host filesystem that the build process has permissions for. This can lead to persistent Remote Code Execution (RCE) by overwriting critical system or user configuration files. Versions 2.80.0, 3.30.0, and 4.59.0 contain a patch for the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27606",
"url": "https://www.suse.com/security/cve/CVE-2026-27606"
},
{
"category": "external",
"summary": "SUSE Bug 1258846 for CVE-2026-27606",
"url": "https://bugzilla.suse.com/1258846"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-21T09:26:09Z",
"details": "important"
}
],
"title": "CVE-2026-27606"
},
{
"cve": "CVE-2026-27876",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27876"
}
],
"notes": [
{
"category": "general",
"text": "A chained attack via SQL Expressions and a Grafana Enterprise plugin can lead to a remote arbitrary code execution impact (RCE). This is enabled by a feature in Grafana (OSS), so all users are always recommended to update to avoid future attack vectors going this path.\n\nOnly instances with the sqlExpressions feature toggle enabled are vulnerable.\n\nOnly instances in the following version ranges are affected:\n\n- 11.6.0 (inclusive) to 11.6.14 (exclusive): 11.6.14 has the fix. 11.5 and below are not affected.\n- 12.0.0 (inclusive) to 12.1.10 (exclusive): 12.1.10 has the fix. 12.0 did not receive an update, as it is end-of-life.\n- 12.2.0 (inclusive) to 12.2.8 (exclusive): 12.2.8 has the fix.\n- 12.3.0 (inclusive) to 12.3.6 (exclusive): 12.3.6 has the fix.\n- 12.4.0 (inclusive) to 12.4.2 (exclusive): 12.4.2 has the fix. 13.0.0 and above also have the fix: no v13 release is affected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27876",
"url": "https://www.suse.com/security/cve/CVE-2026-27876"
},
{
"category": "external",
"summary": "SUSE Bug 1261025 for CVE-2026-27876",
"url": "https://bugzilla.suse.com/1261025"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-21T09:26:09Z",
"details": "critical"
}
],
"title": "CVE-2026-27876"
},
{
"cve": "CVE-2026-27877",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27877"
}
],
"notes": [
{
"category": "general",
"text": "When using public dashboards and direct data-sources, all direct data-sources\u0027 passwords are exposed despite not being used in dashboards.\n\nNo passwords of proxied data-sources are exposed. We encourage all direct data-sources to be converted to proxied data-sources as far as possible to improve your deployments\u0027 security.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27877",
"url": "https://www.suse.com/security/cve/CVE-2026-27877"
},
{
"category": "external",
"summary": "SUSE Bug 1261026 for CVE-2026-27877",
"url": "https://bugzilla.suse.com/1261026"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-21T09:26:09Z",
"details": "important"
}
],
"title": "CVE-2026-27877"
},
{
"cve": "CVE-2026-27879",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27879"
}
],
"notes": [
{
"category": "general",
"text": "A resample query can be used to trigger out-of-memory crashes in Grafana.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27879",
"url": "https://www.suse.com/security/cve/CVE-2026-27879"
},
{
"category": "external",
"summary": "SUSE Bug 1261027 for CVE-2026-27879",
"url": "https://bugzilla.suse.com/1261027"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-21T09:26:09Z",
"details": "moderate"
}
],
"title": "CVE-2026-27879"
},
{
"cve": "CVE-2026-28375",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-28375"
}
],
"notes": [
{
"category": "general",
"text": "A testdata data-source can be used to trigger out-of-memory crashes in Grafana.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-28375",
"url": "https://www.suse.com/security/cve/CVE-2026-28375"
},
{
"category": "external",
"summary": "SUSE Bug 1261029 for CVE-2026-28375",
"url": "https://bugzilla.suse.com/1261029"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-21T09:26:09Z",
"details": "moderate"
}
],
"title": "CVE-2026-28375"
},
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:firewalld-prometheus-config-0.1-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-lusitaniae-apache_exporter-1.0.10-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:golang-github-prometheus-prometheus-3.5.0-150002.3.8.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:grafana-11.6.14+security01-150002.4.14.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-15:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-15:spacecmd-5.1.13-150002.3.9.3.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-5.1.26-150002.3.12.1.x86_64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-bash-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-lang-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:mgrctl-zsh-completion-5.1.26-150002.3.12.1.noarch",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.aarch64",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.ppc64le",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.s390x",
"SUSE Multi Linux Manager Tools SLE-Micro-5:prometheus-blackbox_exporter-0.26.0-150002.3.6.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-21T09:26:09Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
}
]
}
SUSE-SU-2026:20904-1
Vulnerability from csaf_suse - Published: 2026-03-18 11:27 - Updated: 2026-03-18 11:27Summary
Security update for cosign
Severity
Moderate
Notes
Title of the patch: Security update for cosign
Description of the patch: This update for cosign fixes the following issues:
Update to version 3.0.5:
- CVE-2026-24122: Fixed improper validation of certificates that outlive
expired CA certificates (bsc#1258542)
- CVE-2026-26958: Fixed filippo.io/edwards25519: failure to initialize receiver
in MultiScalarMult can produce invalid results and lead to undefined behavior
(bsc#1258612)
- CVE-2026-24137: Fixed github.com/sigstore/sigstore/pkg/tuf: legacy TUF client
allows for arbitrary file writes with target cache path traversal
(bsc#1257139)
- CVE-2026-22772: Fixed github.com/sigstore/fulcio: bypass MetaIssuer URL
validation bypass can trigger SSRF to arbitrary internal services
(bsc#1256562)
- CVE-2026-23991: Fixed github.com/theupdateframework/go-tuf/v2: denial of
service due to invalid TUF metadata JSON returned by TUF repository
(bsc#1257080)
- CVE-2026-23992: Fixed github.com/theupdateframework/go-tuf/v2: unauthorized
modification to TUF metadata files due to a compromised or misconfigured TUF
repository (bsc#1257085)
- CVE-2025-11065: Fixed github.com/go-viper/mapstructure/v2: sensitive
Information leak in logs (bsc#1250620)
- CVE-2026-22703: Fixed that cosign verification accepts any valid Rekor entry
under certain conditions (bsc#1256496)
- CVE-2025-58181: Fixed golang.org/x/crypto/ssh: invalidated number of
mechanisms can cause unbounded memory consumption (bsc#1253913)
Patchnames: SUSE-SLES-16.0-404
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.5 (Medium)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.5 (Medium)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.8 (Medium)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
40 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for cosign",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for cosign fixes the following issues:\n\nUpdate to version 3.0.5:\n\n- CVE-2026-24122: Fixed improper validation of certificates that outlive\n expired CA certificates (bsc#1258542)\n- CVE-2026-26958: Fixed filippo.io/edwards25519: failure to initialize receiver\n in MultiScalarMult can produce invalid results and lead to undefined behavior\n (bsc#1258612)\n- CVE-2026-24137: Fixed github.com/sigstore/sigstore/pkg/tuf: legacy TUF client\n allows for arbitrary file writes with target cache path traversal\n (bsc#1257139)\n- CVE-2026-22772: Fixed github.com/sigstore/fulcio: bypass MetaIssuer URL\n validation bypass can trigger SSRF to arbitrary internal services\n (bsc#1256562)\n- CVE-2026-23991: Fixed github.com/theupdateframework/go-tuf/v2: denial of\n service due to invalid TUF metadata JSON returned by TUF repository\n (bsc#1257080)\n- CVE-2026-23992: Fixed github.com/theupdateframework/go-tuf/v2: unauthorized\n modification to TUF metadata files due to a compromised or misconfigured TUF\n repository (bsc#1257085)\n- CVE-2025-11065: Fixed github.com/go-viper/mapstructure/v2: sensitive\n Information leak in logs (bsc#1250620)\n- CVE-2026-22703: Fixed that cosign verification accepts any valid Rekor entry\n under certain conditions (bsc#1256496)\n- CVE-2025-58181: Fixed golang.org/x/crypto/ssh: invalidated number of\n mechanisms can cause unbounded memory consumption (bsc#1253913)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLES-16.0-404",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20904-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:20904-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620904-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:20904-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025109.html"
},
{
"category": "self",
"summary": "SUSE Bug 1250620",
"url": "https://bugzilla.suse.com/1250620"
},
{
"category": "self",
"summary": "SUSE Bug 1253913",
"url": "https://bugzilla.suse.com/1253913"
},
{
"category": "self",
"summary": "SUSE Bug 1256496",
"url": "https://bugzilla.suse.com/1256496"
},
{
"category": "self",
"summary": "SUSE Bug 1256562",
"url": "https://bugzilla.suse.com/1256562"
},
{
"category": "self",
"summary": "SUSE Bug 1257080",
"url": "https://bugzilla.suse.com/1257080"
},
{
"category": "self",
"summary": "SUSE Bug 1257085",
"url": "https://bugzilla.suse.com/1257085"
},
{
"category": "self",
"summary": "SUSE Bug 1257139",
"url": "https://bugzilla.suse.com/1257139"
},
{
"category": "self",
"summary": "SUSE Bug 1258542",
"url": "https://bugzilla.suse.com/1258542"
},
{
"category": "self",
"summary": "SUSE Bug 1258612",
"url": "https://bugzilla.suse.com/1258612"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-11065 page",
"url": "https://www.suse.com/security/cve/CVE-2025-11065/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-58181 page",
"url": "https://www.suse.com/security/cve/CVE-2025-58181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22703 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22703/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-22772 page",
"url": "https://www.suse.com/security/cve/CVE-2026-22772/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23991 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23991/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-23992 page",
"url": "https://www.suse.com/security/cve/CVE-2026-23992/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-24122 page",
"url": "https://www.suse.com/security/cve/CVE-2026-24122/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-24137 page",
"url": "https://www.suse.com/security/cve/CVE-2026-24137/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26958 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26958/"
}
],
"title": "Security update for cosign",
"tracking": {
"current_release_date": "2026-03-18T11:27:44Z",
"generator": {
"date": "2026-03-18T11:27:44Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:20904-1",
"initial_release_date": "2026-03-18T11:27:44Z",
"revision_history": [
{
"date": "2026-03-18T11:27:44Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cosign-3.0.5-160000.1.1.aarch64",
"product": {
"name": "cosign-3.0.5-160000.1.1.aarch64",
"product_id": "cosign-3.0.5-160000.1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "cosign-3.0.5-160000.1.1.ppc64le",
"product": {
"name": "cosign-3.0.5-160000.1.1.ppc64le",
"product_id": "cosign-3.0.5-160000.1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cosign-3.0.5-160000.1.1.s390x",
"product": {
"name": "cosign-3.0.5-160000.1.1.s390x",
"product_id": "cosign-3.0.5-160000.1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cosign-3.0.5-160000.1.1.x86_64",
"product": {
"name": "cosign-3.0.5-160000.1.1.x86_64",
"product_id": "cosign-3.0.5-160000.1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 16.0",
"product": {
"name": "SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:server"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product": {
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:server-sap"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-3.0.5-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64"
},
"product_reference": "cosign-3.0.5-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-3.0.5-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le"
},
"product_reference": "cosign-3.0.5-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-3.0.5-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x"
},
"product_reference": "cosign-3.0.5-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-3.0.5-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64"
},
"product_reference": "cosign-3.0.5-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-3.0.5-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64"
},
"product_reference": "cosign-3.0.5-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-3.0.5-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le"
},
"product_reference": "cosign-3.0.5-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-3.0.5-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x"
},
"product_reference": "cosign-3.0.5-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cosign-3.0.5-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
},
"product_reference": "cosign-3.0.5-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-11065",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-11065"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in github.com/go-viper/mapstructure/v2, in the field processing component using mapstructure.WeakDecode. This vulnerability allows information disclosure through detailed error messages that may leak sensitive input values via malformed user-supplied data processed in security-critical contexts.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-11065",
"url": "https://www.suse.com/security/cve/CVE-2025-11065"
},
{
"category": "external",
"summary": "SUSE Bug 1250608 for CVE-2025-11065",
"url": "https://bugzilla.suse.com/1250608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T11:27:44Z",
"details": "moderate"
}
],
"title": "CVE-2025-11065"
},
{
"cve": "CVE-2025-58181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-58181"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-58181",
"url": "https://www.suse.com/security/cve/CVE-2025-58181"
},
{
"category": "external",
"summary": "SUSE Bug 1253784 for CVE-2025-58181",
"url": "https://bugzilla.suse.com/1253784"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T11:27:44Z",
"details": "moderate"
}
],
"title": "CVE-2025-58181"
},
{
"cve": "CVE-2026-22703",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22703"
}
],
"notes": [
{
"category": "general",
"text": "Cosign provides code signing and transparency for containers and binaries. Prior to versions 2.6.2 and 3.0.4, Cosign bundle can be crafted to successfully verify an artifact even if the embedded Rekor entry does not reference the artifact\u0027s digest, signature or public key. When verifying a Rekor entry, Cosign verifies the Rekor entry signature, and also compares the artifact\u0027s digest, the user\u0027s public key from either a Fulcio certificate or provided by the user, and the artifact signature to the Rekor entry contents. Without these comparisons, Cosign would accept any response from Rekor as valid. A malicious actor that has compromised a user\u0027s identity or signing key could construct a valid Cosign bundle by including any arbitrary Rekor entry, thus preventing the user from being able to audit the signing event. This issue has been patched in versions 2.6.2 and 3.0.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22703",
"url": "https://www.suse.com/security/cve/CVE-2026-22703"
},
{
"category": "external",
"summary": "SUSE Bug 1256496 for CVE-2026-22703",
"url": "https://bugzilla.suse.com/1256496"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T11:27:44Z",
"details": "moderate"
}
],
"title": "CVE-2026-22703"
},
{
"cve": "CVE-2026-22772",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-22772"
}
],
"notes": [
{
"category": "general",
"text": "Fulcio is a certificate authority for issuing code signing certificates for an OpenID Connect (OIDC) identity. Prior to 1.8.5, Fulcio\u0027s metaRegex() function uses unanchored regex, allowing attackers to bypass MetaIssuer URL validation and trigger SSRF to arbitrary internal services. Since the SSRF only can trigger GET requests, the request cannot mutate state. The response from the GET request is not returned to the caller so data exfiltration is not possible. A malicious actor could attempt to probe an internal network through Blind SSRF. This vulnerability is fixed in 1.8.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-22772",
"url": "https://www.suse.com/security/cve/CVE-2026-22772"
},
{
"category": "external",
"summary": "SUSE Bug 1256532 for CVE-2026-22772",
"url": "https://bugzilla.suse.com/1256532"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T11:27:44Z",
"details": "moderate"
}
],
"title": "CVE-2026-22772"
},
{
"cve": "CVE-2026-23991",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23991"
}
],
"notes": [
{
"category": "general",
"text": "go-tuf is a Go implementation of The Update Framework (TUF). Starting in version 2.0.0 and prior to version 2.3.1, if the TUF repository (or any of its mirrors) returns invalid TUF metadata JSON (valid JSON but not well formed TUF metadata), the client will panic during parsing, causing a denial of service. The panic happens before any signature is validated. This means that a compromised repository/mirror/cache can DoS clients without having access to any signing key. Version 2.3.1 fixes the issue. No known workarounds are available.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23991",
"url": "https://www.suse.com/security/cve/CVE-2026-23991"
},
{
"category": "external",
"summary": "SUSE Bug 1257079 for CVE-2026-23991",
"url": "https://bugzilla.suse.com/1257079"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T11:27:44Z",
"details": "moderate"
}
],
"title": "CVE-2026-23991"
},
{
"cve": "CVE-2026-23992",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-23992"
}
],
"notes": [
{
"category": "general",
"text": "go-tuf is a Go implementation of The Update Framework (TUF). Starting in version 2.0.0 and prior to version 2.3.1, a compromised or misconfigured TUF repository can have the configured value of signature thresholds set to 0, which effectively disables signature verification. This can lead to unauthorized modification to TUF metadata files is possible at rest, or during transit as no integrity checks are made. Version 2.3.1 fixes the issue. As a workaround, always make sure that the TUF metadata roles are configured with a threshold of at least 1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-23992",
"url": "https://www.suse.com/security/cve/CVE-2026-23992"
},
{
"category": "external",
"summary": "SUSE Bug 1257084 for CVE-2026-23992",
"url": "https://bugzilla.suse.com/1257084"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T11:27:44Z",
"details": "moderate"
}
],
"title": "CVE-2026-23992"
},
{
"cve": "CVE-2026-24122",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-24122"
}
],
"notes": [
{
"category": "general",
"text": "Cosign provides code signing and transparency for containers and binaries. In versions 3.0.4 and below, an issuing certificate with a validity that expires before the leaf certificate will be considered valid during verification even if the provided timestamp would mean the issuing certificate should be considered expired. When verifying artifact signatures using a certificate, Cosign first verifies the certificate chain using the leaf certificate\u0027s \"not before\" timestamp and later checks expiry of the leaf certificate using either a signed timestamp provided by the Rekor transparency log or from a timestamp authority, or using the current time. The root and all issuing certificates are assumed to be valid during the leaf certificate\u0027s validity. There is no impact to users of the public Sigstore infrastructure. This may affect private deployments with customized PKIs. This issue has been fixed in version 3.0.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-24122",
"url": "https://www.suse.com/security/cve/CVE-2026-24122"
},
{
"category": "external",
"summary": "SUSE Bug 1258540 for CVE-2026-24122",
"url": "https://bugzilla.suse.com/1258540"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T11:27:44Z",
"details": "moderate"
}
],
"title": "CVE-2026-24122"
},
{
"cve": "CVE-2026-24137",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-24137"
}
],
"notes": [
{
"category": "general",
"text": "sigstore framework is a common go library shared across sigstore services and clients. In versions 1.10.3 and below, the legacy TUF client (pkg/tuf/client.go) supports caching target files to disk. It constructs a filesystem path by joining a cache base directory with a target name sourced from signed target metadata; however, it does not validate that the resulting path stays within the cache base directory. A malicious TUF repository can trigger arbitrary file overwriting, limited to the permissions that the calling process has. Note that this should only affect clients that are directly using the TUF client in sigstore/sigstore or are using an older version of Cosign. Public Sigstore deployment users are unaffected, as TUF metadata is validated by a quorum of trusted collaborators. This issue has been fixed in version 1.10.4. As a workaround, users can disable disk caching for the legacy client by setting SIGSTORE_NO_CACHE=true in the environment, migrate to https://github.com/sigstore/sigstore-go/tree/main/pkg/tuf, or upgrade to the latest sigstore/sigstore release.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-24137",
"url": "https://www.suse.com/security/cve/CVE-2026-24137"
},
{
"category": "external",
"summary": "SUSE Bug 1257137 for CVE-2026-24137",
"url": "https://bugzilla.suse.com/1257137"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T11:27:44Z",
"details": "moderate"
}
],
"title": "CVE-2026-24137"
},
{
"cve": "CVE-2026-26958",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26958"
}
],
"notes": [
{
"category": "general",
"text": "filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and earlier, MultiScalarMult produces invalid results or undefined behavior if the receiver is not the identity point. If (*Point).MultiScalarMult is called on an initialized point that is not the identity point, it returns an incorrect result. If the method is called on an uninitialized point, the behavior is undefined. In particular, if the receiver is the zero value, MultiScalarMult returns an invalid point that compares Equal to every other point. Note that MultiScalarMult is a rarely used, advanced API. For example, users who depend on filippo.io/edwards25519 only through github.com/go-sql-driver/mysql are not affected. This issue has been fixed in version 1.1.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26958",
"url": "https://www.suse.com/security/cve/CVE-2026-26958"
},
{
"category": "external",
"summary": "SUSE Bug 1258570 for CVE-2026-26958",
"url": "https://bugzilla.suse.com/1258570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:cosign-3.0.5-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:cosign-3.0.5-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-18T11:27:44Z",
"details": "moderate"
}
],
"title": "CVE-2026-26958"
}
]
}
SUSE-SU-2026:21793-1
Vulnerability from csaf_suse - Published: 2026-05-14 15:04 - Updated: 2026-05-14 15:04Summary
Security update for alloy
Severity
Important
Notes
Title of the patch: Security update for alloy
Description of the patch: This update for alloy fixes the following issues
Security issues:
- CVE-2026-4427: github.com/jackc/pgproto3/v2: improper validation of field length allows a malicious PostgreSQL server
to crash a client application via a DataRow message (bsc#1259919).
- CVE-2026-25934: github.com/go-git/go-git/v5: improper verification of data integrity values for .pack and .idx files
can lead to the consumption of corrupted files (bsc#1258099).
- CVE-2026-26958: filippo.io/edwards25519: failure to initialize receiver in MultiScalarMult can produce invalid results
and lead to undefined behavior (bsc#1258609).
- CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo-
header (bsc#1260317).
Non security issue:
- Updated to 1.16.0
- Use systemd tmpfiles.d to create /var/lib/alloy hierarchy (jsc#PED-14815)
Patchnames: SUSE-SLES-16.0-747
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
4.3 (Medium)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
20 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for alloy",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for alloy fixes the following issues\n\nSecurity issues:\n\n- CVE-2026-4427: github.com/jackc/pgproto3/v2: improper validation of field length allows a malicious PostgreSQL server\n to crash a client application via a DataRow message (bsc#1259919).\n- CVE-2026-25934: github.com/go-git/go-git/v5: improper verification of data integrity values for .pack and .idx files\n can lead to the consumption of corrupted files (bsc#1258099).\n- CVE-2026-26958: filippo.io/edwards25519: failure to initialize receiver in MultiScalarMult can produce invalid results\n and lead to undefined behavior (bsc#1258609).\n- CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo-\n header (bsc#1260317).\n\nNon security issue:\n\n- Updated to 1.16.0\n- Use systemd tmpfiles.d to create /var/lib/alloy hierarchy (jsc#PED-14815)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLES-16.0-747",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_21793-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:21793-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621793-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:21793-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-May/046820.html"
},
{
"category": "self",
"summary": "SUSE Bug 1258099",
"url": "https://bugzilla.suse.com/1258099"
},
{
"category": "self",
"summary": "SUSE Bug 1258609",
"url": "https://bugzilla.suse.com/1258609"
},
{
"category": "self",
"summary": "SUSE Bug 1259919",
"url": "https://bugzilla.suse.com/1259919"
},
{
"category": "self",
"summary": "SUSE Bug 1260317",
"url": "https://bugzilla.suse.com/1260317"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-25934 page",
"url": "https://www.suse.com/security/cve/CVE-2026-25934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26958 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26958/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-4427 page",
"url": "https://www.suse.com/security/cve/CVE-2026-4427/"
}
],
"title": "Security update for alloy",
"tracking": {
"current_release_date": "2026-05-14T15:04:53Z",
"generator": {
"date": "2026-05-14T15:04:53Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:21793-1",
"initial_release_date": "2026-05-14T15:04:53Z",
"revision_history": [
{
"date": "2026-05-14T15:04:53Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "alloy-1.16.0-160000.1.1.aarch64",
"product": {
"name": "alloy-1.16.0-160000.1.1.aarch64",
"product_id": "alloy-1.16.0-160000.1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "alloy-1.16.0-160000.1.1.ppc64le",
"product": {
"name": "alloy-1.16.0-160000.1.1.ppc64le",
"product_id": "alloy-1.16.0-160000.1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "alloy-1.16.0-160000.1.1.s390x",
"product": {
"name": "alloy-1.16.0-160000.1.1.s390x",
"product_id": "alloy-1.16.0-160000.1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "alloy-1.16.0-160000.1.1.x86_64",
"product": {
"name": "alloy-1.16.0-160000.1.1.x86_64",
"product_id": "alloy-1.16.0-160000.1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 16.0",
"product": {
"name": "SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:server"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product": {
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:server-sap"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.16.0-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.aarch64"
},
"product_reference": "alloy-1.16.0-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.16.0-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.ppc64le"
},
"product_reference": "alloy-1.16.0-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.16.0-160000.1.1.s390x as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.s390x"
},
"product_reference": "alloy-1.16.0-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.16.0-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.x86_64"
},
"product_reference": "alloy-1.16.0-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.16.0-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.aarch64"
},
"product_reference": "alloy-1.16.0-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.16.0-160000.1.1.ppc64le as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.ppc64le"
},
"product_reference": "alloy-1.16.0-160000.1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.16.0-160000.1.1.s390x as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.s390x"
},
"product_reference": "alloy-1.16.0-160000.1.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "alloy-1.16.0-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.x86_64"
},
"product_reference": "alloy-1.16.0-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-25934"
}
],
"notes": [
{
"category": "general",
"text": "go-git is a highly extensible git implementation library written in pure Go. Prior to 5.16.5, a vulnerability was discovered in go-git whereby data integrity values for .pack and .idx files were not properly verified. This resulted in go-git potentially consuming corrupted files, which would likely result in unexpected errors such as object not found. For context, clients fetch packfiles from upstream Git servers. Those files contain a checksum of their contents, so that clients can perform integrity checks before consuming it. The pack indexes (.idx) are generated locally by go-git, or the git cli, when new .pack files are received and processed. The integrity checks for both files were not being verified correctly. This vulnerability is fixed in 5.16.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-25934",
"url": "https://www.suse.com/security/cve/CVE-2026-25934"
},
{
"category": "external",
"summary": "SUSE Bug 1258093 for CVE-2026-25934",
"url": "https://bugzilla.suse.com/1258093"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T15:04:53Z",
"details": "moderate"
}
],
"title": "CVE-2026-25934"
},
{
"cve": "CVE-2026-26958",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26958"
}
],
"notes": [
{
"category": "general",
"text": "filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and earlier, MultiScalarMult produces invalid results or undefined behavior if the receiver is not the identity point. If (*Point).MultiScalarMult is called on an initialized point that is not the identity point, it returns an incorrect result. If the method is called on an uninitialized point, the behavior is undefined. In particular, if the receiver is the zero value, MultiScalarMult returns an invalid point that compares Equal to every other point. Note that MultiScalarMult is a rarely used, advanced API. For example, users who depend on filippo.io/edwards25519 only through github.com/go-sql-driver/mysql are not affected. This issue has been fixed in version 1.1.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26958",
"url": "https://www.suse.com/security/cve/CVE-2026-26958"
},
{
"category": "external",
"summary": "SUSE Bug 1258570 for CVE-2026-26958",
"url": "https://bugzilla.suse.com/1258570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T15:04:53Z",
"details": "moderate"
}
],
"title": "CVE-2026-26958"
},
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T15:04:53Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
},
{
"cve": "CVE-2026-4427",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-4427"
}
],
"notes": [
{
"category": "general",
"text": "Duplicate of CVE-2026-32286",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-4427",
"url": "https://www.suse.com/security/cve/CVE-2026-4427"
},
{
"category": "external",
"summary": "SUSE Bug 1259910 for CVE-2026-4427",
"url": "https://bugzilla.suse.com/1259910"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server 16.0:alloy-1.16.0-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.ppc64le",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.s390x",
"SUSE Linux Enterprise Server for SAP applications 16.0:alloy-1.16.0-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-14T15:04:53Z",
"details": "important"
}
],
"title": "CVE-2026-4427"
}
]
}
SUSE-SU-2026:2243-1
Vulnerability from csaf_suse - Published: 2026-06-03 14:10 - Updated: 2026-06-03 14:10Summary
Security update 5.0.8 for Multi-Linux Manager Client Tools
Severity
Important
Notes
Title of the patch: Security update 5.0.8 for Multi-Linux Manager Client Tools
Description of the patch: This update fixes the following issues:
golang-github-QubitProducts-exporter_exporter:
- Security Fixes:
- CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248707)
golang-github-prometheus-node_exporter:
- Backward Compatibility and packaging changes:
- Added compatibility for Go 1.22/1.23 needed in older RHEL toolchains
- Pinned golang.org/x/net to v0.37.0 for Go 1.22 compatibility
- Version 1.10.2:
- Fixed typo in Zswap metric name (meminfo)
- Version 1.10.1:
- Fixed mount points being collected multiple times (filesystem)
- Refactored mountinfo parsing (bsc#1261810)
- Added Zswap/Zswapped metrics (meminfo)
- Version 1.10.0:
- New collectors: PCIe devices, swaps
- Added systemd virtualization metrics, AIX metrics
- WiFi packet metrics, additional PCIe and TLB metrics
- Changed mdadm to use sysfs, added erofs to excluded filesystems
- Fixed bugs: cpufreq collector, ethtool metrics
golang-github-prometheus-prometheus:
- Security issues fixed:
- CVE-2026-42151: AzureAD remote write: Fixed OAuth client_secret
being exposed in plaintext via /-/config endpoint (bsc#1263986)
- CVE-2026-42154: Remote-read: Reject snappy-compressed requests
whose declared decoded length exceeds the decode limit
(bsc#1263987).
- CVE-2026-40179: UI: Fixed stored XSS via unescaped le label
values in old UI heatmap chart tick labels (bsc#1262222)
- CVE-2026-33186: Fixed authorization bypass due to improper
validation of the HTTP/2 :path pseudo-header (bsc#1260267)
* Bump google.golang.org/grpc to version 1.79.3
- CVE-2026-27606: Fixed arbitrary file write via path traversal in
rollup (bsc#1258893)
* Bump rollup to version 4.59.0
- Other changes:
- Remote-Write: Reject snappy-compressed requests whose
declared decoded length exceeds the decode limit.
- Use systemd tmpfiles.d to create /var/lib/prometheus hierarchy (jsc#PED-14816)
prometheus-postgres_exporter:
- Security Fixes:
- CVE-2026-42154: Remote-read: Reject snappy-compressed requests whose declared decoded length exceeds the decode
limit (bsc#1263987)
- CVE-2026-42151: AzureAD remote write: Fixed OAuth client_secret being exposed in plaintext via /-/config endpoint
(bsc#1263986)
- CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248699)
- Highlights of other changes and bug fixes:
- Use systemd tmpfiles.d to create /var/lib/prometheus hierarchy
grafana was updated from version 11.6.11 to 11.6.14+security01:
- Security Fixes:
- CVE-2026-34986: Fixed unrecoverable error in JWE decryption that could lead to a denial of service (bsc#1262950)
- CVE-2026-41602: Fixed Integer Overflow or Wraparound vulnerability in Apache Thrift (bsc#1263501)
- CVE-2026-26958: Ensure that MultiScalarMult properly handles initialization and produces correct results
(bsc#1258595)
- CVE-2026-21725: Fixed missing UID when deleting datasource by name (bsc#1258873)
- CVE-2026-33375: Fixed denial of Service via out-of-memory exhaustion in MSSQL data source plugin (bsc#1260881)
- CVE-2026-27876: Fixed remote arbitrary code execution via chained SQL Expressions (bsc#1261025)
- CVE-2026-27877: Fixed information disclosure of data-source passwords via public dashboards (bsc#1261026)
- CVE-2026-28375: Fixed denial of service via testdata data-source (bsc#1261029)
- CVE-2026-27879: Fixed denial of service via resample query (bsc#1261027)
- CVE-2026-33186: Fixed authorization bypass due to improper validation of the HTTP/2 :path pseudo-header
(bsc#1260263)
- CVE-2026-21724: Fixed authorization bypass allows modification of protected webhook URLs (bsc#1260878)
- Highlights of other changes and bug fixes:
- Version 11.6.13:
- Wire the public dashboard service to the HTTP server
- Version 11.6.12:
- Update authentication redirect logic
- Fixed single panel render with variable references
spacecmd:
- Version 5.0.16-0:
- Update translation strings
uyuni-tools:
- Version 0.1.39-0:
- mgrpxy ssh tuning should happen before crypto policies (bsc#1254619)
- Fixed default value for helm registry (bsc#1258927).
- Use static supportconfig name to avoid dynamic search
(bsc#1257941)
- Do not nest multiple tarball files and instead collect
all files into one tarball (bsc#1252964)
- Show where final tarball was generated (bsc#1259208)
Patchnames: SUSE-2026-2243,SUSE-SLE-Manager-Tools-15-2026-2243,SUSE-SLE-Manager-Tools-For-Micro-5-2026-2243,SUSE-SLE-Module-Basesystem-15-SP7-2026-2243,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2243,SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2243,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2243,SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2243,SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2243,SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2243,SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2243,SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2243,SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2243,SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2243
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
low
5.4 (Medium)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
low
6.5 (Medium)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
important
9.1 (Critical)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
critical
7.5 (High)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
important
5.4 (Medium)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
important
References
81 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update 5.0.8 for Multi-Linux Manager Client Tools",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update fixes the following issues:\n\ngolang-github-QubitProducts-exporter_exporter:\n\n- Security Fixes:\n\n - CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248707)\n\ngolang-github-prometheus-node_exporter:\n\n- Backward Compatibility and packaging changes:\n - Added compatibility for Go 1.22/1.23 needed in older RHEL toolchains\n - Pinned golang.org/x/net to v0.37.0 for Go 1.22 compatibility\n\n- Version 1.10.2:\n - Fixed typo in Zswap metric name (meminfo)\n\n- Version 1.10.1:\n - Fixed mount points being collected multiple times (filesystem)\n - Refactored mountinfo parsing (bsc#1261810)\n - Added Zswap/Zswapped metrics (meminfo)\n\n- Version 1.10.0:\n - New collectors: PCIe devices, swaps\n - Added systemd virtualization metrics, AIX metrics\n - WiFi packet metrics, additional PCIe and TLB metrics\n - Changed mdadm to use sysfs, added erofs to excluded filesystems\n - Fixed bugs: cpufreq collector, ethtool metrics\n\ngolang-github-prometheus-prometheus:\n \n- Security issues fixed:\n\n - CVE-2026-42151: AzureAD remote write: Fixed OAuth client_secret\n being exposed in plaintext via /-/config endpoint (bsc#1263986)\n - CVE-2026-42154: Remote-read: Reject snappy-compressed requests\n whose declared decoded length exceeds the decode limit\n (bsc#1263987).\n - CVE-2026-40179: UI: Fixed stored XSS via unescaped le label\n values in old UI heatmap chart tick labels (bsc#1262222)\n - CVE-2026-33186: Fixed authorization bypass due to improper\n validation of the HTTP/2 :path pseudo-header (bsc#1260267)\n * Bump google.golang.org/grpc to version 1.79.3\n - CVE-2026-27606: Fixed arbitrary file write via path traversal in\n rollup (bsc#1258893)\n * Bump rollup to version 4.59.0\n\n- Other changes:\n\n - Remote-Write: Reject snappy-compressed requests whose\n declared decoded length exceeds the decode limit.\n - Use systemd tmpfiles.d to create /var/lib/prometheus hierarchy (jsc#PED-14816) \n\n\nprometheus-postgres_exporter:\n\n- Security Fixes:\n\n - CVE-2026-42154: Remote-read: Reject snappy-compressed requests whose declared decoded length exceeds the decode\n limit (bsc#1263987)\n - CVE-2026-42151: AzureAD remote write: Fixed OAuth client_secret being exposed in plaintext via /-/config endpoint\n (bsc#1263986)\n - CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248699)\n\n- Highlights of other changes and bug fixes:\n\n - Use systemd tmpfiles.d to create /var/lib/prometheus hierarchy\n\ngrafana was updated from version 11.6.11 to 11.6.14+security01:\n\n- Security Fixes:\n\n - CVE-2026-34986: Fixed unrecoverable error in JWE decryption that could lead to a denial of service (bsc#1262950)\n - CVE-2026-41602: Fixed Integer Overflow or Wraparound vulnerability in Apache Thrift (bsc#1263501)\n - CVE-2026-26958: Ensure that MultiScalarMult properly handles initialization and produces correct results \n (bsc#1258595)\n - CVE-2026-21725: Fixed missing UID when deleting datasource by name (bsc#1258873)\n - CVE-2026-33375: Fixed denial of Service via out-of-memory exhaustion in MSSQL data source plugin (bsc#1260881)\n - CVE-2026-27876: Fixed remote arbitrary code execution via chained SQL Expressions (bsc#1261025)\n - CVE-2026-27877: Fixed information disclosure of data-source passwords via public dashboards (bsc#1261026)\n - CVE-2026-28375: Fixed denial of service via testdata data-source (bsc#1261029)\n - CVE-2026-27879: Fixed denial of service via resample query (bsc#1261027)\n - CVE-2026-33186: Fixed authorization bypass due to improper validation of the HTTP/2 :path pseudo-header\n (bsc#1260263)\n - CVE-2026-21724: Fixed authorization bypass allows modification of protected webhook URLs (bsc#1260878)\n\n- Highlights of other changes and bug fixes:\n\n - Version 11.6.13:\n\n - Wire the public dashboard service to the HTTP server\n\n - Version 11.6.12:\n\n - Update authentication redirect logic\n - Fixed single panel render with variable references\n\nspacecmd:\n\n- Version 5.0.16-0:\n\n - Update translation strings\n\nuyuni-tools:\n\n- Version 0.1.39-0:\n\n - mgrpxy ssh tuning should happen before crypto policies (bsc#1254619)\n - Fixed default value for helm registry (bsc#1258927).\n - Use static supportconfig name to avoid dynamic search\n (bsc#1257941)\n - Do not nest multiple tarball files and instead collect\n all files into one tarball (bsc#1252964)\n - Show where final tarball was generated (bsc#1259208)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2243,SUSE-SLE-Manager-Tools-15-2026-2243,SUSE-SLE-Manager-Tools-For-Micro-5-2026-2243,SUSE-SLE-Module-Basesystem-15-SP7-2026-2243,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2243,SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2243,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2243,SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2243,SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2243,SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2243,SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2243,SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2243,SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2243,SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2243",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2243-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2243-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262243-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2243-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-June/047083.html"
},
{
"category": "self",
"summary": "SUSE Bug 1248699",
"url": "https://bugzilla.suse.com/1248699"
},
{
"category": "self",
"summary": "SUSE Bug 1248707",
"url": "https://bugzilla.suse.com/1248707"
},
{
"category": "self",
"summary": "SUSE Bug 1252964",
"url": "https://bugzilla.suse.com/1252964"
},
{
"category": "self",
"summary": "SUSE Bug 1254619",
"url": "https://bugzilla.suse.com/1254619"
},
{
"category": "self",
"summary": "SUSE Bug 1257941",
"url": "https://bugzilla.suse.com/1257941"
},
{
"category": "self",
"summary": "SUSE Bug 1258595",
"url": "https://bugzilla.suse.com/1258595"
},
{
"category": "self",
"summary": "SUSE Bug 1258873",
"url": "https://bugzilla.suse.com/1258873"
},
{
"category": "self",
"summary": "SUSE Bug 1258893",
"url": "https://bugzilla.suse.com/1258893"
},
{
"category": "self",
"summary": "SUSE Bug 1258927",
"url": "https://bugzilla.suse.com/1258927"
},
{
"category": "self",
"summary": "SUSE Bug 1259208",
"url": "https://bugzilla.suse.com/1259208"
},
{
"category": "self",
"summary": "SUSE Bug 1259999",
"url": "https://bugzilla.suse.com/1259999"
},
{
"category": "self",
"summary": "SUSE Bug 1260263",
"url": "https://bugzilla.suse.com/1260263"
},
{
"category": "self",
"summary": "SUSE Bug 1260267",
"url": "https://bugzilla.suse.com/1260267"
},
{
"category": "self",
"summary": "SUSE Bug 1260878",
"url": "https://bugzilla.suse.com/1260878"
},
{
"category": "self",
"summary": "SUSE Bug 1260881",
"url": "https://bugzilla.suse.com/1260881"
},
{
"category": "self",
"summary": "SUSE Bug 1261025",
"url": "https://bugzilla.suse.com/1261025"
},
{
"category": "self",
"summary": "SUSE Bug 1261026",
"url": "https://bugzilla.suse.com/1261026"
},
{
"category": "self",
"summary": "SUSE Bug 1261027",
"url": "https://bugzilla.suse.com/1261027"
},
{
"category": "self",
"summary": "SUSE Bug 1261029",
"url": "https://bugzilla.suse.com/1261029"
},
{
"category": "self",
"summary": "SUSE Bug 1261810",
"url": "https://bugzilla.suse.com/1261810"
},
{
"category": "self",
"summary": "SUSE Bug 1262222",
"url": "https://bugzilla.suse.com/1262222"
},
{
"category": "self",
"summary": "SUSE Bug 1262950",
"url": "https://bugzilla.suse.com/1262950"
},
{
"category": "self",
"summary": "SUSE Bug 1263501",
"url": "https://bugzilla.suse.com/1263501"
},
{
"category": "self",
"summary": "SUSE Bug 1263986",
"url": "https://bugzilla.suse.com/1263986"
},
{
"category": "self",
"summary": "SUSE Bug 1263987",
"url": "https://bugzilla.suse.com/1263987"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-21698 page",
"url": "https://www.suse.com/security/cve/CVE-2022-21698/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-29923 page",
"url": "https://www.suse.com/security/cve/CVE-2025-29923/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-21724 page",
"url": "https://www.suse.com/security/cve/CVE-2026-21724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-21725 page",
"url": "https://www.suse.com/security/cve/CVE-2026-21725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26958 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26958/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27606 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27606/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27876 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27876/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27877 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27877/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27879 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27879/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-28375 page",
"url": "https://www.suse.com/security/cve/CVE-2026-28375/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33375 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33375/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-34986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-34986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-40179 page",
"url": "https://www.suse.com/security/cve/CVE-2026-40179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41602 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41602/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42151 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42154 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42154/"
}
],
"title": "Security update 5.0.8 for Multi-Linux Manager Client Tools",
"tracking": {
"current_release_date": "2026-06-03T14:10:38Z",
"generator": {
"date": "2026-06-03T14:10:38Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2243-1",
"initial_release_date": "2026-06-03T14:10:38Z",
"revision_history": [
{
"date": "2026-06-03T14:10:38Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"product": {
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"product_id": "firewalld-prometheus-config-0.1-150000.3.72.2.aarch64"
}
},
{
"category": "product_version",
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"product": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"product_id": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"product": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"product_id": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"product": {
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"product_id": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64"
}
},
{
"category": "product_version",
"name": "grafana-11.6.14+security01-150000.1.95.2.aarch64",
"product": {
"name": "grafana-11.6.14+security01-150000.1.95.2.aarch64",
"product_id": "grafana-11.6.14+security01-150000.1.95.2.aarch64"
}
},
{
"category": "product_version",
"name": "mgrctl-0.1.39-150000.1.33.2.aarch64",
"product": {
"name": "mgrctl-0.1.39-150000.1.33.2.aarch64",
"product_id": "mgrctl-0.1.39-150000.1.33.2.aarch64"
}
},
{
"category": "product_version",
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"product": {
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"product_id": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.i586",
"product": {
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.i586",
"product_id": "firewalld-prometheus-config-0.1-150000.3.72.2.i586"
}
},
{
"category": "product_version",
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.i586",
"product": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.i586",
"product_id": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.i586"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.i586",
"product": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.i586",
"product_id": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.i586"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.i586",
"product": {
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.i586",
"product_id": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.i586"
}
},
{
"category": "product_version",
"name": "mgrctl-0.1.39-150000.1.33.2.i586",
"product": {
"name": "mgrctl-0.1.39-150000.1.33.2.i586",
"product_id": "mgrctl-0.1.39-150000.1.33.2.i586"
}
},
{
"category": "product_version",
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.i586",
"product": {
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.i586",
"product_id": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"product": {
"name": "mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"product_id": "mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch"
}
},
{
"category": "product_version",
"name": "mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"product": {
"name": "mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"product_id": "mgrctl-lang-0.1.39-150000.1.33.2.noarch"
}
},
{
"category": "product_version",
"name": "mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"product": {
"name": "mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"product_id": "mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
}
},
{
"category": "product_version",
"name": "spacecmd-5.0.16-150000.3.145.1.noarch",
"product": {
"name": "spacecmd-5.0.16-150000.3.145.1.noarch",
"product_id": "spacecmd-5.0.16-150000.3.145.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"product": {
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"product_id": "firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le"
}
},
{
"category": "product_version",
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"product": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"product_id": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"product": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"product_id": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"product": {
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"product_id": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le"
}
},
{
"category": "product_version",
"name": "grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"product": {
"name": "grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"product_id": "grafana-11.6.14+security01-150000.1.95.2.ppc64le"
}
},
{
"category": "product_version",
"name": "mgrctl-0.1.39-150000.1.33.2.ppc64le",
"product": {
"name": "mgrctl-0.1.39-150000.1.33.2.ppc64le",
"product_id": "mgrctl-0.1.39-150000.1.33.2.ppc64le"
}
},
{
"category": "product_version",
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"product": {
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"product_id": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"product": {
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"product_id": "firewalld-prometheus-config-0.1-150000.3.72.2.s390x"
}
},
{
"category": "product_version",
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"product": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"product_id": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"product": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"product_id": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"product": {
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"product_id": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x"
}
},
{
"category": "product_version",
"name": "grafana-11.6.14+security01-150000.1.95.2.s390x",
"product": {
"name": "grafana-11.6.14+security01-150000.1.95.2.s390x",
"product_id": "grafana-11.6.14+security01-150000.1.95.2.s390x"
}
},
{
"category": "product_version",
"name": "mgrctl-0.1.39-150000.1.33.2.s390x",
"product": {
"name": "mgrctl-0.1.39-150000.1.33.2.s390x",
"product_id": "mgrctl-0.1.39-150000.1.33.2.s390x"
}
},
{
"category": "product_version",
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"product": {
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"product_id": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"product": {
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"product_id": "firewalld-prometheus-config-0.1-150000.3.72.2.x86_64"
}
},
{
"category": "product_version",
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"product": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"product_id": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"product": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"product_id": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"product": {
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"product_id": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64"
}
},
{
"category": "product_version",
"name": "grafana-11.6.14+security01-150000.1.95.2.x86_64",
"product": {
"name": "grafana-11.6.14+security01-150000.1.95.2.x86_64",
"product_id": "grafana-11.6.14+security01-150000.1.95.2.x86_64"
}
},
{
"category": "product_version",
"name": "mgrctl-0.1.39-150000.1.33.2.x86_64",
"product": {
"name": "mgrctl-0.1.39-150000.1.33.2.x86_64",
"product_id": "mgrctl-0.1.39-150000.1.33.2.x86_64"
}
},
{
"category": "product_version",
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"product": {
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"product_id": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Manager Client Tools 15",
"product": {
"name": "SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15"
}
},
{
"category": "product_name",
"name": "SUSE Manager Client Tools for SLE Micro 5",
"product": {
"name": "SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-manager-tools-micro:5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64"
},
"product_reference": "firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le"
},
"product_reference": "firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.s390x as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x"
},
"product_reference": "firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64"
},
"product_reference": "firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64"
},
"product_reference": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le"
},
"product_reference": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x"
},
"product_reference": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64"
},
"product_reference": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.14+security01-150000.1.95.2.aarch64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64"
},
"product_reference": "grafana-11.6.14+security01-150000.1.95.2.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.14+security01-150000.1.95.2.ppc64le as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le"
},
"product_reference": "grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.14+security01-150000.1.95.2.s390x as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x"
},
"product_reference": "grafana-11.6.14+security01-150000.1.95.2.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.14+security01-150000.1.95.2.x86_64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64"
},
"product_reference": "grafana-11.6.14+security01-150000.1.95.2.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-150000.1.33.2.aarch64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64"
},
"product_reference": "mgrctl-0.1.39-150000.1.33.2.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-150000.1.33.2.ppc64le as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le"
},
"product_reference": "mgrctl-0.1.39-150000.1.33.2.ppc64le",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-150000.1.33.2.s390x as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x"
},
"product_reference": "mgrctl-0.1.39-150000.1.33.2.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-150000.1.33.2.x86_64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64"
},
"product_reference": "mgrctl-0.1.39-150000.1.33.2.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch"
},
"product_reference": "mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-lang-0.1.39-150000.1.33.2.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch"
},
"product_reference": "mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
},
"product_reference": "mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64"
},
"product_reference": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le"
},
"product_reference": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x"
},
"product_reference": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64"
},
"product_reference": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-5.0.16-150000.3.145.1.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch"
},
"product_reference": "spacecmd-5.0.16-150000.3.145.1.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-150000.1.33.2.aarch64 as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64"
},
"product_reference": "mgrctl-0.1.39-150000.1.33.2.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-150000.1.33.2.s390x as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x"
},
"product_reference": "mgrctl-0.1.39-150000.1.33.2.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-150000.1.33.2.x86_64 as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64"
},
"product_reference": "mgrctl-0.1.39-150000.1.33.2.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch"
},
"product_reference": "mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-lang-0.1.39-150000.1.33.2.noarch as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch"
},
"product_reference": "mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
},
"product_reference": "mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-21698",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-21698"
}
],
"notes": [
{
"category": "general",
"text": "client_golang is the instrumentation library for Go applications in Prometheus, and the promhttp package in client_golang provides tooling around HTTP servers and clients. In client_golang prior to version 1.11.1, HTTP server is susceptible to a Denial of Service through unbounded cardinality, and potential memory exhaustion, when handling requests with non-standard HTTP methods. In order to be affected, an instrumented software must use any of `promhttp.InstrumentHandler*` middleware except `RequestsInFlight`; not filter any specific methods (e.g GET) before middleware; pass metric with `method` label name to our middleware; and not have any firewall/LB/proxy that filters away requests with unknown `method`. client_golang version 1.11.1 contains a patch for this issue. Several workarounds are available, including removing the `method` label name from counter/gauge used in the InstrumentHandler; turning off affected promhttp handlers; adding custom middleware before promhttp handler that will sanitize the request method given by Go http.Request; and using a reverse proxy or web application firewall, configured to only allow a limited set of methods.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-21698",
"url": "https://www.suse.com/security/cve/CVE-2022-21698"
},
{
"category": "external",
"summary": "SUSE Bug 1196338 for CVE-2022-21698",
"url": "https://bugzilla.suse.com/1196338"
},
{
"category": "external",
"summary": "SUSE Bug 1248689 for CVE-2022-21698",
"url": "https://bugzilla.suse.com/1248689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "important"
}
],
"title": "CVE-2022-21698"
},
{
"cve": "CVE-2025-29923",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-29923"
}
],
"notes": [
{
"category": "general",
"text": "go-redis is the official Redis client library for the Go programming language. Prior to 9.5.5, 9.6.3, and 9.7.3, go-redis potentially responds out of order when `CLIENT SETINFO` times out during connection establishment. This can happen when the client is configured to transmit its identity, there are network connectivity issues, or the client was configured with aggressive timeouts. The problem occurs for multiple use cases. For sticky connections, you receive persistent out-of-order responses for the lifetime of the connection. All commands in the pipeline receive incorrect responses. When used with the default ConnPool once a connection is returned after use with ConnPool#Put the read buffer will be checked and the connection will be marked as bad due to the unread data. This means that at most one out-of-order response before the connection is discarded. This issue is fixed in 9.5.5, 9.6.3, and 9.7.3. You can prevent the vulnerability by setting the flag DisableIndentity to true when constructing the client instance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-29923",
"url": "https://www.suse.com/security/cve/CVE-2025-29923"
},
{
"category": "external",
"summary": "SUSE Bug 1241152 for CVE-2025-29923",
"url": "https://bugzilla.suse.com/1241152"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "low"
}
],
"title": "CVE-2025-29923"
},
{
"cve": "CVE-2026-21724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-21724"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability has been discovered in Grafana OSS where an authorization bypass in the provisioning contact points API allows users with Editor role to modify protected webhook URLs without the required alert.notifications.receivers.protected:write permission.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-21724",
"url": "https://www.suse.com/security/cve/CVE-2026-21724"
},
{
"category": "external",
"summary": "SUSE Bug 1260878 for CVE-2026-21724",
"url": "https://bugzilla.suse.com/1260878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-21724"
},
{
"cve": "CVE-2026-21725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-21725"
}
],
"notes": [
{
"category": "general",
"text": "A time-of-create-to-time-of-use (TOCTOU) vulnerability lets recently deleted-then-recreated data sources be re-deleted without permission to do so.\n\nThis requires several very stringent conditions to be met:\n\n- The attacker must have admin access to the specific datasource prior to its first deletion.\n- Upon deletion, all steps within the attack must happen within the next 30 seconds and on the same pod of Grafana.\n- The attacker must delete the datasource, then someone must recreate it.\n- The new datasource must not have the attacker as an admin.\n- The new datasource must have the same UID as the prior datasource. These are randomised by default.\n- The datasource can now be re-deleted by the attacker.\n- Once 30 seconds are up, the attack is spent and cannot be repeated.\n- No datasource with any other UID can be attacked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-21725",
"url": "https://www.suse.com/security/cve/CVE-2026-21725"
},
{
"category": "external",
"summary": "SUSE Bug 1258873 for CVE-2026-21725",
"url": "https://bugzilla.suse.com/1258873"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "low"
}
],
"title": "CVE-2026-21725"
},
{
"cve": "CVE-2026-26958",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26958"
}
],
"notes": [
{
"category": "general",
"text": "filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and earlier, MultiScalarMult produces invalid results or undefined behavior if the receiver is not the identity point. If (*Point).MultiScalarMult is called on an initialized point that is not the identity point, it returns an incorrect result. If the method is called on an uninitialized point, the behavior is undefined. In particular, if the receiver is the zero value, MultiScalarMult returns an invalid point that compares Equal to every other point. Note that MultiScalarMult is a rarely used, advanced API. For example, users who depend on filippo.io/edwards25519 only through github.com/go-sql-driver/mysql are not affected. This issue has been fixed in version 1.1.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26958",
"url": "https://www.suse.com/security/cve/CVE-2026-26958"
},
{
"category": "external",
"summary": "SUSE Bug 1258570 for CVE-2026-26958",
"url": "https://bugzilla.suse.com/1258570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-26958"
},
{
"cve": "CVE-2026-27606",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27606"
}
],
"notes": [
{
"category": "general",
"text": "Rollup is a module bundler for JavaScript. Versions prior to 2.80.0, 3.30.0, and 4.59.0 of the Rollup module bundler (specifically v4.x and present in current source) is vulnerable to an Arbitrary File Write via Path Traversal. Insecure file name sanitization in the core engine allows an attacker to control output filenames (e.g., via CLI named inputs, manual chunk aliases, or malicious plugins) and use traversal sequences (`../`) to overwrite files anywhere on the host filesystem that the build process has permissions for. This can lead to persistent Remote Code Execution (RCE) by overwriting critical system or user configuration files. Versions 2.80.0, 3.30.0, and 4.59.0 contain a patch for the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27606",
"url": "https://www.suse.com/security/cve/CVE-2026-27606"
},
{
"category": "external",
"summary": "SUSE Bug 1258846 for CVE-2026-27606",
"url": "https://bugzilla.suse.com/1258846"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "important"
}
],
"title": "CVE-2026-27606"
},
{
"cve": "CVE-2026-27876",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27876"
}
],
"notes": [
{
"category": "general",
"text": "A chained attack via SQL Expressions and a Grafana Enterprise plugin can lead to a remote arbitrary code execution impact (RCE). This is enabled by a feature in Grafana (OSS), so all users are always recommended to update to avoid future attack vectors going this path.\n\nOnly instances with the sqlExpressions feature toggle enabled are vulnerable.\n\nOnly instances in the following version ranges are affected:\n\n- 11.6.0 (inclusive) to 11.6.14 (exclusive): 11.6.14 has the fix. 11.5 and below are not affected.\n- 12.0.0 (inclusive) to 12.1.10 (exclusive): 12.1.10 has the fix. 12.0 did not receive an update, as it is end-of-life.\n- 12.2.0 (inclusive) to 12.2.8 (exclusive): 12.2.8 has the fix.\n- 12.3.0 (inclusive) to 12.3.6 (exclusive): 12.3.6 has the fix.\n- 12.4.0 (inclusive) to 12.4.2 (exclusive): 12.4.2 has the fix. 13.0.0 and above also have the fix: no v13 release is affected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27876",
"url": "https://www.suse.com/security/cve/CVE-2026-27876"
},
{
"category": "external",
"summary": "SUSE Bug 1261025 for CVE-2026-27876",
"url": "https://bugzilla.suse.com/1261025"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "critical"
}
],
"title": "CVE-2026-27876"
},
{
"cve": "CVE-2026-27877",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27877"
}
],
"notes": [
{
"category": "general",
"text": "When using public dashboards and direct data-sources, all direct data-sources\u0027 passwords are exposed despite not being used in dashboards.\n\nNo passwords of proxied data-sources are exposed. We encourage all direct data-sources to be converted to proxied data-sources as far as possible to improve your deployments\u0027 security.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27877",
"url": "https://www.suse.com/security/cve/CVE-2026-27877"
},
{
"category": "external",
"summary": "SUSE Bug 1261026 for CVE-2026-27877",
"url": "https://bugzilla.suse.com/1261026"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "important"
}
],
"title": "CVE-2026-27877"
},
{
"cve": "CVE-2026-27879",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27879"
}
],
"notes": [
{
"category": "general",
"text": "A resample query can be used to trigger out-of-memory crashes in Grafana.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27879",
"url": "https://www.suse.com/security/cve/CVE-2026-27879"
},
{
"category": "external",
"summary": "SUSE Bug 1261027 for CVE-2026-27879",
"url": "https://bugzilla.suse.com/1261027"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-27879"
},
{
"cve": "CVE-2026-28375",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-28375"
}
],
"notes": [
{
"category": "general",
"text": "A testdata data-source can be used to trigger out-of-memory crashes in Grafana.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-28375",
"url": "https://www.suse.com/security/cve/CVE-2026-28375"
},
{
"category": "external",
"summary": "SUSE Bug 1261029 for CVE-2026-28375",
"url": "https://bugzilla.suse.com/1261029"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-28375"
},
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
},
{
"cve": "CVE-2026-33375",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33375"
}
],
"notes": [
{
"category": "general",
"text": "The Grafana MSSQL data source plugin contains a logic flaw that allows a low-privileged user (Viewer) to bypass API restrictions and trigger a catastrophic Out-Of-Memory (OOM) memory exhaustion, crashing the host container.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33375",
"url": "https://www.suse.com/security/cve/CVE-2026-33375"
},
{
"category": "external",
"summary": "SUSE Bug 1260881 for CVE-2026-33375",
"url": "https://bugzilla.suse.com/1260881"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-33375"
},
{
"cve": "CVE-2026-34986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-34986"
}
],
"notes": [
{
"category": "general",
"text": "Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards. Prior to 4.1.4 and 3.0.5, decrypting a JSON Web Encryption (JWE) object will panic if the alg field indicates a key wrapping algorithm (one ending in KW, with the exception of A128GCMKW, A192GCMKW, and A256GCMKW) and the encrypted_key field is empty. The panic happens when cipher.KeyUnwrap() in key_wrap.go attempts to allocate a slice with a zero or negative length based on the length of the encrypted_key. This code path is reachable from ParseEncrypted() / ParseEncryptedJSON() / ParseEncryptedCompact() followed by Decrypt() on the resulting object. Note that the parse functions take a list of accepted key algorithms. If the accepted key algorithms do not include any key wrapping algorithms, parsing will fail and the application will be unaffected. This panic is also reachable by calling cipher.KeyUnwrap() directly with any ciphertext parameter less than 16 bytes long, but calling this function directly is less common. Panics can lead to denial of service. This vulnerability is fixed in 4.1.4 and 3.0.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-34986",
"url": "https://www.suse.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "SUSE Bug 1262805 for CVE-2026-34986",
"url": "https://bugzilla.suse.com/1262805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "important"
}
],
"title": "CVE-2026-34986"
},
{
"cve": "CVE-2026-40179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-40179"
}
],
"notes": [
{
"category": "general",
"text": "Prometheus is an open-source monitoring system and time series database. Versions 3.0 through 3.5.1 and 3.6.0 through 3.11.1 have stored cross-site scripting vulnerabilities in multiple components of the Prometheus web UI where metric names and label values are injected into innerHTML without escaping. In both the Mantine UI and old React UI, chart tooltips on the Graph page render metric names containing HTML/JavaScript without sanitization. In the old React UI, the Metric Explorer fuzzy search results use dangerouslySetInnerHTML without escaping, and heatmap cell tooltips interpolate le label values without sanitization. With Prometheus v3.x defaulting to UTF-8 metric and label name validation, characters like \u003c, \u003e, and \" are now valid in metric names and labels. An attacker who can inject metrics via a compromised scrape target, remote write, or OTLP receiver endpoint can execute arbitrary JavaScript in the browser of any Prometheus user who views the metric in the Graph UI, potentially enabling configuration exfiltration, data deletion, or Prometheus shutdown depending on enabled flags. This issue has been fixed in versions 3.5.2 and 3.11.2. If developers are unable to immediately update, the following workarounds are recommended: ensure that the remote write receiver (--web.enable-remote-write-receiver) and the OTLP receiver (--web.enable-otlp-receiver) are not exposed to untrusted sources; verify that all scrape targets are trusted and not under attacker control; avoid enabling admin or mutating API endpoints (e.g., --web.enable-admin-api or --web.enable-lifecycle) in environments where untrusted data may be ingested; and refrain from clicking untrusted links, particularly those containing functions such as label_replace, as they may generate poisoned label names and values.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-40179",
"url": "https://www.suse.com/security/cve/CVE-2026-40179"
},
{
"category": "external",
"summary": "SUSE Bug 1262222 for CVE-2026-40179",
"url": "https://bugzilla.suse.com/1262222"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-40179"
},
{
"cve": "CVE-2026-41602",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41602"
}
],
"notes": [
{
"category": "general",
"text": "Integer Overflow or Wraparound vulnerability in Apache Thrift TFramedTransport Go language implementation\n\nThis issue affects Apache Thrift: before 0.23.0.\n\nUsers are recommended to upgrade to version 0.23.0, which fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41602",
"url": "https://www.suse.com/security/cve/CVE-2026-41602"
},
{
"category": "external",
"summary": "SUSE Bug 1263496 for CVE-2026-41602",
"url": "https://bugzilla.suse.com/1263496"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "important"
}
],
"title": "CVE-2026-41602"
},
{
"cve": "CVE-2026-42151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42151"
}
],
"notes": [
{
"category": "general",
"text": "Prometheus is an open-source monitoring system and time series database. Prior to versions 3.5.3 and 3.11.3, the client_secret field in the Azure AD remote write OAuth configuration (storage/remote/azuread) was typed as string instead of Secret. Prometheus redacts fields of type Secret when serving the configuration via the /-/config HTTP API endpoint. Because the field was a plain string, the Azure OAuth client secret was exposed in plaintext to any user or process with access to that endpoint. This issue has been patched in versions 3.5.3 and 3.11.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42151",
"url": "https://www.suse.com/security/cve/CVE-2026-42151"
},
{
"category": "external",
"summary": "SUSE Bug 1263986 for CVE-2026-42151",
"url": "https://bugzilla.suse.com/1263986"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "important"
}
],
"title": "CVE-2026-42151"
},
{
"cve": "CVE-2026-42154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42154"
}
],
"notes": [
{
"category": "general",
"text": "Prometheus is an open-source monitoring system and time series database. Prior to versions 3.5.3 and 3.11.3, the remote read endpoint (/api/v1/read) does not validate the declared decoded length in a snappy-compressed request body before allocating memory. An unauthenticated attacker can send a small payload that causes a huge heap allocation per request. Under concurrent load this can exhaust available memory and crash the Prometheus process. This issue has been patched in versions 3.5.3 and 3.11.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42154",
"url": "https://www.suse.com/security/cve/CVE-2026-42154"
},
{
"category": "external",
"summary": "SUSE Bug 1263987 for CVE-2026-42154",
"url": "https://bugzilla.suse.com/1263987"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "important"
}
],
"title": "CVE-2026-42154"
}
]
}
SUSE-SU-2026:2258-1
Vulnerability from csaf_suse - Published: 2026-06-03 14:22 - Updated: 2026-06-03 14:22Summary
Security update for grafana
Severity
Moderate
Notes
Title of the patch: Security update for grafana
Description of the patch: This update for grafana to version to 11.6.14+security01 fixes the following issues:
- Security Fixes:
- CVE-2026-34986: Fixed unrecoverable error in JWE decryption that could lead to a denial of service (bsc#1262950)
- CVE-2026-41602: Fixed Integer Overflow or Wraparound vulnerability in Apache Thrift (bsc#1263501)
- CVE-2026-26958: Ensure that MultiScalarMult properly handles initialization and produces correct results
(bsc#1258595)
- CVE-2026-21725: Fixed missing UID when deleting datasource by name (bsc#1258873)
- CVE-2026-33375: Fixed denial of Service via out-of-memory exhaustion in MSSQL data source plugin (bsc#1260881)
- CVE-2026-27876: Fixed remote arbitrary code execution via chained SQL Expressions (bsc#1261025)
- CVE-2026-27877: Fixed information disclosure of data-source passwords via public dashboards (bsc#1261026)
- CVE-2026-28375: Fixed denial of service via testdata data-source (bsc#1261029)
- CVE-2026-27879: Fixed denial of service via resample query (bsc#1261027)
- CVE-2026-33186: Fixed authorization bypass due to improper validation of the HTTP/2 :path pseudo-header
(bsc#1260263)
- CVE-2026-21724: Fixed authorization bypass allows modification of protected webhook URLs (bsc#1260878)
- Highlights of other changes and bug fixes:
- Version 11.6.13:
- Wire the public dashboard service to the HTTP server
- Version 11.6.12:
- Update authentication redirect logic
- Fixed single panel render with variable references
Patchnames: SUSE-2026-2258,SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-2258
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
5.4 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
6.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
9.1 (Critical)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
52 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for grafana",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for grafana to version to 11.6.14+security01 fixes the following issues:\n\n- Security Fixes:\n\n - CVE-2026-34986: Fixed unrecoverable error in JWE decryption that could lead to a denial of service (bsc#1262950)\n - CVE-2026-41602: Fixed Integer Overflow or Wraparound vulnerability in Apache Thrift (bsc#1263501)\n - CVE-2026-26958: Ensure that MultiScalarMult properly handles initialization and produces correct results \n (bsc#1258595)\n - CVE-2026-21725: Fixed missing UID when deleting datasource by name (bsc#1258873)\n - CVE-2026-33375: Fixed denial of Service via out-of-memory exhaustion in MSSQL data source plugin (bsc#1260881)\n - CVE-2026-27876: Fixed remote arbitrary code execution via chained SQL Expressions (bsc#1261025)\n - CVE-2026-27877: Fixed information disclosure of data-source passwords via public dashboards (bsc#1261026)\n - CVE-2026-28375: Fixed denial of service via testdata data-source (bsc#1261029)\n - CVE-2026-27879: Fixed denial of service via resample query (bsc#1261027)\n - CVE-2026-33186: Fixed authorization bypass due to improper validation of the HTTP/2 :path pseudo-header\n (bsc#1260263)\n - CVE-2026-21724: Fixed authorization bypass allows modification of protected webhook URLs (bsc#1260878)\n\n- Highlights of other changes and bug fixes:\n\n - Version 11.6.13:\n\n - Wire the public dashboard service to the HTTP server\n\n - Version 11.6.12:\n\n - Update authentication redirect logic\n - Fixed single panel render with variable references\n\n ",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2258,SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-2258",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2258-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2258-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262258-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2258-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-June/047070.html"
},
{
"category": "self",
"summary": "SUSE Bug 1258595",
"url": "https://bugzilla.suse.com/1258595"
},
{
"category": "self",
"summary": "SUSE Bug 1258873",
"url": "https://bugzilla.suse.com/1258873"
},
{
"category": "self",
"summary": "SUSE Bug 1259999",
"url": "https://bugzilla.suse.com/1259999"
},
{
"category": "self",
"summary": "SUSE Bug 1260263",
"url": "https://bugzilla.suse.com/1260263"
},
{
"category": "self",
"summary": "SUSE Bug 1260878",
"url": "https://bugzilla.suse.com/1260878"
},
{
"category": "self",
"summary": "SUSE Bug 1260881",
"url": "https://bugzilla.suse.com/1260881"
},
{
"category": "self",
"summary": "SUSE Bug 1261025",
"url": "https://bugzilla.suse.com/1261025"
},
{
"category": "self",
"summary": "SUSE Bug 1261026",
"url": "https://bugzilla.suse.com/1261026"
},
{
"category": "self",
"summary": "SUSE Bug 1261027",
"url": "https://bugzilla.suse.com/1261027"
},
{
"category": "self",
"summary": "SUSE Bug 1261029",
"url": "https://bugzilla.suse.com/1261029"
},
{
"category": "self",
"summary": "SUSE Bug 1262950",
"url": "https://bugzilla.suse.com/1262950"
},
{
"category": "self",
"summary": "SUSE Bug 1263501",
"url": "https://bugzilla.suse.com/1263501"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-29923 page",
"url": "https://www.suse.com/security/cve/CVE-2025-29923/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-21724 page",
"url": "https://www.suse.com/security/cve/CVE-2026-21724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-21725 page",
"url": "https://www.suse.com/security/cve/CVE-2026-21725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26958 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26958/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27876 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27876/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27877 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27877/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27879 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27879/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-28375 page",
"url": "https://www.suse.com/security/cve/CVE-2026-28375/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33375 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33375/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-34986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-34986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41602 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41602/"
}
],
"title": "Security update for grafana",
"tracking": {
"current_release_date": "2026-06-03T14:22:06Z",
"generator": {
"date": "2026-06-03T14:22:06Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2258-1",
"initial_release_date": "2026-06-03T14:22:06Z",
"revision_history": [
{
"date": "2026-06-03T14:22:06Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grafana-11.6.14+security01-150200.3.88.1.aarch64",
"product": {
"name": "grafana-11.6.14+security01-150200.3.88.1.aarch64",
"product_id": "grafana-11.6.14+security01-150200.3.88.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"product": {
"name": "grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"product_id": "grafana-11.6.14+security01-150200.3.88.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-11.6.14+security01-150200.3.88.1.s390x",
"product": {
"name": "grafana-11.6.14+security01-150200.3.88.1.s390x",
"product_id": "grafana-11.6.14+security01-150200.3.88.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-11.6.14+security01-150200.3.88.1.x86_64",
"product": {
"name": "grafana-11.6.14+security01-150200.3.88.1.x86_64",
"product_id": "grafana-11.6.14+security01-150200.3.88.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:packagehub:15:sp7"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.14+security01-150200.3.88.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64"
},
"product_reference": "grafana-11.6.14+security01-150200.3.88.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.14+security01-150200.3.88.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le"
},
"product_reference": "grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.14+security01-150200.3.88.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x"
},
"product_reference": "grafana-11.6.14+security01-150200.3.88.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.14+security01-150200.3.88.1.x86_64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
},
"product_reference": "grafana-11.6.14+security01-150200.3.88.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-29923",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-29923"
}
],
"notes": [
{
"category": "general",
"text": "go-redis is the official Redis client library for the Go programming language. Prior to 9.5.5, 9.6.3, and 9.7.3, go-redis potentially responds out of order when `CLIENT SETINFO` times out during connection establishment. This can happen when the client is configured to transmit its identity, there are network connectivity issues, or the client was configured with aggressive timeouts. The problem occurs for multiple use cases. For sticky connections, you receive persistent out-of-order responses for the lifetime of the connection. All commands in the pipeline receive incorrect responses. When used with the default ConnPool once a connection is returned after use with ConnPool#Put the read buffer will be checked and the connection will be marked as bad due to the unread data. This means that at most one out-of-order response before the connection is discarded. This issue is fixed in 9.5.5, 9.6.3, and 9.7.3. You can prevent the vulnerability by setting the flag DisableIndentity to true when constructing the client instance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-29923",
"url": "https://www.suse.com/security/cve/CVE-2025-29923"
},
{
"category": "external",
"summary": "SUSE Bug 1241152 for CVE-2025-29923",
"url": "https://bugzilla.suse.com/1241152"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "low"
}
],
"title": "CVE-2025-29923"
},
{
"cve": "CVE-2026-21724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-21724"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability has been discovered in Grafana OSS where an authorization bypass in the provisioning contact points API allows users with Editor role to modify protected webhook URLs without the required alert.notifications.receivers.protected:write permission.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-21724",
"url": "https://www.suse.com/security/cve/CVE-2026-21724"
},
{
"category": "external",
"summary": "SUSE Bug 1260878 for CVE-2026-21724",
"url": "https://bugzilla.suse.com/1260878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "moderate"
}
],
"title": "CVE-2026-21724"
},
{
"cve": "CVE-2026-21725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-21725"
}
],
"notes": [
{
"category": "general",
"text": "A time-of-create-to-time-of-use (TOCTOU) vulnerability lets recently deleted-then-recreated data sources be re-deleted without permission to do so.\n\nThis requires several very stringent conditions to be met:\n\n- The attacker must have admin access to the specific datasource prior to its first deletion.\n- Upon deletion, all steps within the attack must happen within the next 30 seconds and on the same pod of Grafana.\n- The attacker must delete the datasource, then someone must recreate it.\n- The new datasource must not have the attacker as an admin.\n- The new datasource must have the same UID as the prior datasource. These are randomised by default.\n- The datasource can now be re-deleted by the attacker.\n- Once 30 seconds are up, the attack is spent and cannot be repeated.\n- No datasource with any other UID can be attacked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-21725",
"url": "https://www.suse.com/security/cve/CVE-2026-21725"
},
{
"category": "external",
"summary": "SUSE Bug 1258873 for CVE-2026-21725",
"url": "https://bugzilla.suse.com/1258873"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "low"
}
],
"title": "CVE-2026-21725"
},
{
"cve": "CVE-2026-26958",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26958"
}
],
"notes": [
{
"category": "general",
"text": "filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and earlier, MultiScalarMult produces invalid results or undefined behavior if the receiver is not the identity point. If (*Point).MultiScalarMult is called on an initialized point that is not the identity point, it returns an incorrect result. If the method is called on an uninitialized point, the behavior is undefined. In particular, if the receiver is the zero value, MultiScalarMult returns an invalid point that compares Equal to every other point. Note that MultiScalarMult is a rarely used, advanced API. For example, users who depend on filippo.io/edwards25519 only through github.com/go-sql-driver/mysql are not affected. This issue has been fixed in version 1.1.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26958",
"url": "https://www.suse.com/security/cve/CVE-2026-26958"
},
{
"category": "external",
"summary": "SUSE Bug 1258570 for CVE-2026-26958",
"url": "https://bugzilla.suse.com/1258570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "moderate"
}
],
"title": "CVE-2026-26958"
},
{
"cve": "CVE-2026-27876",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27876"
}
],
"notes": [
{
"category": "general",
"text": "A chained attack via SQL Expressions and a Grafana Enterprise plugin can lead to a remote arbitrary code execution impact (RCE). This is enabled by a feature in Grafana (OSS), so all users are always recommended to update to avoid future attack vectors going this path.\n\nOnly instances with the sqlExpressions feature toggle enabled are vulnerable.\n\nOnly instances in the following version ranges are affected:\n\n- 11.6.0 (inclusive) to 11.6.14 (exclusive): 11.6.14 has the fix. 11.5 and below are not affected.\n- 12.0.0 (inclusive) to 12.1.10 (exclusive): 12.1.10 has the fix. 12.0 did not receive an update, as it is end-of-life.\n- 12.2.0 (inclusive) to 12.2.8 (exclusive): 12.2.8 has the fix.\n- 12.3.0 (inclusive) to 12.3.6 (exclusive): 12.3.6 has the fix.\n- 12.4.0 (inclusive) to 12.4.2 (exclusive): 12.4.2 has the fix. 13.0.0 and above also have the fix: no v13 release is affected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27876",
"url": "https://www.suse.com/security/cve/CVE-2026-27876"
},
{
"category": "external",
"summary": "SUSE Bug 1261025 for CVE-2026-27876",
"url": "https://bugzilla.suse.com/1261025"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "critical"
}
],
"title": "CVE-2026-27876"
},
{
"cve": "CVE-2026-27877",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27877"
}
],
"notes": [
{
"category": "general",
"text": "When using public dashboards and direct data-sources, all direct data-sources\u0027 passwords are exposed despite not being used in dashboards.\n\nNo passwords of proxied data-sources are exposed. We encourage all direct data-sources to be converted to proxied data-sources as far as possible to improve your deployments\u0027 security.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27877",
"url": "https://www.suse.com/security/cve/CVE-2026-27877"
},
{
"category": "external",
"summary": "SUSE Bug 1261026 for CVE-2026-27877",
"url": "https://bugzilla.suse.com/1261026"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "important"
}
],
"title": "CVE-2026-27877"
},
{
"cve": "CVE-2026-27879",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27879"
}
],
"notes": [
{
"category": "general",
"text": "A resample query can be used to trigger out-of-memory crashes in Grafana.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27879",
"url": "https://www.suse.com/security/cve/CVE-2026-27879"
},
{
"category": "external",
"summary": "SUSE Bug 1261027 for CVE-2026-27879",
"url": "https://bugzilla.suse.com/1261027"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "moderate"
}
],
"title": "CVE-2026-27879"
},
{
"cve": "CVE-2026-28375",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-28375"
}
],
"notes": [
{
"category": "general",
"text": "A testdata data-source can be used to trigger out-of-memory crashes in Grafana.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-28375",
"url": "https://www.suse.com/security/cve/CVE-2026-28375"
},
{
"category": "external",
"summary": "SUSE Bug 1261029 for CVE-2026-28375",
"url": "https://bugzilla.suse.com/1261029"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "moderate"
}
],
"title": "CVE-2026-28375"
},
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
},
{
"cve": "CVE-2026-33375",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33375"
}
],
"notes": [
{
"category": "general",
"text": "The Grafana MSSQL data source plugin contains a logic flaw that allows a low-privileged user (Viewer) to bypass API restrictions and trigger a catastrophic Out-Of-Memory (OOM) memory exhaustion, crashing the host container.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33375",
"url": "https://www.suse.com/security/cve/CVE-2026-33375"
},
{
"category": "external",
"summary": "SUSE Bug 1260881 for CVE-2026-33375",
"url": "https://bugzilla.suse.com/1260881"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "moderate"
}
],
"title": "CVE-2026-33375"
},
{
"cve": "CVE-2026-34986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-34986"
}
],
"notes": [
{
"category": "general",
"text": "Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards. Prior to 4.1.4 and 3.0.5, decrypting a JSON Web Encryption (JWE) object will panic if the alg field indicates a key wrapping algorithm (one ending in KW, with the exception of A128GCMKW, A192GCMKW, and A256GCMKW) and the encrypted_key field is empty. The panic happens when cipher.KeyUnwrap() in key_wrap.go attempts to allocate a slice with a zero or negative length based on the length of the encrypted_key. This code path is reachable from ParseEncrypted() / ParseEncryptedJSON() / ParseEncryptedCompact() followed by Decrypt() on the resulting object. Note that the parse functions take a list of accepted key algorithms. If the accepted key algorithms do not include any key wrapping algorithms, parsing will fail and the application will be unaffected. This panic is also reachable by calling cipher.KeyUnwrap() directly with any ciphertext parameter less than 16 bytes long, but calling this function directly is less common. Panics can lead to denial of service. This vulnerability is fixed in 4.1.4 and 3.0.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-34986",
"url": "https://www.suse.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "SUSE Bug 1262805 for CVE-2026-34986",
"url": "https://bugzilla.suse.com/1262805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "important"
}
],
"title": "CVE-2026-34986"
},
{
"cve": "CVE-2026-41602",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41602"
}
],
"notes": [
{
"category": "general",
"text": "Integer Overflow or Wraparound vulnerability in Apache Thrift TFramedTransport Go language implementation\n\nThis issue affects Apache Thrift: before 0.23.0.\n\nUsers are recommended to upgrade to version 0.23.0, which fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41602",
"url": "https://www.suse.com/security/cve/CVE-2026-41602"
},
{
"category": "external",
"summary": "SUSE Bug 1263496 for CVE-2026-41602",
"url": "https://bugzilla.suse.com/1263496"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "important"
}
],
"title": "CVE-2026-41602"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…