SUSE update for Maintenance update for SUSE Manager 4.3: Server, Proxy and Retail Branch Server
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2023-22644 |
| CWE-ID | CWE-532 |
| Exploitation vector | Local |
| Public exploit | N/A |
| Vulnerable software |
Public Cloud Module Operating systems & Components / Operating system SUSE Manager Proxy Module Operating systems & Components / Operating system SUSE Linux Enterprise Server for SAP Applications 15 Operating systems & Components / Operating system SUSE Linux Enterprise Server 15 Operating systems & Components / Operating system SUSE Linux Enterprise High Performance Computing 15 Operating systems & Components / Operating system SUSE Manager Server Module Operating systems & Components / Operating system openSUSE Leap Operating systems & Components / Operating system SUSE Manager Retail Branch Server Operating systems & Components / Operating system SUSE Manager Server Operating systems & Components / Operating system SUSE Manager Proxy Operating systems & Components / Operating system spacewalk-backend-app Operating systems & Components / Operating system package or component spacewalk-backend-package-push-server Operating systems & Components / Operating system package or component uyuni-config-modules Operating systems & Components / Operating system package or component spacewalk-backend-applet Operating systems & Components / Operating system package or component spacewalk-backend-tools Operating systems & Components / Operating system package or component billing-data-service Operating systems & Components / Operating system package or component spacewalk-java-postgresql Operating systems & Components / Operating system package or component spacewalk-java-lib Operating systems & Components / Operating system package or component subscription-matcher Operating systems & Components / Operating system package or component spacewalk-backend-server Operating systems & Components / Operating system package or component spacewalk-java Operating systems & Components / Operating system package or component uyuni-reportdb-schema Operating systems & Components / Operating system package or component spacewalk-backend-sql Operating systems & Components / Operating system package or component spacewalk-backend-config-files Operating systems & Components / Operating system package or component spacewalk-java-config Operating systems & Components / Operating system package or component spacewalk-backend-xml-export-libs Operating systems & Components / Operating system package or component spacewalk-backend-iss-export Operating systems & Components / Operating system package or component susemanager-schema-utility Operating systems & Components / Operating system package or component spacewalk-backend-xmlrpc Operating systems & Components / Operating system package or component spacewalk-html Operating systems & Components / Operating system package or component susemanager-sls Operating systems & Components / Operating system package or component susemanager-docs_en Operating systems & Components / Operating system package or component spacewalk-taskomatic Operating systems & Components / Operating system package or component spacewalk-backend-iss Operating systems & Components / Operating system package or component susemanager-schema Operating systems & Components / Operating system package or component spacewalk-base Operating systems & Components / Operating system package or component spacewalk-backend-sql-postgresql Operating systems & Components / Operating system package or component susemanager-docs_en-pdf Operating systems & Components / Operating system package or component spacewalk-backend-config-files-common Operating systems & Components / Operating system package or component susemanager-sync-data Operating systems & Components / Operating system package or component spacewalk-search Operating systems & Components / Operating system package or component spacewalk-backend-config-files-tool Operating systems & Components / Operating system package or component inter-server-sync-debuginfo Operating systems & Components / Operating system package or component susemanager Operating systems & Components / Operating system package or component susemanager-tools Operating systems & Components / Operating system package or component inter-server-sync Operating systems & Components / Operating system package or component spacewalk-base-minimal-config Operating systems & Components / Operating system package or component susemanager-tftpsync-recv Operating systems & Components / Operating system package or component spacewalk-base-minimal Operating systems & Components / Operating system package or component spacewalk-client-tools Operating systems & Components / Operating system package or component python3-spacewalk-client-setup Operating systems & Components / Operating system package or component spacewalk-proxy-package-manager Operating systems & Components / Operating system package or component spacewalk-proxy-management Operating systems & Components / Operating system package or component spacewalk-check Operating systems & Components / Operating system package or component spacewalk-proxy-salt Operating systems & Components / Operating system package or component spacewalk-backend Operating systems & Components / Operating system package or component spacewalk-proxy-common Operating systems & Components / Operating system package or component spacewalk-proxy-broker Operating systems & Components / Operating system package or component python3-spacewalk-check Operating systems & Components / Operating system package or component spacewalk-client-setup Operating systems & Components / Operating system package or component spacewalk-proxy-redirect Operating systems & Components / Operating system package or component python3-spacewalk-client-tools Operating systems & Components / Operating system package or component spacecmd Operating systems & Components / Operating system package or component apache2-mod_wsgi-debuginfo Operating systems & Components / Operating system package or component apache2-mod_wsgi Operating systems & Components / Operating system package or component apache2-mod_wsgi-debugsource Operating systems & Components / Operating system package or component |
| Vendor | SUSE |
Security Bulletin
This security bulletin contains one low risk vulnerability.
1) Inclusion of Sensitive Information in Log Files
EUVDB-ID: #VU84791
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-22644
CWE-ID:
CWE-532 - Information Exposure Through Log Files
Exploit availability: No
DescriptionThe vulnerability allows a local user to gain access to sensitive information.
The vulnerability exists due to software stores sensitive information into log files. A local user can read the log files and gain access to sensitive data.
MitigationUpdate the affected package Maintenance update for SUSE Manager 4.3: Server, Proxy and Retail Branch Server to the latest version.
Vulnerable software versionsPublic Cloud Module: 15-SP4 - 15-SP5
SUSE Manager Proxy Module: 4.3
SUSE Linux Enterprise Server for SAP Applications 15: SP4 - SP5
SUSE Linux Enterprise Server 15: SP4 - SP5
SUSE Linux Enterprise High Performance Computing 15: SP4 - SP5
SUSE Manager Server Module: 4.3
openSUSE Leap: 15.4 - 15.5
SUSE Manager Retail Branch Server: 4.3
SUSE Manager Server: 4.3
SUSE Manager Proxy: 4.3
spacewalk-backend-app: before 4.3.25-150400.3.33.7
spacewalk-backend-package-push-server: before 4.3.25-150400.3.33.7
uyuni-config-modules: before 4.3.37-150400.3.37.5
spacewalk-backend-applet: before 4.3.25-150400.3.33.7
spacewalk-backend-tools: before 4.3.25-150400.3.33.7
billing-data-service: before 4.3.2-150400.10.12.5
spacewalk-java-postgresql: before 4.3.69-150400.3.69.5
spacewalk-java-lib: before 4.3.69-150400.3.69.5
subscription-matcher: before 0.33-150400.3.16.3
spacewalk-backend-server: before 4.3.25-150400.3.33.7
spacewalk-java: before 4.3.69-150400.3.69.5
uyuni-reportdb-schema: before 4.3.8-150400.3.9.6
spacewalk-backend-sql: before 4.3.25-150400.3.33.7
spacewalk-backend-config-files: before 4.3.25-150400.3.33.7
spacewalk-java-config: before 4.3.69-150400.3.69.5
spacewalk-backend-xml-export-libs: before 4.3.25-150400.3.33.7
spacewalk-backend-iss-export: before 4.3.25-150400.3.33.7
susemanager-schema-utility: before 4.3.22-150400.3.30.5
spacewalk-backend-xmlrpc: before 4.3.25-150400.3.33.7
spacewalk-html: before 4.3.36-150400.3.36.7
susemanager-sls: before 4.3.37-150400.3.37.5
susemanager-docs_en: before 4.3-150400.9.50.5
spacewalk-taskomatic: before 4.3.69-150400.3.69.5
spacewalk-backend-iss: before 4.3.25-150400.3.33.7
susemanager-schema: before 4.3.22-150400.3.30.5
spacewalk-base: before 4.3.36-150400.3.36.7
spacewalk-backend-sql-postgresql: before 4.3.25-150400.3.33.7
susemanager-docs_en-pdf: before 4.3-150400.9.50.5
spacewalk-backend-config-files-common: before 4.3.25-150400.3.33.7
susemanager-sync-data: before 4.3.14-150400.3.17.5
spacewalk-search: before 4.3.10-150400.3.15.4
spacewalk-backend-config-files-tool: before 4.3.25-150400.3.33.7
inter-server-sync-debuginfo: before 0.3.1-150400.3.24.5
susemanager: before 4.3.33-150400.3.42.4
susemanager-tools: before 4.3.33-150400.3.42.4
inter-server-sync: before 0.3.1-150400.3.24.5
spacewalk-base-minimal-config: before 4.3.36-150400.3.36.7
susemanager-tftpsync-recv: before 4.3.9-150400.3.9.5
spacewalk-base-minimal: before 4.3.36-150400.3.36.7
spacewalk-client-tools: before 4.3.17-150400.3.21.6
python3-spacewalk-client-setup: before 4.3.17-150400.3.21.6
spacewalk-proxy-package-manager: before 4.3.17-150400.3.23.5
spacewalk-proxy-management: before 4.3.17-150400.3.23.5
spacewalk-check: before 4.3.17-150400.3.21.6
spacewalk-proxy-salt: before 4.3.17-150400.3.23.5
spacewalk-backend: before 4.3.25-150400.3.33.7
spacewalk-proxy-common: before 4.3.17-150400.3.23.5
spacewalk-proxy-broker: before 4.3.17-150400.3.23.5
python3-spacewalk-check: before 4.3.17-150400.3.21.6
spacewalk-client-setup: before 4.3.17-150400.3.21.6
spacewalk-proxy-redirect: before 4.3.17-150400.3.23.5
python3-spacewalk-client-tools: before 4.3.17-150400.3.21.6
spacecmd: before 4.3.25-150400.3.30.5
apache2-mod_wsgi-debuginfo: before 4.7.1-150400.3.9.4
apache2-mod_wsgi: before 4.7.1-150400.3.9.4
apache2-mod_wsgi-debugsource: before 4.7.1-150400.3.9.4
CPE2.3- cpe:2.3:o:suse:public_cloud_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:public_cloud_module:15-SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_proxy_module:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_server_module:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
- cpe:2.3:a:suse:spacewalk-backend-app:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-backend-package-push-server:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:uyuni-config-modules:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-backend-applet:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-backend-tools:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:billing-data-service:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-java-postgresql:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-java-lib:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:subscription-matcher:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-backend-server:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-java:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:uyuni-reportdb-schema:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-backend-sql:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-backend-config-files:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-java-config:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-backend-xml-export-libs:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-backend-iss-export:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:susemanager-schema-utility:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-backend-xmlrpc:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-html:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:susemanager-sls:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:susemanager-docs_en:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-taskomatic:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-backend-iss:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:susemanager-schema:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-base:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-backend-sql-postgresql:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:susemanager-docs_en-pdf:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-backend-config-files-common:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:susemanager-sync-data:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-search:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-backend-config-files-tool:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:inter-server-sync-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:susemanager:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:susemanager-tools:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:inter-server-sync:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-base-minimal-config:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:susemanager-tftpsync-recv:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-base-minimal:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-client-tools:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:python3-spacewalk-client-setup:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-proxy-package-manager:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-proxy-management:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-check:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-proxy-salt:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-backend:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-proxy-common:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-proxy-broker:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:python3-spacewalk-check:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-client-setup:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacewalk-proxy-redirect:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:python3-spacewalk-client-tools:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:spacecmd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:apache2-mod_wsgi-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:apache2-mod_wsgi:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:apache2-mod_wsgi-debugsource:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2023/suse-su-20234737-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
