SUSE-SU-2025:01994-1
- Source
- https://www.suse.com/support/update/announcement/2025/suse-su-202501994-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:01994-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2025:01994-1
- Related
- Published
- 2025-06-18T02:13:38Z
- Modified
- 2025-06-18T12:59:26.832785Z
- Upstream
- Summary
- Security update 4.3.15.2 SUSE Manager Server 4.3
- Details
-
This update fixes the following issues:
netty:
Security issues fixed:
- CVE-2024-47535: Decorate InputStream to throw an exception once the data read limit is reached (bsc#1233297)
Other changes:
- Replace AlgorithmId.sha256WithRSAEncryption_oid usage with specify the OID directly
susemanager-sync-data:
Version 4.3.22-0:
- Added support for OES 24.4 (bsc#1230585)
- Set Ubuntu 24.04 as released
How to apply this update:
- Log in as root user to the Multi-Linux Manager Server.
- Stop the Spacewalk service:
spacewalk-service stop - Apply the patch using either zypper patch or YaST Online Update.
- Start the Spacewalk service:
spacewalk-service start
- References
Affected packages
SUSE:Manager Server Module 4.3 / netty
Package
- Name
- netty
- Purl
- pkg:rpm/suse/netty&distro=SUSE%20Manager%20Server%20Module%204.3