SUSE-SU-2025:20124-1

See a problem?
Please try reporting it to the source first.
Source
https://www.suse.com/support/update/announcement/2025/suse-su-202520124-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:20124-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2025:20124-1
Upstream
  • CVE-2024-22037
Related
  • CVE-2024-22037
Published
2025-02-13T08:38:09Z
Modified
2026-03-23T04:47:09.695845Z
Summary
Security update for SUSE Manager Client Tools
Details

This update fixes the following issues:

salt:

  • Revert setting SELinux context for minion service (bsc#1233667)
  • Removed System V init support
  • Fix the condition of alternatives for Tumbleweed and Leap 16
  • Build all python bindings for all flavors
  • Make minion reconnecting on changing master IP (bsc#1228182)
  • Handle logger exception when flushing already closed file
  • Include passlib as a recommended dependency
  • Make Salt Bundle more tolerant to long running jobs (bsc#1228690)

uyuni-tools was updated from version 0.1.23-0 to 0.1.27-0:

  • Security issues fixed:
    • CVE-2024-22037: Use podman secret to store the database credentials (bsc#1231497)
  • Other changes and bugs fixed:
    • Version 0.1.27-0
      • Bump the default image tag to 5.0.3
      • IsInstalled function fix
      • Run systemctl daemon-reload after changing the container image config (bsc#1233279)
      • Coco-replicas-upgrade
      • Persist search server indexes (bsc#1231759)
      • Sync deletes files during migration (bsc#1233660)
      • Ignore coco and hub images when applying PTF if they are not ailable (bsc#1229079)
      • Add --registry back to mgrpxy (bsc#1233202)
      • Only add java.hostname on migrated server if not present
      • Consider the configuration file to detect the coco or hub api images should be pulled (bsc#1229104)
      • Only raise an error if cloudguestregistryauth fails for PAYG (bsc#1233630)
      • Add registry.suse.com login to mgradm upgrade podman list (bsc#1234123)
    • Version 0.1.26-0
      • Ignore all zypper caches during migration (bsc#1232769)
      • Use the uyuni network for all podman containers (bsc#1232817)
    • Version 0.1.25-0
      • Don't migrate enabled systemd services, recreate them (bsc#1232575)
    • Version 0.1.24-0
      • Redact JSESSIONID and pxt-session-cookie values from logs and console output (bsc#1231568)

venv-salt-minion:

  • Included D-Bus python module for SUSE distros (bsc#1231618)
  • Reverted setting SELinux context for minion service (bsc#1233667)
  • Make minion reconnecting on changing master IP (bsc#1228182)
  • Fixed poststartcleanup.sh shebang to work on all systems
  • Handle logger exception when flushing already closed file
  • Made Salt Bundle more tolerant to long running jobs (bsc#1228690)
  • Modified:
    • include-rpm
    • filter-requires.sh
References

Affected packages

SUSE:Linux Micro 6.0 / salt

Package

Name
salt
Purl
pkg:rpm/suse/salt&distro=SUSE%20Linux%20Micro%206.0

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3006.0-9.1

Ecosystem specific 

{
    "binaries": [
        {
            "salt": "3006.0-9.1",
            "salt-minion": "3006.0-9.1",
            "python311-salt": "3006.0-9.1",
            "salt-transactional-update": "3006.0-9.1",
            "salt-master": "3006.0-9.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:20124-1.json"