{"affected":[{"ecosystem_specific":{"binaries":[{"koan":"2.6.6-45.1","rhnlib":"2.5.84.4-17.1","spacecmd":"2.5.5.5-34.1","spacewalk-backend-libs":"2.5.24.9-51.1","spacewalk-check":"2.5.13.8-48.1","spacewalk-client-setup":"2.5.13.8-48.1","spacewalk-client-tools":"2.5.13.8-48.1"}]},"package":{"ecosystem":"SUSE:Manager Client Tools 12","name":"cobbler","purl":"pkg:rpm/suse/cobbler&distro=SUSE%20Manager%20Client%20Tools%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.6.6-45.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"koan":"2.6.6-45.1","rhnlib":"2.5.84.4-17.1","spacecmd":"2.5.5.5-34.1","spacewalk-backend-libs":"2.5.24.9-51.1","spacewalk-check":"2.5.13.8-48.1","spacewalk-client-setup":"2.5.13.8-48.1","spacewalk-client-tools":"2.5.13.8-48.1"}]},"package":{"ecosystem":"SUSE:Manager Client Tools 12","name":"rhnlib","purl":"pkg:rpm/suse/rhnlib&distro=SUSE%20Manager%20Client%20Tools%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.5.84.4-17.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"koan":"2.6.6-45.1","rhnlib":"2.5.84.4-17.1","spacecmd":"2.5.5.5-34.1","spacewalk-backend-libs":"2.5.24.9-51.1","spacewalk-check":"2.5.13.8-48.1","spacewalk-client-setup":"2.5.13.8-48.1","spacewalk-client-tools":"2.5.13.8-48.1"}]},"package":{"ecosystem":"SUSE:Manager Client Tools 12","name":"spacecmd","purl":"pkg:rpm/suse/spacecmd&distro=SUSE%20Manager%20Client%20Tools%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.5.5.5-34.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"koan":"2.6.6-45.1","rhnlib":"2.5.84.4-17.1","spacecmd":"2.5.5.5-34.1","spacewalk-backend-libs":"2.5.24.9-51.1","spacewalk-check":"2.5.13.8-48.1","spacewalk-client-setup":"2.5.13.8-48.1","spacewalk-client-tools":"2.5.13.8-48.1"}]},"package":{"ecosystem":"SUSE:Manager Client Tools 12","name":"spacewalk-backend","purl":"pkg:rpm/suse/spacewalk-backend&distro=SUSE%20Manager%20Client%20Tools%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.5.24.9-51.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"koan":"2.6.6-45.1","rhnlib":"2.5.84.4-17.1","spacecmd":"2.5.5.5-34.1","spacewalk-backend-libs":"2.5.24.9-51.1","spacewalk-check":"2.5.13.8-48.1","spacewalk-client-setup":"2.5.13.8-48.1","spacewalk-client-tools":"2.5.13.8-48.1"}]},"package":{"ecosystem":"SUSE:Manager Client Tools 12","name":"spacewalk-client-tools","purl":"pkg:rpm/suse/spacewalk-client-tools&distro=SUSE%20Manager%20Client%20Tools%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"2.5.13.8-48.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"\nThe following security issue in spacewalk-backend has been fixed:\n\n- Non admin or disabled user cannot make changes to a system anymore using spacewalk-channel.\n  (bsc#1026633, CVE-2017-7470)\n\nAdditionally, the following non-security issues have been fixed:\n\ncobbler:\n\n- Support UEFI boot with cobbler generated tftp tree. (bsc#1020376)\n- Refresh patch for fuzzless appliance.\n\nrhnlib:\n\n- Support all TLS versions in rpclib. (bsc#1025312)\n\nspacecmd:\n\n- Improve output on error for listrepo. (bsc#1027426)\n- Reword spacecmd removal message. (bsc#1024406)\n\nspacewalk-backend:\n\n- Do not fail with traceback when media.1 does not exist. (bsc#1032256)\n- Create scap files directory beforehand. (bsc#1029755)\n- Fix error if SPACEWALK_DEBUG_NO_REPORTS env variable is not present.\n- Don't skip 'rhnErrataPackage' cleanup during an errata update. (bsc#1023233)\n- Add support for running spacewalk-debug without creating reports. (bsc#1024714)\n- Set scap store directory mod to 775 and group owner to susemanager.\n- incomplete_package_import: Do import rhnPackageFile as it breaks some package installations.\n- Added traceback printing to the exception block.\n- Change postgresql starting commands.\n\nspacewalk-client-tools:\n\n- Fix reboot message to use correct product name. (bsc#1031667)\n","id":"SUSE-SU-2017:1352-1","modified":"2017-05-18T22:18:32Z","published":"2017-05-18T22:18:32Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2017/suse-su-20171352-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1020376"},{"type":"REPORT","url":"https://bugzilla.suse.com/1023233"},{"type":"REPORT","url":"https://bugzilla.suse.com/1024406"},{"type":"REPORT","url":"https://bugzilla.suse.com/1024714"},{"type":"REPORT","url":"https://bugzilla.suse.com/1025312"},{"type":"REPORT","url":"https://bugzilla.suse.com/1026633"},{"type":"REPORT","url":"https://bugzilla.suse.com/1027426"},{"type":"REPORT","url":"https://bugzilla.suse.com/1029755"},{"type":"REPORT","url":"https://bugzilla.suse.com/1031667"},{"type":"REPORT","url":"https://bugzilla.suse.com/1032256"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2017-7470"}],"related":["CVE-2017-7470"],"summary":"Security update for SUSE Manager Client Tools","upstream":["CVE-2017-7470"]}