{"affected":[{"ecosystem_specific":{"binaries":[{"kiwi-desc-saltboot":"0.1.1687520761.cefb248-1.35.2","prometheus-blackbox_exporter":"0.24.0-1.20.3","python-tornado":"4.2.1-17.7.1","python3-tornado":"4.2.1-17.7.1","spacecmd":"4.3.22-38.124.3"}]},"package":{"ecosystem":"SUSE:Manager Client Tools 12","name":"kiwi-desc-saltboot","purl":"pkg:rpm/suse/kiwi-desc-saltboot&distro=SUSE%20Manager%20Client%20Tools%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"0.1.1687520761.cefb248-1.35.2"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kiwi-desc-saltboot":"0.1.1687520761.cefb248-1.35.2","prometheus-blackbox_exporter":"0.24.0-1.20.3","python-tornado":"4.2.1-17.7.1","python3-tornado":"4.2.1-17.7.1","spacecmd":"4.3.22-38.124.3"}]},"package":{"ecosystem":"SUSE:Manager Client Tools 12","name":"prometheus-blackbox_exporter","purl":"pkg:rpm/suse/prometheus-blackbox_exporter&distro=SUSE%20Manager%20Client%20Tools%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"0.24.0-1.20.3"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kiwi-desc-saltboot":"0.1.1687520761.cefb248-1.35.2","prometheus-blackbox_exporter":"0.24.0-1.20.3","python-tornado":"4.2.1-17.7.1","python3-tornado":"4.2.1-17.7.1","spacecmd":"4.3.22-38.124.3"}]},"package":{"ecosystem":"SUSE:Manager Client Tools 12","name":"python-tornado","purl":"pkg:rpm/suse/python-tornado&distro=SUSE%20Manager%20Client%20Tools%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.2.1-17.7.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"kiwi-desc-saltboot":"0.1.1687520761.cefb248-1.35.2","prometheus-blackbox_exporter":"0.24.0-1.20.3","python-tornado":"4.2.1-17.7.1","python3-tornado":"4.2.1-17.7.1","spacecmd":"4.3.22-38.124.3"}]},"package":{"ecosystem":"SUSE:Manager Client Tools 12","name":"spacecmd","purl":"pkg:rpm/suse/spacecmd&distro=SUSE%20Manager%20Client%20Tools%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.3.22-38.124.3"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python-tornado":"4.2.1-17.7.1","python3-tornado":"4.2.1-17.7.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Advanced Systems Management 12","name":"python-tornado","purl":"pkg:rpm/suse/python-tornado&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Advanced%20Systems%20Management%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.2.1-17.7.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update fixes the following issues:\n\npython-tornado:\n\n- Security fixes:\n  * CVE-2023-28370: Fixed an open redirect issue in the static file handler (bsc#1211741)\n\nkiwi-desc-saltboot:\n\n- Update to version 0.1.1687520761.cefb248\n  * Add osimage cert package to bootstrap for SUSE Linux Enterprise 12 images (bsc#1204089)\n\nprometheus-blackbox_exporter:\n\n- Use obscpio for go modules service\n- Set version number\n- Set build date from SOURCE_DATE_EPOCH\n- Update to 0.24.0 (bsc#1212279, jsc#PED-4556)\n  * Requires go1.19\n- Avoid empty validation script\n- Add rc symlink for backwards compatibility\n    \nspacecmd:\n\n- Version 4.3.22-1\n  * Bypass traditional systems check on older SUMA instances (bsc#1208612)\n\n","id":"SUSE-SU-2023:3122-1","modified":"2023-08-02T07:11:22Z","published":"2023-08-02T07:11:22Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2023/suse-su-20233122-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1204089"},{"type":"REPORT","url":"https://bugzilla.suse.com/1208612"},{"type":"REPORT","url":"https://bugzilla.suse.com/1211741"},{"type":"REPORT","url":"https://bugzilla.suse.com/1212279"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-28370"}],"related":["CVE-2023-28370"],"summary":"Security update for SUSE Manager Client Tools","upstream":["CVE-2023-28370"]}