Name of the Vulnerable Software and Affected Versions spacewalk-java versions 4.3.52-1 spacewalk-web versions 4.3.29-1

Description The issue is related to the logging of sensitive data through the HTTP API. To address this, more restricted arguments have been added to prevent such logging. Additionally, there are fixes for the datepicker layout, including issues with it appearing behind modal edges and layout shifts on Highstate pages.

Recommendations For spacewalk-java version 4.3.52-1: Apply the patch using either zypper patch or YaST Online Update after stopping the Spacewalk service with spacewalk-service stop, then start the service again with spacewalk-service start. For spacewalk-web version 4.3.29-1: Apply the patch using either zypper patch or YaST Online Update after stopping the Spacewalk service with spacewalk-service stop, then start the service again with spacewalk-service start.