SUSE-SU-2024:1427-1

This update fixes the following issues:

POS_Image-Graphical7:

• Update to version 0.1.1710765237.46af599
  • Move image services to dracut-saltboot package
  • Use salt bundle
• Update to version 0.1.1645440615.7f1328c
  • Remove deprecated kiwi functions

POS_Image-JeOS7:

• Update to version 0.1.1710765237.46af599
  • Move image services to dracut-saltboot package
  • Use salt bundle
• Update to version 0.1.1645440615.7f1328c
  • Remove deprecated kiwi functions

ansible:

• CVE-2023-5764: Address issues where internal templating can cause unsafe variables to lose their unsafe designation (bsc#1216854)
  • breaking_changes: assert - Nested templating may result in an inability for the conditional to be evaluated. See the porting guide for more information.
• CVE-2024-0690: Address issue where ANSIBLE_NO_LOG was ignored (bsc#1219002)
• CVE-2020-14365: Do a GPG validation if the disable_gpg_check option is not set. (bsc#1175993)
• Don't Require python-coverage, it is needed only for testing (bsc#1177948)
• CVE-2018-10874: Inventory variables are loaded from current working directory when running ad-hoc command that can lead to code execution (included upstream in 2.6.1) (bsc#1099805)

dracut-saltboot:

• Update to version 0.1.1710765237.46af599
  • Load only first available leaseinfo (bsc#1221092)
• Update to version 0.1.1681904360.84ef141

grafana:

• Require Go 1.20
• Update to version 9.5.16:
  • [SECURITY] CVE-2023-6152: Add email verification when updating user email (bsc#1219912)
  • [BUGFIX] Annotations: Split cleanup into separate queries and deletes to avoid deadlocks on MySQL
• Update to version 9.5.15:
  • [FEATURE] Alerting: Attempt to retry retryable errors
• Update to version 9.5.14:
  • [BUGFIX] Alerting: Fix state manager to not keep datasource_uid and ref_id labels in state after Error
  • [BUGFIX] Transformations: Config overrides being lost when config from query transform is applied
  • [BUGFIX] LDAP: Fix enable...