SUSE-SU-2026:1194-1

Details

This update for google-cloud-sap-agent fixes the following issue:

Update to google-cloud-sap-agent 3.12 (bsc#1259816):

CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo- header (bsc#1260265).

Changelog:

Collect WLM metric saphanasr_angi_installed for all OS types.
Failure handling: Remove attached disks from CG
OTE Status checks for Parameter Manager (SAP Agent)
Log command-line arguments in configureinstance.
Minor multiple reliability checks and fixes
Support custom names for restored disks in hanadiskrestore
Add newAttachedDisks to Restorer and detach them on restore failure.
Improve unit test coverage for hanadiskbackup and hanadiskrestore
Add support for refresh point tests.
Refactor HANA disk backup user validation and physical path parsing.
Auto updated compiled protocol buffers
Parameter Manager integration to SAP Agent
Modify collection logic for SAP HANA configuration files.
Update workloadagentplatform version and hash.
Update WLM Validation metrics to support SAPHanaSR-angi setups.
Increment agent version to 3.12.
SAP HANA Pacemaker failover settings can come from SAPHanaController.
Update collection for WLM metric ha_sr_hook_configured.
Refactor CheckTopology to accept instance number.
Use constant backoff with max retries for snapshot group operations.
Update workloadagentplatform dependency

Affected Packages

google-cloud-sap-agent

SUSE Linux Enterprise Module for Public Cloud 15 SP4SUSE Linux Enterprise Module for Public Cloud 15 SP5SUSE Linux Enterprise Module for Public Cloud 15 SP6SUSE Linux Enterprise Module for Public Cloud 15 SP7openSUSE Leap 15.6

Fixed in:

3.12-150100.3.63.1

References

REPORT

https://bugzilla.suse.com/1259816

REPORT

https://bugzilla.suse.com/1260265

WEB

https://www.suse.com/security/cve/CVE-2026-33186

ADVISORY

https://www.suse.com/support/update/announcement/2026/suse-su-20261194-1/