SUSE-SU-2021:1688-1

Source
https://www.suse.com/support/update/announcement/2021/suse-su-20211688-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:1688-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2021:1688-1
Related
Published
2021-05-21T14:41:54Z
Modified
2021-05-21T14:41:54Z
Summary
Security Beta update for Salt
Details

This update fixes the following issues:

salt:

  • Parsing Epoch out of version provided during pkg remove (bsc#1173692)
  • Fix issue parsing errors in ansiblegate state module
  • Prevent command injection in the snapper module (bsc#1185281) (CVE-2021-31607)
  • Transactional_update: detect recursion in the executor
  • Add subpackage salt-transactional-update
  • Remove duplicate directories from specfile
  • Improvements on 'ansiblegate' module (bsc#1185092):
    • New methods: ansible.targets / ansible.discover_playbooks
    • General bugfixes
References

Affected packages