SUSE-SU-2023:3137-1

See a problem?
Please try reporting it to the source first.

Source

Import Source

JSON Data

https://api.test.osv.dev/v1/vulns/SUSE-SU-2023:3137-1

Related

Published

2023-08-02T07:16:39Z

Modified

2023-08-02T07:16:39Z

Summary

Security update for SUSE Manager Salt Bundle

Details

This update fixes the following issues:

venv-salt-minion:

CVE-2023-28370: Tornado: Fix an open redirect issue in the static file handler (bsc#1211741)
Prevent pygit2.GitError: error loading knownhosts when $HOME is not set (bsc#1210994)
Fix ModuleNotFoundError and other issues raised by salt-support module (bsc#1211591)
Make master_tops compatible with Salt 3000 and older minions (bsc#1212516) (bsc#1212517)
Avoid failures due transactional_update module not available in Salt 3006.0 (bsc#1211754)

References

Affected packages

Name: saltbundlepy-psutil
Purl: pkg:rpm/suse/saltbundlepy-psutil&distro=SUSE:EL-9:Update:Products:SaltBundle:Update

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.8.0-1.9.1

{
    "binaries": [
        {
            "saltbundlepy-psutil": "5.8.0-1.9.1",
            "venv-salt-minion": "3006.0-1.19.2"
        }
    ]
}

Name: venv-salt-minion
Purl: pkg:rpm/suse/venv-salt-minion&distro=SUSE:EL-9:Update:Products:SaltBundle:Update

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3006.0-1.19.2

{
    "binaries": [
        {
            "saltbundlepy-psutil": "5.8.0-1.9.1",
            "venv-salt-minion": "3006.0-1.19.2"
        }
    ]
}

Name: venv-salt-minion
Purl: pkg:rpm/suse/venv-salt-minion&distro=SUSE%20Manager%20Client%20Tools%20for%20RHEL,%20Liberty%20and%20Clones%209-CLIENT-TOOLS

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3006.0-1.19.2

{
    "binaries": [
        {
            "venv-salt-minion": "3006.0-1.19.2"
        }
    ]
}