openSUSE-SU-2021:1951-1
See a problem?- Import Source
- https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2021:1951-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/openSUSE-SU-2021:1951-1
- Related
- Published
- 2021-07-11T09:06:25Z
- Modified
- 2021-07-11T09:06:25Z
- Summary
- Security update for salt
- Details
-
This update for salt fixes the following issues:
- Check if dpkgnotify is executable (bsc#1186674)
- Update to Salt release version 3002.2 (jsc#ECO-3212, jsc#SLE-18033, jsc#SLE-18028)
- Drop support for Python2. Obsoletes
python2-saltpackage (jsc#SLE-18028) - Fix issue parsing errors in ansiblegate state module
- Prevent command injection in the snapper module (bsc#1185281, CVE-2021-31607)
- transactional_update: detect recursion in the executor
- Add subpackage
salt-transactional-update(jsc#SLE-18033) - Remove duplicate directories
- References
Affected packages
openSUSE:Leap 15.3 / salt
Package
- Name
- salt
- Purl
- purl:rpm/suse/salt&distro=openSUSE%20Leap%2015.3
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3002.2-8.41.8.1
Ecosystem specific
{
"binaries": [
{
"salt-bash-completion": "3002.2-8.41.8.1",
"salt-cloud": "3002.2-8.41.8.1",
"salt": "3002.2-8.41.8.1",
"python3-salt": "3002.2-8.41.8.1",
"salt-ssh": "3002.2-8.41.8.1",
"salt-transactional-update": "3002.2-8.41.8.1",
"salt-proxy": "3002.2-8.41.8.1",
"salt-zsh-completion": "3002.2-8.41.8.1",
"salt-standalone-formulas-configuration": "3002.2-8.41.8.1",
"salt-syndic": "3002.2-8.41.8.1",
"salt-master": "3002.2-8.41.8.1",
"salt-doc": "3002.2-8.41.8.1",
"salt-api": "3002.2-8.41.8.1",
"salt-minion": "3002.2-8.41.8.1",
"salt-fish-completion": "3002.2-8.41.8.1"
}
]
}