Early Access — Mondoo Vulnerability Intelligence is currently in preview.

SUSE-SU-2021:2102-1

UNKNOWN

Security update for Salt

Published Jun 21, 2021

Modified 4 years ago

Fix available

Details

This update fixes the following issues:

salt:

Parsing Epoch out of version provided during pkg remove (bsc#1173692)
Fix issue parsing errors in ansiblegate state module
Prevent command injection in the snapper module (bsc#1185281) (CVE-2021-31607)
Transactional_update: detect recursion in the executor
Add subpackage salt-transactional-update
Remove duplicate directories from specfile
Improvements on 'ansiblegate' module (bsc#1185092):
- New methods: ansible.targets / ansible.discover_playbooks
- General bugfixes
Add support for Alibaba Cloud Linux 2 (Aliyun Linux)
Regression fix of salt-ssh on processing targets
Update target fix for salt-ssh and avoiding race condition on salt-ssh event processing (bsc#1179831, bsc#1182281)
Add notify beacon for Debian/Ubuntu systems
Fix zmq bug that causes salt-call to freeze (bsc#1181368)

Affected Packages

SUSE:Linux Enterprise Module for Advanced Systems Management 12python2-salt

Fixed in:

3000-46.142.2

SUSE:Linux Enterprise Module for Advanced Systems Management 12salt

Fixed in:

3000-46.142.2

SUSE:Linux Enterprise Module for Advanced Systems Management 12salt-api

Fixed in:

3000-46.142.2

SUSE:Linux Enterprise Module for Advanced Systems Management 12salt-bash-completion

Fixed in:

3000-46.142.2

SUSE:Linux Enterprise Module for Advanced Systems Management 12salt-cloud

Fixed in:

3000-46.142.2

SUSE:Linux Enterprise Module for Advanced Systems Management 12salt-doc

Fixed in:

3000-46.142.2

SUSE:Linux Enterprise Module for Advanced Systems Management 12salt-master

Fixed in:

3000-46.142.2

SUSE:Linux Enterprise Module for Advanced Systems Management 12salt-minion

Fixed in:

3000-46.142.2

SUSE:Linux Enterprise Module for Advanced Systems Management 12salt-proxy

Fixed in:

3000-46.142.2

SUSE:Linux Enterprise Module for Advanced Systems Management 12salt-ssh

Fixed in:

3000-46.142.2

SUSE:Linux Enterprise Module for Advanced Systems Management 12salt-standalone-formulas-configuration

Fixed in:

3000-46.142.2

SUSE:Linux Enterprise Module for Advanced Systems Management 12salt-syndic

Fixed in:

3000-46.142.2

SUSE:Linux Enterprise Module for Advanced Systems Management 12salt-zsh-completion

Fixed in:

3000-46.142.2

SUSE:Manager Client Tools 12python2-salt

Fixed in:

3000-46.142.2

SUSE:Manager Client Tools 12python3-salt

Fixed in:

3000-46.142.2

SUSE:Manager Client Tools 12salt

Fixed in:

3000-46.142.2

SUSE:Manager Client Tools 12salt-doc

Fixed in:

3000-46.142.2

SUSE:Manager Client Tools 12salt-minion

Fixed in:

3000-46.142.2

Timeline

PublishedJun 21, 2021

ModifiedJun 21, 2021

SUSE-SU-2021:2102-1 | Mondoo Vulnerability Intelligence

SUSE-SU-2021:2102-1

Details

Affected Packages

References

Upstream

Related

Ecosystems

Timeline