Skip to main content
Vulnerability Intelligence
Platform
Solutions
Customers
Resources
Company
Login
Get Demo
Vulnerability Intelligence
SUSE-SU-2022:2154-1
SUSE-SU-2022:2154-1
UNKNOWN
Security update for salt
Published Jun 22, 2022
Modified 3 years ago
Fix available
Details
This update for salt fixes the following issues:
CVE-2022-22967: Fixed missing check for PAM_ACCT_MGM return value that could lead to authentication bypass when using PAM (bsc#1200566)
Affected Packages
(14 packages)
python2-salt
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Manager Client Tools 12
Fixed in:
3000-65.1
salt
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Manager Client Tools 12
Fixed in:
3000-65.1
salt-api
SUSE Linux Enterprise Module for Advanced Systems Management 12
Fixed in:
3000-65.1
salt-bash-completion
SUSE Linux Enterprise Module for Advanced Systems Management 12
Fixed in:
3000-65.1
salt-cloud
SUSE Linux Enterprise Module for Advanced Systems Management 12
Fixed in:
3000-65.1
salt-doc
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Manager Client Tools 12
Fixed in:
3000-65.1
salt-master
SUSE Linux Enterprise Module for Advanced Systems Management 12
Fixed in:
3000-65.1
salt-minion
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Manager Client Tools 12
Fixed in:
3000-65.1
salt-proxy
SUSE Linux Enterprise Module for Advanced Systems Management 12
Fixed in:
3000-65.1
salt-ssh
SUSE Linux Enterprise Module for Advanced Systems Management 12
Fixed in:
3000-65.1
Show 4 more packages
References
REPORT
https://bugzilla.suse.com/1200566
WEB
https://www.suse.com/security/cve/CVE-2022-22967
ADVISORY
https://www.suse.com/support/update/announcement/2022/suse-su-20222154-1/
Upstream
CVE-2022-22967
Related
CVE-2022-22967
Ecosystems
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Manager Client Tools 12
Timeline
Published
Jun 22, 2022
Modified
Jun 22, 2022
SUSE-SU-2022:2154-1 | Mondoo Vulnerability Intelligence