This update fixes the following issues:
venv-salt-minion:
-
Security issues fixed:
- CVE-2024-22231: Prevent directory traversal when creating syndic cache directory on the master (bsc#1219430)
- CVE-2024-22232: Prevent directory traversal attacks in the master's serve_file method (bsc#1219431)
-
Bugs fixed:
- Convert oscap output to UTF-8
- Make Salt compatible with Python 3.11
- Ignore non-ascii chars in oscap output (bsc#1219001)
- Fix detected issues in Salt tests when running on VMs
- Make importing seco.range thread safe (bsc#1211649)
- Fix problematic tests and allow smooth tests executions on containers
- Discover Ansible playbook files as '.yml' or '.yaml' files (bsc#1211888)
- Prevent exceptions with fileserver.update when called via state (bsc#1218482)
- Improve pip target override condition with VENV_PIP_TARGET environment variable (bsc#1216850)
- Fixed KeyError in logs when running a state that fails