Skip to main content

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

© 2026 Mondoo, Inc.

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

SUSE-SU-2026:0629-1 | Mondoo Vulnerability Intelligence

Vulnerability IntelligenceSUSE-SU-2026:0629-1

SUSE-SU-2026:0629-1

UNKNOWN

Security update 5.1.2 for Multi-Linux Manager Salt Bundle

Published Feb 25, 2026

Modified 2 weeks ago

Fix available

Details

This update fixes the following issues:

venv-salt-minion:

Backport security patches for Salt vendored tornado:
- CVE-2025-67724: missing validation of supplied reason phrase (bsc#1254903)
- CVE-2025-67725: fix DoS via malicious HTTP request (bsc#1254905)
- CVE-2025-67726: fix HTTP header parameter parsing algorithm (bsc#1254904)
Make syntax in httputil_test compatible with Python 3.6
Fix KeyError in postgres module with PostgreSQL 17 (bsc#1254325)
Use internal deb classes instead of external aptsource lib
Speed up wheel key.finger call (bsc#1240532)
Simplify and speed up utils.find_json function (bsc#1246130)
Extend warn_until period to 2027

Affected Packages

venv-salt-minion

SUSE Multi Linux Manager Tools SLE-12

Fixed in:

3006.0-120002.5.9.1

References

https://bugzilla.suse.com/1240532

https://bugzilla.suse.com/1246130

https://bugzilla.suse.com/1254325

https://bugzilla.suse.com/1254903

https://bugzilla.suse.com/1254904

https://bugzilla.suse.com/1254905

https://www.suse.com/security/cve/CVE-2025-67724

https://www.suse.com/security/cve/CVE-2025-67725

https://www.suse.com/security/cve/CVE-2025-67726

https://www.suse.com/support/update/announcement/2026/suse-su-20260629-1/

Upstream

CVE-2025-67724 CVE-2025-67725 CVE-2025-67726

Related

CVE-2025-67724 CVE-2025-67725 CVE-2025-67726

Ecosystems

SUSE Multi Linux Manager Tools SLE-12

Timeline

PublishedFeb 25, 2026

ModifiedFeb 25, 2026