Lucene search
K

33 matches found

OSV
OSV
added 2026/06/08 9:30 a.m.6 views

OPENSUSE-SU-2026:20918-1 Security update for salt

This update for salt fixes the following issues: Security fixes: - CVE-2026-31958: python-tornado: parsing large multipart bodies with many parts can cause a denial of service bsc1259554 Other changes in salt: - Use non vendored tornado with Python 3.11 bsc1257583, bsc1259700 - Harden Tornado fro...

8.7CVSS7.3AI score0.00375EPSS
Exploits0References7
OSV
OSV
added 2026/03/24 6:24 a.m.3 views

OPENSUSE-SU-2026:20412-1 Security update for salt

This update for salt fixes the following issues: Changes in salt: - Security issues fixed: CVE-2025-67724: fixed missing validation of supplied reason phrase bsc1254903 CVE-2025-67725: fixed DoS via malicious HTTP request bsc1254905 CVE-2025-67726: fixed HTTP header parameter parsing algorithm...

7.5CVSS5.9AI score0.01525EPSS
Exploits0References10
OSV
OSV
added 2025/12/18 12:9 p.m.4 views

SUSE-SU-2025:4477-1 Security update for salt

This update for salt fixes the following issues: - Security issues fixed: - CVE-2025-62349: Added minimumauthversion to enforce security bsc1254257 - CVE-2025-62348: Fixed Junos module yaml loader bsc1254256 - Backport security fixes for vendored tornado BDSA-2024-3438 BDSA-2024-3439 BDSA-2024-90...

7.8CVSS5.8AI score0.00407EPSS
Exploits0References11
SUSE Linux
SUSE Linux
added 2025/07/23 12:37 p.m.9 views

Maintenance update for Multi-Linux Manager 4.3 Release Notes Release Notes

Description: This update fixes the following issues: release-notes-susemanager-proxy: Update to SUSE Manager 4.3.16 CVE Fixed CVE-2025-23392, CVE-2025-23393, CVE-2025-46809 Bugs mentioned: bsc1236601, bsc1236635, bsc1236779, bsc1237294, bsc1238922 bsc1239826, bsc1240386, bsc1242004, bsc1243460,...

9.8CVSS6.8AI score0.10353EPSS
Exploits1References148
OSV
OSV
added 2023/11/09 2:33 a.m.3 views

SUSE-SU-2023:4386-1 Security update for salt

This update for salt fixes the following issues: Security issues fixed: - CVE-2023-34049: arbitrary code execution via symlink attack bsc1215157 Bugs fixed: - Fix optimizationorder opt to prevent testsuite fails - Improve salt.utils.json.findjson to avoid fails bsc1213293 - Use salt-call from sal...

6.7CVSS6.9AI score0.00187EPSS
Exploits0References6
OSV
OSV
added 2023/06/21 11:54 a.m.3 views

SUSE-SU-2023:2581-1 Security update for salt

This update for salt fixes the following issues: - Update to Salt release version 3006.0 jscPED-4361 See release notes: https://docs.saltproject.io/en/latest/topics/releases/3006.0.html - Add missing patch after rebase to fix collections Mapping issues - Add python3-looseversion as new dependency...

7.2AI score
Exploits0References7
OSV
OSV
added 2023/06/21 11:35 a.m.5 views

SUSE-SU-2023:2572-1 Security update for salt

This update for salt fixes the following issues: - Update to Salt release version 3006.0 jscPED-4361 See release notes: https://docs.saltproject.io/en/latest/topics/releases/3006.0.html - Add missing patch after rebase to fix collections Mapping issues - Add python3-looseversion as new dependency...

7.2AI score
Exploits0References7
OSV
OSV
added 2023/06/21 11:27 a.m.3 views

SUSE-SU-2023:2571-1 Security update for Salt

This update for salt fixes the following issues: salt: - Update to Salt release version 3006.0 jscPED-4361 See release notes: https://docs.saltproject.io/en/latest/topics/releases/3006.0.html - Add missing patch after rebase to fix collections Mapping issues - Add python3-looseversion as new...

7.2AI score
Exploits0References7
OSV
OSV
added 2022/07/04 10:6 a.m.9 views

SUSE-SU-2022:2253-1 Security update for salt

This update for salt fixes the following issues: - CVE-2022-22967: Fixed missing check for PAMACCTMGM return value that could be used to bypass authentication when using PAM bsc1200566...

8.8CVSS8.8AI score0.01878EPSS
Exploits0References3
OSV
OSV
added 2022/03/30 3:53 p.m.11 views

SUSE-SU-2022:1051-1 Security update for salt

This update for salt fixes the following issues: - CVE-2022-22935: Sign authentication replies to prevent MiTM bsc1197417 - CVE-2022-22934: Sign pillar data to prevent MiTM attacks. bsc1197417 - CVE-2022-22936: Prevent job and fileserver replays bsc1197417 - CVE-2022-22941: Fixed targeting bug,...

8.8CVSS6.2AI score0.01586EPSS
Exploits0References6
OSV
OSV
added 2021/12/03 11:4 a.m.7 views

SUSE-SU-2021:3906-1 Security Beta update for Salt

This update fixes the following issues: salt: - Remove wrong parsecpename from grains.core - Prevent tracebacks if directory for cookie is missing - Fix file.find tracebacks with non utf8 file names bsc1190114 - Fix ip6interface grain to not leak secondary IPv4 aliases bsc1191412 - Do not conside...

7.5CVSS7.8AI score0.03514EPSS
Exploits0References22
OSV
OSV
added 2021/10/27 1:27 p.m.8 views

SUSE-SU-2021:3550-1 Security update for Salt

This update fixes the following issues: salt: - Fix the regression of dockercontainer state module - Support querying for JSON data in external sql pillar - Exclude the full path of a download URL to prevent injection of malicious code bsc1190265 CVE-2021-21996 - Fix wrong relative paths resoluti...

7.5CVSS7.7AI score0.03514EPSS
Exploits0References3
OSV
OSV
added 2021/07/11 9:6 a.m.4 views

OPENSUSE-SU-2021:1951-1 Security update for salt

This update for salt fixes the following issues: - Check if dpkgnotify is executable bsc1186674 - Update to Salt release version 3002.2 jscECO-3212, jscSLE-18033, jscSLE-18028 - Drop support for Python2. Obsoletes python2-salt package jscSLE-18028 - Fix issue parsing errors in ansiblegate state...

7.8CVSS9.2AI score0.03808EPSS
Exploits1References4
OSV
OSV
added 2021/06/21 5:25 p.m.12 views

SUSE-SU-2021:2105-1 Security update for salt

This update for salt fixes the following issues: Update to Salt release version 3002.2 jscECO-3212, jscSLE-18033, jscSLE-18028 - Check if dpkgnotify is executable bsc1186674 - Drop support for Python2. Obsoletes python2-salt package jscSLE-18028 - virt module updates network: handle missing ipv4...

9.8CVSS8.1AI score0.96405EPSS
Exploits29References18
OSV
OSV
added 2021/05/21 2:42 p.m.6 views

SUSE-SU-2021:1690-1 Security Beta update for Salt

This update fixes the following issues: salt: - Update to Salt release version 3002.2 jscECO-3212 - Drop support for Python2. Obsoletes 'python2-salt' package - Virt module updates network: handle missing ipv4 netmask attribute more network support PCI/USB host devices passthrough support - Set...

9.8CVSS7.8AI score0.92312EPSS
Exploits9References40
OSV
OSV
added 2021/03/19 4:16 p.m.10 views

SUSE-SU-2021:0915-1 Security Beta update for Salt

This update fixes the following issues: salt: - Only require python-certifi for CentOS7 - Fix race conditions for corner cases when handling SIGTERM by minion bsc1172110 - Implementation of suseip execution module to prevent issues with network.managed bsc1099976 - Fix recursion false detection i...

9.8CVSS7.2AI score0.92312EPSS
Exploits8References31
OSV
OSV
added 2021/02/26 10:12 a.m.8 views

SUSE-SU-2021:0630-1 Security update for salt

This update for salt fixes the following issues: - Fix regression on cmd.run when passing tuples as cmd bsc1182740 - Allow extrafilerefs as sanitized kwargs for SSH client - Fix errors with virt.update - Fix for multiple for security issues CVE-2020-28243 CVE-2020-28972 CVE-2020-35662 CVE-2021-31...

9.8CVSS7.1AI score0.92312EPSS
Exploits8References23
OSV
OSV
added 2020/12/04 12:0 a.m.35 views

DLA-2480-1 salt - security update

Bulletin has no description...

9.8CVSS7.5AI score0.99585EPSS
Exploits5
OSV
OSV
added 2020/11/06 3:58 p.m.7 views

SUSE-SU-2020:3245-1 Security update for Salt

This update fixes the following issues: salt: - Fix disk.blkid to avoid unexpected keyword argument 'pubuser' bsc1177867 - Ensure virt.update stoponreboot is updated with its default value - Do not break package building for systemd OSes - Drop wrong mock from chroot unit test - Support systemd...

9.8CVSS7.4AI score0.99585EPSS
Exploits5References14
OSV
OSV
added 2020/11/06 3:58 p.m.7 views

SUSE-SU-2020:3244-1 Security update for Salt

This update fixes the following issues: salt: - Avoid regression on 'salt-master': set passphrase for salt-ssh keys to empty string bsc1178485 - Properly validate eauth credentials and tokens on SSH calls made by Salt API bsc1178319, bsc1178362, bsc1178361, CVE-2020-25592, CVE-2020-17490,...

9.8CVSS7.4AI score0.99585EPSS
Exploits5References14
Rows per page
Query Builder