Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2023-20897

Опубликовано: 05 сент. 2023
Источник: debian
EPSS Низкий

Описание

Salt masters prior to 3005.2 or 3006.2 contain a DOS in minion return. After receiving several bad packets on the request server equal to the number of worker threads, the master will become unresponsive to return requests until restarted.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
saltremovedpackage
saltend-of-lifebusterpackage

Примечания

  • https://saltproject.io/security-announcements/2023-08-10-advisory/

  • https://github.com/saltstack/salt/issues/64061

EPSS

Процентиль: 31%
0.0011
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2023-20897

CVSS3: 5.3
ubuntu
почти 2 года назад

Salt masters prior to 3005.2 or 3006.2 contain a DOS in minion return. After receiving several bad packets on the request server equal to the number of worker threads, the master will become unresponsive to return requests until restarted.

nvd логотип

CVE-2023-20897

CVSS3: 5.3
nvd
почти 2 года назад

Salt masters prior to 3005.2 or 3006.2 contain a DOS in minion return. After receiving several bad packets on the request server equal to the number of worker threads, the master will become unresponsive to return requests until restarted.

github логотип

GHSA-vpjg-wmf8-29h9

CVSS3: 5.3
github
почти 2 года назад

Salt vulnerable to denial of service

suse-cvrf логотип

SUSE-SU-2023:3866-1

suse-cvrf
больше 1 года назад

Security update for salt

suse-cvrf логотип

SUSE-SU-2023:3865-1

suse-cvrf
больше 1 года назад

Security update for salt

EPSS

Процентиль: 31%
0.0011
Низкий