Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2018:1757-1

Опубликовано: 19 июн. 2018
Источник: suse-cvrf

Описание

Security update for salt

This update for salt provides version 2018.3 and brings many fixes and improvements:

  • Fix for sorting of multi-version packages (bsc#1097174 and bsc#1097413)
  • Align SUSE salt-master.service 'LimitNOFILES' limit with upstream Salt
  • Add 'other' attribute to GECOS fields to avoid inconsistencies with chfn
  • Prevent zypper from parsing repo configuration from not .repo files (bsc#1094055)
  • Collect all versions of installed packages on SUSE and RHEL systems (bsc#1089526)
  • No more AWS EC2 rate limitations in salt-cloud. (bsc#1088888)
  • MySQL returner now also allows to use Unix sockets. (bsc#1091371)
  • Do not override jid on returners, only sending back to master. (bsc#1092373)
  • Remove minion/thin/version if exists to force thin regeneration. (bsc#1092161)
  • Fix minion scheduler to return a 'retcode' attribute. (bsc#1089112)
  • Fix for logging during network interface querying. (bsc#1087581)
  • Fix rhel packages requires both net-tools and iproute. (bsc#1087055)
  • Fix patchinstall on yum module. Bad comparison. (bsc#1087278)
  • Strip trailing commas on Linux user's GECOS fields. (bsc#1089362)
  • Fallback to PyMySQL. (bsc#1087891)
  • Fix for [Errno 0] Resolver Error 0 (no error). (bsc#1087581)
  • Add python-2.6 support to salt-ssh.
  • Make it possible to use docker login, pull and push from module.run and detect errors.
  • Fix unicode decode error with salt-ssh.
  • Fix cp.push empty file. (bsc#1075950)
  • Fix grains containing trailing '\n'.
  • Remove salt-minion python2 requirement when python3 is default. (bsc#1081592)
  • Restoring installation of packages for Rhel 6 and 7.
  • Prevent queryformat pattern from expanding. (bsc#1079048)
  • Fix for delete_deployment in Kubernetes module. (bsc#1059291)
  • Fix bsc#1062464 and CVE-2017-14696 already included in 2017.7.2.
  • Fix wrong version reported by Salt. (bsc#1061407)
  • Run salt-api as user salt. (bsc#1064520)

For a detailed description, please refer to the upstream-changelog at https://docs.saltstack.com/en/latest/topics/releases/index.html or to the rpm-changelog.

supportutils-plugin-salt:

  • Collect salt-api, salt-broker and salt-ssh log files (bsc#1090242)

Список пакетов

SUSE Linux Enterprise Module for Advanced Systems Management 12
python2-salt-2018.3.0-46.28.1
salt-2018.3.0-46.28.1
salt-api-2018.3.0-46.28.1
salt-bash-completion-2018.3.0-46.28.1
salt-cloud-2018.3.0-46.28.1
salt-doc-2018.3.0-46.28.1
salt-master-2018.3.0-46.28.1
salt-minion-2018.3.0-46.28.1
salt-proxy-2018.3.0-46.28.1
salt-ssh-2018.3.0-46.28.1
salt-syndic-2018.3.0-46.28.1
salt-zsh-completion-2018.3.0-46.28.1
SUSE Linux Enterprise Point of Sale 12 SP2
python2-salt-2018.3.0-46.28.1
salt-2018.3.0-46.28.1
salt-minion-2018.3.0-46.28.1
SUSE Manager Client Tools 12
python2-salt-2018.3.0-46.28.1
python3-salt-2018.3.0-46.28.1
salt-2018.3.0-46.28.1
salt-doc-2018.3.0-46.28.1
salt-minion-2018.3.0-46.28.1
supportutils-plugin-salt-1.1.4-6.9.1
SUSE Manager Proxy 3.0
python2-salt-2018.3.0-46.28.1
salt-2018.3.0-46.28.1
salt-api-2018.3.0-46.28.1
salt-bash-completion-2018.3.0-46.28.1
salt-doc-2018.3.0-46.28.1
salt-master-2018.3.0-46.28.1
salt-minion-2018.3.0-46.28.1
salt-proxy-2018.3.0-46.28.1
salt-ssh-2018.3.0-46.28.1
salt-syndic-2018.3.0-46.28.1
salt-zsh-completion-2018.3.0-46.28.1
supportutils-plugin-salt-1.1.4-6.9.1
SUSE Manager Proxy 3.1
python2-salt-2018.3.0-46.28.1
python3-salt-2018.3.0-46.28.1
salt-2018.3.0-46.28.1
salt-minion-2018.3.0-46.28.1
supportutils-plugin-salt-1.1.4-6.9.1
SUSE Manager Server 3.0
python2-salt-2018.3.0-46.28.1
salt-2018.3.0-46.28.1
salt-api-2018.3.0-46.28.1
salt-bash-completion-2018.3.0-46.28.1
salt-doc-2018.3.0-46.28.1
salt-master-2018.3.0-46.28.1
salt-minion-2018.3.0-46.28.1
salt-proxy-2018.3.0-46.28.1
salt-ssh-2018.3.0-46.28.1
salt-syndic-2018.3.0-46.28.1
salt-zsh-completion-2018.3.0-46.28.1
supportutils-plugin-salt-1.1.4-6.9.1
SUSE Manager Server 3.1
python2-salt-2018.3.0-46.28.1
python3-salt-2018.3.0-46.28.1
salt-2018.3.0-46.28.1
salt-api-2018.3.0-46.28.1
salt-bash-completion-2018.3.0-46.28.1
salt-cloud-2018.3.0-46.28.1
salt-doc-2018.3.0-46.28.1
salt-master-2018.3.0-46.28.1
salt-minion-2018.3.0-46.28.1
salt-proxy-2018.3.0-46.28.1
salt-ssh-2018.3.0-46.28.1
salt-syndic-2018.3.0-46.28.1
salt-zsh-completion-2018.3.0-46.28.1
supportutils-plugin-salt-1.1.4-6.9.1

Ссылки

Описание

Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.3.8, 2016.11.x before 2016.11.8, and 2017.7.x before 2017.7.2 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-12791.

Затронутые продукты
SUSE Linux Enterprise Module for Advanced Systems Management 12:python2-salt-2018.3.0-46.28.1
SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-2018.3.0-46.28.1
SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-api-2018.3.0-46.28.1
SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-bash-completion-2018.3.0-46.28.1
Ссылки

Описание

SaltStack Salt before 2016.3.8, 2016.11.x before 2016.11.8, and 2017.7.x before 2017.7.2 allows remote attackers to cause a denial of service via a crafted authentication request.

Затронутые продукты
SUSE Linux Enterprise Module for Advanced Systems Management 12:python2-salt-2018.3.0-46.28.1
SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-2018.3.0-46.28.1
SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-api-2018.3.0-46.28.1
SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-bash-completion-2018.3.0-46.28.1
Ссылки
Уязвимость SUSE-SU-2018:1757-1