SUSE-SU-2025:4475-1

Опубликовано: 18 дек. 2025

Источник: suse-cvrf

Описание

Security update for salt

This update for salt fixes the following issues:

Security issues fixed:
- CVE-2025-62349: Added minimum_auth_version to enforce security (bsc#1254257)
- CVE-2025-62348: Fixed Junos module yaml loader (bsc#1254256)
- Backport security fixes for vendored tornado
  - BDSA-2024-3438
  - BDSA-2024-3439
  - BDSA-2024-9026
Other changes and bugs fixed:
- Fixed TLS and x509 modules for OSes with older cryptography module
- Fixed Salt for Python > 3.11 (bsc#1252285) (bsc#1252244)
  - Use external tornado on Python > 3.11
  - Make tls and x509 to use python-cryptography
  - Remove usage of spwd
- Fixed payload signature verification on Tumbleweed (bsc#1251776)
- Fixed broken symlink on migration to Leap 16.0 (bsc#1250755)
- Fixed known_hosts error on gitfs (bsc#1250520) (bsc#1227207)
- Improved SL Micro 6.2 detection with grains
- Reverted requirement of M2Crypto >= 0.44.0 for SUSE Family distros
- Set python-CherryPy as required for python-salt-testsuite

Список пакетов

SUSE Enterprise Storage 7.1

python3-salt-3006.0-150300.53.101.1

salt-3006.0-150300.53.101.1

salt-api-3006.0-150300.53.101.1

salt-bash-completion-3006.0-150300.53.101.1

salt-cloud-3006.0-150300.53.101.1

salt-doc-3006.0-150300.53.101.1

salt-fish-completion-3006.0-150300.53.101.1

salt-master-3006.0-150300.53.101.1

salt-minion-3006.0-150300.53.101.1

salt-proxy-3006.0-150300.53.101.1

salt-ssh-3006.0-150300.53.101.1

salt-standalone-formulas-configuration-3006.0-150300.53.101.1

salt-syndic-3006.0-150300.53.101.1

salt-transactional-update-3006.0-150300.53.101.1

salt-zsh-completion-3006.0-150300.53.101.1

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

python3-salt-3006.0-150300.53.101.1

salt-3006.0-150300.53.101.1

salt-api-3006.0-150300.53.101.1

salt-bash-completion-3006.0-150300.53.101.1

salt-cloud-3006.0-150300.53.101.1

salt-doc-3006.0-150300.53.101.1

salt-fish-completion-3006.0-150300.53.101.1

salt-master-3006.0-150300.53.101.1

salt-minion-3006.0-150300.53.101.1

salt-proxy-3006.0-150300.53.101.1

salt-ssh-3006.0-150300.53.101.1

salt-standalone-formulas-configuration-3006.0-150300.53.101.1

salt-syndic-3006.0-150300.53.101.1

salt-zsh-completion-3006.0-150300.53.101.1

SUSE Linux Enterprise Micro 5.2

python3-salt-3006.0-150300.53.101.1

salt-3006.0-150300.53.101.1

salt-minion-3006.0-150300.53.101.1

salt-transactional-update-3006.0-150300.53.101.1

SUSE Linux Enterprise Server 15 SP3-LTSS

python3-salt-3006.0-150300.53.101.1

salt-3006.0-150300.53.101.1

salt-api-3006.0-150300.53.101.1

salt-bash-completion-3006.0-150300.53.101.1

salt-cloud-3006.0-150300.53.101.1

salt-doc-3006.0-150300.53.101.1

salt-fish-completion-3006.0-150300.53.101.1

salt-master-3006.0-150300.53.101.1

salt-minion-3006.0-150300.53.101.1

salt-proxy-3006.0-150300.53.101.1

salt-ssh-3006.0-150300.53.101.1

salt-standalone-formulas-configuration-3006.0-150300.53.101.1

salt-syndic-3006.0-150300.53.101.1

salt-transactional-update-3006.0-150300.53.101.1

salt-zsh-completion-3006.0-150300.53.101.1

SUSE Linux Enterprise Server for SAP Applications 15 SP3

python3-salt-3006.0-150300.53.101.1

salt-3006.0-150300.53.101.1

salt-api-3006.0-150300.53.101.1

salt-bash-completion-3006.0-150300.53.101.1

salt-cloud-3006.0-150300.53.101.1

salt-doc-3006.0-150300.53.101.1

salt-fish-completion-3006.0-150300.53.101.1

salt-master-3006.0-150300.53.101.1

salt-minion-3006.0-150300.53.101.1

salt-proxy-3006.0-150300.53.101.1

salt-ssh-3006.0-150300.53.101.1

salt-standalone-formulas-configuration-3006.0-150300.53.101.1

salt-syndic-3006.0-150300.53.101.1

salt-zsh-completion-3006.0-150300.53.101.1

Ссылки

https://www.suse.com/support/update/announcement/2025/suse-su-20254475-1/
Link for SUSE-SU-2025:4475-1
https://lists.suse.com/pipermail/sle-security-updates/2025-December/023620.html
E-Mail link for SUSE-SU-2025:4475-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1227207
SUSE Bug 1227207
https://bugzilla.suse.com/1250520
SUSE Bug 1250520
https://bugzilla.suse.com/1250755
SUSE Bug 1250755
https://bugzilla.suse.com/1251776
SUSE Bug 1251776
https://bugzilla.suse.com/1252244
SUSE Bug 1252244
https://bugzilla.suse.com/1252285
SUSE Bug 1252285
https://bugzilla.suse.com/1254256
SUSE Bug 1254256
https://bugzilla.suse.com/1254257
SUSE Bug 1254257
https://www.suse.com/security/cve/CVE-2025-62348/
SUSE CVE CVE-2025-62348 page
https://www.suse.com/security/cve/CVE-2025-62349/
SUSE CVE CVE-2025-62349 page

Описание

unknown

Затронутые продукты

SUSE Enterprise Storage 7.1:python3-salt-3006.0-150300.53.101.1

SUSE Enterprise Storage 7.1:salt-3006.0-150300.53.101.1

SUSE Enterprise Storage 7.1:salt-api-3006.0-150300.53.101.1

SUSE Enterprise Storage 7.1:salt-bash-completion-3006.0-150300.53.101.1

Ссылки

https://www.suse.com/security/cve/CVE-2025-62348.html
CVE-2025-62348
https://bugzilla.suse.com/1254256
SUSE Bug 1254256

Описание

unknown

Затронутые продукты

SUSE Enterprise Storage 7.1:python3-salt-3006.0-150300.53.101.1

SUSE Enterprise Storage 7.1:salt-3006.0-150300.53.101.1

SUSE Enterprise Storage 7.1:salt-api-3006.0-150300.53.101.1

SUSE Enterprise Storage 7.1:salt-bash-completion-3006.0-150300.53.101.1

Ссылки

https://www.suse.com/security/cve/CVE-2025-62349.html
CVE-2025-62349
https://bugzilla.suse.com/1254257
SUSE Bug 1254257

SUSE-SU-2025:4475-1

Описание

Список пакетов

SUSE Enterprise Storage 7.1

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

SUSE Linux Enterprise Micro 5.2

SUSE Linux Enterprise Server 15 SP3-LTSS

SUSE Linux Enterprise Server for SAP Applications 15 SP3

Ссылки

Уязвимость: CVE-2025-62348

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2025-62349

Описание

Затронутые продукты

Ссылки