Overview Details Repositories Revisions Requests Users Attributes Meta
Security update for salt

This update for salt fixes the following issues:

- Update to 2017.7.1
See https://docs.saltstack.com/en/develop/topics/releases/2017.7.1.html
for full changelog
- CVE-2017-12791: crafted minion ID could lead directory traversal on the Salt-master (boo#1053955)

- Run fdupes over all of /usr because it still warns about
duplicate files. Remove ancient suse_version > 1020 conditional.
- Replace unnecessary %__ indirections. Use grep -q in favor of
>/dev/null.
- Avoid bashisms in %pre.

- Update to 2017.7.0
See https://docs.saltstack.com/en/develop/topics/releases/2017.7.0.html
for full changelog
- fix ownership for whole master cache directory (boo#1035914)
- fix setting the language on SUSE systems (boo#1038855)
- wrong os_family grains on SUSE - fix unittests (boo#1038855)
- speed-up cherrypy by removing sleep call
- Disable 3rd party runtime packages to be explicitly recommended.
(boo#1040886)
- fix format error (boo#1043111)
- Add a salt-minion watchdog for RHEL6 and SLES11 systems (sysV)
to restart salt-minion in case of crashes during upgrade.
- Add procps as dependency.
- Bugfix: jobs scheduled to run at a future time stay
pending for Salt minions (boo#1036125)

Fixed bugs
bnc#1053955
VUL-0: CVE-2017-12791: salt: Maliciously crafted minion IDs can cause unwanted directory traversals on the Salt-master
bnc#1038855
wrong use of os_family string for Suse in the locale module and others
bnc#1043111
format error in log message
bnc#1035914
Trying to bootstrap any minion: "permission denied: '/tmp/.root_9e39f9_salt/running_data'"
bnc#1040886
salt-minion recommends mariadb
bnc#1036125
Jobs scheduled to run at a future time stay pending for Salt minions
CVE-2017-12791
Selected Binaries
openSUSE Build Service is sponsored by
Places