Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2017-12791
Vulnerability from cvelistv5
Published
2017-08-23 14:00
Modified
2024-08-05 18:51
Severity ?
EPSS score ?
Summary
Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T18:51:07.262Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://github.com/saltstack/salt/pull/42944", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=872399", }, { name: "100384", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/100384", }, { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1482006", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://docs.saltstack.com/en/latest/topics/releases/2017.7.1.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://docs.saltstack.com/en/2016.11/topics/releases/2016.11.7.html", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2017-08-15T00:00:00", descriptions: [ { lang: "en", value: "Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-08-23T13:57:01", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://github.com/saltstack/salt/pull/42944", }, { tags: [ "x_refsource_MISC", ], url: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=872399", }, { name: "100384", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/100384", }, { tags: [ "x_refsource_MISC", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1482006", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://docs.saltstack.com/en/latest/topics/releases/2017.7.1.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://docs.saltstack.com/en/2016.11/topics/releases/2016.11.7.html", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2017-12791", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "https://github.com/saltstack/salt/pull/42944", refsource: "CONFIRM", url: "https://github.com/saltstack/salt/pull/42944", }, { name: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=872399", refsource: "MISC", url: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=872399", }, { name: "100384", refsource: "BID", url: "http://www.securityfocus.com/bid/100384", }, { name: "https://bugzilla.redhat.com/show_bug.cgi?id=1482006", refsource: "MISC", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1482006", }, { name: "https://docs.saltstack.com/en/latest/topics/releases/2017.7.1.html", refsource: "CONFIRM", url: "https://docs.saltstack.com/en/latest/topics/releases/2017.7.1.html", }, { name: "https://docs.saltstack.com/en/2016.11/topics/releases/2016.11.7.html", refsource: "CONFIRM", url: "https://docs.saltstack.com/en/2016.11/topics/releases/2016.11.7.html", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2017-12791", datePublished: "2017-08-23T14:00:00", dateReserved: "2017-08-10T00:00:00", dateUpdated: "2024-08-05T18:51:07.262Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { nvd: "{\"cve\":{\"id\":\"CVE-2017-12791\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2017-08-23T14:29:00.283\",\"lastModified\":\"2024-11-21T03:10:12.060\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad de salto de directorio en la validación minion id en SaltStack Salt en versiones anteriores a la 2016.11.7 y 2017.7.x en versiones anteriores a la 2017.7.1 permite que minions remotos con credenciales incorrectas se autentiquen en un master mediante un ID minion manipulado.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-22\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:saltstack:salt:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2016.11.6\",\"matchCriteriaId\":\"5F8DFD0A-C813-4EA5-B90D-4A05E84D7F68\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:saltstack:salt:2017.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8F54D0CC-68F0-44E0-B565-BB9EFFE56817\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/100384\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=872399\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1482006\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://docs.saltstack.com/en/2016.11/topics/releases/2016.11.7.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://docs.saltstack.com/en/latest/topics/releases/2017.7.1.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://github.com/saltstack/salt/pull/42944\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/100384\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=872399\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=1482006\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://docs.saltstack.com/en/2016.11/topics/releases/2016.11.7.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://docs.saltstack.com/en/latest/topics/releases/2017.7.1.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://github.com/saltstack/salt/pull/42944\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]}]}}", }, }
ghsa-xxvj-8g5m-4qgw
Vulnerability from github
Published
2022-05-17 01:22
Modified
2024-10-21 21:12
Severity ?
Summary
SaltStack Salt Directory traversal vulnerability in minion id validation
Details
Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.
{ affected: [ { package: { ecosystem: "PyPI", name: "salt", }, ranges: [ { events: [ { introduced: "0", }, { fixed: "2016.11.7", }, ], type: "ECOSYSTEM", }, ], }, { package: { ecosystem: "PyPI", name: "salt", }, ranges: [ { events: [ { introduced: "2017.7.0", }, { fixed: "2017.7.1", }, ], type: "ECOSYSTEM", }, ], }, ], aliases: [ "CVE-2017-12791", ], database_specific: { cwe_ids: [ "CWE-22", ], github_reviewed: true, github_reviewed_at: "2024-04-22T22:20:04Z", nvd_published_at: "2017-08-23T14:29:00Z", severity: "CRITICAL", }, details: "Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.", id: "GHSA-xxvj-8g5m-4qgw", modified: "2024-10-21T21:12:02Z", published: "2022-05-17T01:22:50Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2017-12791", }, { type: "WEB", url: "https://github.com/saltstack/salt/pull/42944", }, { type: "WEB", url: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=872399", }, { type: "WEB", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1482006", }, { type: "WEB", url: "https://docs.saltstack.com/en/2016.11/topics/releases/2016.11.7.html", }, { type: "WEB", url: "https://docs.saltstack.com/en/latest/topics/releases/2017.7.1.html", }, { type: "WEB", url: "https://github.com/pypa/advisory-database/tree/main/vulns/salt/PYSEC-2017-35.yaml", }, { type: "PACKAGE", url: "https://github.com/saltstack/salt", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", type: "CVSS_V3", }, ], summary: "SaltStack Salt Directory traversal vulnerability in minion id validation", }
opensuse-su-2024:11364-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
python3-salt-3002.2-6.1 on GA media
Notes
Title of the patch
python3-salt-3002.2-6.1 on GA media
Description of the patch
These are all security issues fixed in the python3-salt-3002.2-6.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-11364
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "python3-salt-3002.2-6.1 on GA media", title: "Title of the patch", }, { category: "description", text: "These are all security issues fixed in the python3-salt-3002.2-6.1 package on the GA media of openSUSE Tumbleweed.", title: "Description of the patch", }, { category: "details", text: "openSUSE-Tumbleweed-2024-11364", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11364-1.json", }, { category: "self", summary: "SUSE CVE CVE-2016-9639 page", url: "https://www.suse.com/security/cve/CVE-2016-9639/", }, { category: "self", summary: "SUSE CVE CVE-2017-12791 page", url: "https://www.suse.com/security/cve/CVE-2017-12791/", }, { category: "self", summary: "SUSE CVE CVE-2017-14695 page", url: "https://www.suse.com/security/cve/CVE-2017-14695/", }, { category: "self", summary: "SUSE CVE CVE-2017-14696 page", url: "https://www.suse.com/security/cve/CVE-2017-14696/", }, { category: "self", summary: "SUSE CVE CVE-2018-15750 page", url: "https://www.suse.com/security/cve/CVE-2018-15750/", }, { category: "self", summary: "SUSE CVE CVE-2018-15751 page", url: "https://www.suse.com/security/cve/CVE-2018-15751/", }, { category: "self", summary: "SUSE CVE CVE-2019-17361 page", url: "https://www.suse.com/security/cve/CVE-2019-17361/", }, { category: "self", summary: "SUSE CVE CVE-2019-18897 page", url: "https://www.suse.com/security/cve/CVE-2019-18897/", }, { category: "self", summary: "SUSE CVE CVE-2020-11651 page", url: "https://www.suse.com/security/cve/CVE-2020-11651/", }, { category: "self", summary: "SUSE CVE CVE-2020-25592 page", url: "https://www.suse.com/security/cve/CVE-2020-25592/", }, { category: "self", summary: "SUSE CVE CVE-2020-28243 page", url: "https://www.suse.com/security/cve/CVE-2020-28243/", }, { category: "self", summary: "SUSE CVE CVE-2021-21996 page", url: "https://www.suse.com/security/cve/CVE-2021-21996/", }, { category: "self", summary: "SUSE CVE CVE-2021-25281 page", url: "https://www.suse.com/security/cve/CVE-2021-25281/", }, { category: "self", summary: "SUSE CVE CVE-2021-25315 page", url: "https://www.suse.com/security/cve/CVE-2021-25315/", }, { category: "self", summary: "SUSE CVE CVE-2021-31607 page", url: "https://www.suse.com/security/cve/CVE-2021-31607/", }, ], title: "python3-salt-3002.2-6.1 on GA media", tracking: { current_release_date: "2024-06-15T00:00:00Z", generator: { date: "2024-06-15T00:00:00Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "openSUSE-SU-2024:11364-1", initial_release_date: "2024-06-15T00:00:00Z", revision_history: [ { date: "2024-06-15T00:00:00Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python3-salt-3002.2-6.1.aarch64", product: { name: "python3-salt-3002.2-6.1.aarch64", product_id: "python3-salt-3002.2-6.1.aarch64", }, }, { category: "product_version", name: "salt-3002.2-6.1.aarch64", product: { name: "salt-3002.2-6.1.aarch64", product_id: "salt-3002.2-6.1.aarch64", }, }, { category: "product_version", name: "salt-api-3002.2-6.1.aarch64", product: { name: "salt-api-3002.2-6.1.aarch64", product_id: "salt-api-3002.2-6.1.aarch64", }, }, { category: "product_version", name: "salt-bash-completion-3002.2-6.1.aarch64", product: { name: "salt-bash-completion-3002.2-6.1.aarch64", product_id: "salt-bash-completion-3002.2-6.1.aarch64", }, }, { category: "product_version", name: "salt-cloud-3002.2-6.1.aarch64", product: { name: "salt-cloud-3002.2-6.1.aarch64", product_id: "salt-cloud-3002.2-6.1.aarch64", }, }, { category: "product_version", name: "salt-doc-3002.2-6.1.aarch64", product: { name: "salt-doc-3002.2-6.1.aarch64", product_id: "salt-doc-3002.2-6.1.aarch64", }, }, { category: "product_version", name: "salt-fish-completion-3002.2-6.1.aarch64", product: { name: "salt-fish-completion-3002.2-6.1.aarch64", product_id: "salt-fish-completion-3002.2-6.1.aarch64", }, }, { category: "product_version", name: "salt-master-3002.2-6.1.aarch64", product: { name: "salt-master-3002.2-6.1.aarch64", product_id: "salt-master-3002.2-6.1.aarch64", }, }, { category: "product_version", name: "salt-minion-3002.2-6.1.aarch64", product: { name: "salt-minion-3002.2-6.1.aarch64", product_id: "salt-minion-3002.2-6.1.aarch64", }, }, { category: "product_version", name: "salt-proxy-3002.2-6.1.aarch64", product: { name: "salt-proxy-3002.2-6.1.aarch64", product_id: "salt-proxy-3002.2-6.1.aarch64", }, }, { category: "product_version", name: "salt-ssh-3002.2-6.1.aarch64", product: { name: "salt-ssh-3002.2-6.1.aarch64", product_id: "salt-ssh-3002.2-6.1.aarch64", }, }, { category: "product_version", name: "salt-standalone-formulas-configuration-3002.2-6.1.aarch64", product: { name: "salt-standalone-formulas-configuration-3002.2-6.1.aarch64", product_id: "salt-standalone-formulas-configuration-3002.2-6.1.aarch64", }, }, { category: "product_version", name: "salt-syndic-3002.2-6.1.aarch64", product: { name: "salt-syndic-3002.2-6.1.aarch64", product_id: "salt-syndic-3002.2-6.1.aarch64", }, }, { category: "product_version", name: "salt-transactional-update-3002.2-6.1.aarch64", product: { name: "salt-transactional-update-3002.2-6.1.aarch64", product_id: "salt-transactional-update-3002.2-6.1.aarch64", }, }, { category: "product_version", name: "salt-zsh-completion-3002.2-6.1.aarch64", product: { name: "salt-zsh-completion-3002.2-6.1.aarch64", product_id: "salt-zsh-completion-3002.2-6.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python3-salt-3002.2-6.1.ppc64le", product: { name: "python3-salt-3002.2-6.1.ppc64le", product_id: "python3-salt-3002.2-6.1.ppc64le", }, }, { category: "product_version", name: "salt-3002.2-6.1.ppc64le", product: { name: "salt-3002.2-6.1.ppc64le", product_id: "salt-3002.2-6.1.ppc64le", }, }, { category: "product_version", name: "salt-api-3002.2-6.1.ppc64le", product: { name: "salt-api-3002.2-6.1.ppc64le", product_id: "salt-api-3002.2-6.1.ppc64le", }, }, { category: "product_version", name: "salt-bash-completion-3002.2-6.1.ppc64le", product: { name: "salt-bash-completion-3002.2-6.1.ppc64le", product_id: "salt-bash-completion-3002.2-6.1.ppc64le", }, }, { category: "product_version", name: "salt-cloud-3002.2-6.1.ppc64le", product: { name: "salt-cloud-3002.2-6.1.ppc64le", product_id: "salt-cloud-3002.2-6.1.ppc64le", }, }, { category: "product_version", name: "salt-doc-3002.2-6.1.ppc64le", product: { name: "salt-doc-3002.2-6.1.ppc64le", product_id: "salt-doc-3002.2-6.1.ppc64le", }, }, { category: "product_version", name: "salt-fish-completion-3002.2-6.1.ppc64le", product: { name: "salt-fish-completion-3002.2-6.1.ppc64le", product_id: "salt-fish-completion-3002.2-6.1.ppc64le", }, }, { category: "product_version", name: "salt-master-3002.2-6.1.ppc64le", product: { name: "salt-master-3002.2-6.1.ppc64le", product_id: "salt-master-3002.2-6.1.ppc64le", }, }, { category: "product_version", name: "salt-minion-3002.2-6.1.ppc64le", product: { name: "salt-minion-3002.2-6.1.ppc64le", product_id: "salt-minion-3002.2-6.1.ppc64le", }, }, { category: "product_version", name: "salt-proxy-3002.2-6.1.ppc64le", product: { name: "salt-proxy-3002.2-6.1.ppc64le", product_id: "salt-proxy-3002.2-6.1.ppc64le", }, }, { category: "product_version", name: "salt-ssh-3002.2-6.1.ppc64le", product: { name: "salt-ssh-3002.2-6.1.ppc64le", product_id: "salt-ssh-3002.2-6.1.ppc64le", }, }, { category: "product_version", name: "salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", product: { name: "salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", product_id: "salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", }, }, { category: "product_version", name: "salt-syndic-3002.2-6.1.ppc64le", product: { name: "salt-syndic-3002.2-6.1.ppc64le", product_id: "salt-syndic-3002.2-6.1.ppc64le", }, }, { category: "product_version", name: "salt-transactional-update-3002.2-6.1.ppc64le", product: { name: "salt-transactional-update-3002.2-6.1.ppc64le", product_id: "salt-transactional-update-3002.2-6.1.ppc64le", }, }, { category: "product_version", name: "salt-zsh-completion-3002.2-6.1.ppc64le", product: { name: "salt-zsh-completion-3002.2-6.1.ppc64le", product_id: "salt-zsh-completion-3002.2-6.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-salt-3002.2-6.1.s390x", product: { name: "python3-salt-3002.2-6.1.s390x", product_id: "python3-salt-3002.2-6.1.s390x", }, }, { category: "product_version", name: "salt-3002.2-6.1.s390x", product: { name: "salt-3002.2-6.1.s390x", product_id: "salt-3002.2-6.1.s390x", }, }, { category: "product_version", name: "salt-api-3002.2-6.1.s390x", product: { name: "salt-api-3002.2-6.1.s390x", product_id: "salt-api-3002.2-6.1.s390x", }, }, { category: "product_version", name: "salt-bash-completion-3002.2-6.1.s390x", product: { name: "salt-bash-completion-3002.2-6.1.s390x", product_id: "salt-bash-completion-3002.2-6.1.s390x", }, }, { category: "product_version", name: "salt-cloud-3002.2-6.1.s390x", product: { name: "salt-cloud-3002.2-6.1.s390x", product_id: "salt-cloud-3002.2-6.1.s390x", }, }, { category: "product_version", name: "salt-doc-3002.2-6.1.s390x", product: { name: "salt-doc-3002.2-6.1.s390x", product_id: "salt-doc-3002.2-6.1.s390x", }, }, { category: "product_version", name: "salt-fish-completion-3002.2-6.1.s390x", product: { name: "salt-fish-completion-3002.2-6.1.s390x", product_id: "salt-fish-completion-3002.2-6.1.s390x", }, }, { category: "product_version", name: "salt-master-3002.2-6.1.s390x", product: { name: "salt-master-3002.2-6.1.s390x", product_id: "salt-master-3002.2-6.1.s390x", }, }, { category: "product_version", name: "salt-minion-3002.2-6.1.s390x", product: { name: "salt-minion-3002.2-6.1.s390x", product_id: "salt-minion-3002.2-6.1.s390x", }, }, { category: "product_version", name: "salt-proxy-3002.2-6.1.s390x", product: { name: "salt-proxy-3002.2-6.1.s390x", product_id: "salt-proxy-3002.2-6.1.s390x", }, }, { category: "product_version", name: "salt-ssh-3002.2-6.1.s390x", product: { name: "salt-ssh-3002.2-6.1.s390x", product_id: "salt-ssh-3002.2-6.1.s390x", }, }, { category: "product_version", name: "salt-standalone-formulas-configuration-3002.2-6.1.s390x", product: { name: "salt-standalone-formulas-configuration-3002.2-6.1.s390x", product_id: "salt-standalone-formulas-configuration-3002.2-6.1.s390x", }, }, { category: "product_version", name: "salt-syndic-3002.2-6.1.s390x", product: { name: "salt-syndic-3002.2-6.1.s390x", product_id: "salt-syndic-3002.2-6.1.s390x", }, }, { category: "product_version", name: "salt-transactional-update-3002.2-6.1.s390x", product: { name: "salt-transactional-update-3002.2-6.1.s390x", product_id: "salt-transactional-update-3002.2-6.1.s390x", }, }, { category: "product_version", name: "salt-zsh-completion-3002.2-6.1.s390x", product: { name: "salt-zsh-completion-3002.2-6.1.s390x", product_id: "salt-zsh-completion-3002.2-6.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python3-salt-3002.2-6.1.x86_64", product: { name: "python3-salt-3002.2-6.1.x86_64", product_id: "python3-salt-3002.2-6.1.x86_64", }, }, { category: "product_version", name: "salt-3002.2-6.1.x86_64", product: { name: "salt-3002.2-6.1.x86_64", product_id: "salt-3002.2-6.1.x86_64", }, }, { category: "product_version", name: "salt-api-3002.2-6.1.x86_64", product: { name: "salt-api-3002.2-6.1.x86_64", product_id: "salt-api-3002.2-6.1.x86_64", }, }, { category: "product_version", name: "salt-bash-completion-3002.2-6.1.x86_64", product: { name: "salt-bash-completion-3002.2-6.1.x86_64", product_id: "salt-bash-completion-3002.2-6.1.x86_64", }, }, { category: "product_version", name: "salt-cloud-3002.2-6.1.x86_64", product: { name: "salt-cloud-3002.2-6.1.x86_64", product_id: "salt-cloud-3002.2-6.1.x86_64", }, }, { category: "product_version", name: "salt-doc-3002.2-6.1.x86_64", product: { name: "salt-doc-3002.2-6.1.x86_64", product_id: "salt-doc-3002.2-6.1.x86_64", }, }, { category: "product_version", name: "salt-fish-completion-3002.2-6.1.x86_64", product: { name: "salt-fish-completion-3002.2-6.1.x86_64", product_id: "salt-fish-completion-3002.2-6.1.x86_64", }, }, { category: "product_version", name: "salt-master-3002.2-6.1.x86_64", product: { name: "salt-master-3002.2-6.1.x86_64", product_id: "salt-master-3002.2-6.1.x86_64", }, }, { category: "product_version", name: "salt-minion-3002.2-6.1.x86_64", product: { name: "salt-minion-3002.2-6.1.x86_64", product_id: "salt-minion-3002.2-6.1.x86_64", }, }, { category: "product_version", name: "salt-proxy-3002.2-6.1.x86_64", product: { name: "salt-proxy-3002.2-6.1.x86_64", product_id: "salt-proxy-3002.2-6.1.x86_64", }, }, { category: "product_version", name: "salt-ssh-3002.2-6.1.x86_64", product: { name: "salt-ssh-3002.2-6.1.x86_64", product_id: "salt-ssh-3002.2-6.1.x86_64", }, }, { category: "product_version", name: "salt-standalone-formulas-configuration-3002.2-6.1.x86_64", product: { name: "salt-standalone-formulas-configuration-3002.2-6.1.x86_64", product_id: "salt-standalone-formulas-configuration-3002.2-6.1.x86_64", }, }, { category: "product_version", name: "salt-syndic-3002.2-6.1.x86_64", product: { name: "salt-syndic-3002.2-6.1.x86_64", product_id: "salt-syndic-3002.2-6.1.x86_64", }, }, { category: "product_version", name: "salt-transactional-update-3002.2-6.1.x86_64", product: { name: "salt-transactional-update-3002.2-6.1.x86_64", product_id: "salt-transactional-update-3002.2-6.1.x86_64", }, }, { category: "product_version", name: "salt-zsh-completion-3002.2-6.1.x86_64", product: { name: "salt-zsh-completion-3002.2-6.1.x86_64", product_id: "salt-zsh-completion-3002.2-6.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "openSUSE Tumbleweed", product: { name: "openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed", product_identification_helper: { cpe: "cpe:/o:opensuse:tumbleweed", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python3-salt-3002.2-6.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", }, product_reference: "python3-salt-3002.2-6.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python3-salt-3002.2-6.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", }, product_reference: "python3-salt-3002.2-6.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python3-salt-3002.2-6.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", }, product_reference: "python3-salt-3002.2-6.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python3-salt-3002.2-6.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", }, product_reference: "python3-salt-3002.2-6.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-3002.2-6.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", }, product_reference: "salt-3002.2-6.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-3002.2-6.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", }, product_reference: "salt-3002.2-6.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-3002.2-6.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", }, product_reference: "salt-3002.2-6.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-3002.2-6.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", }, product_reference: "salt-3002.2-6.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-api-3002.2-6.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", }, product_reference: "salt-api-3002.2-6.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-api-3002.2-6.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", }, product_reference: "salt-api-3002.2-6.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-api-3002.2-6.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", }, product_reference: "salt-api-3002.2-6.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-api-3002.2-6.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", }, product_reference: "salt-api-3002.2-6.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-bash-completion-3002.2-6.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", }, product_reference: "salt-bash-completion-3002.2-6.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-bash-completion-3002.2-6.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", }, product_reference: "salt-bash-completion-3002.2-6.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-bash-completion-3002.2-6.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", }, product_reference: "salt-bash-completion-3002.2-6.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-bash-completion-3002.2-6.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", }, product_reference: "salt-bash-completion-3002.2-6.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-cloud-3002.2-6.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", }, product_reference: "salt-cloud-3002.2-6.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-cloud-3002.2-6.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", }, product_reference: "salt-cloud-3002.2-6.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-cloud-3002.2-6.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", }, product_reference: "salt-cloud-3002.2-6.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-cloud-3002.2-6.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", }, product_reference: "salt-cloud-3002.2-6.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-doc-3002.2-6.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", }, product_reference: "salt-doc-3002.2-6.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-doc-3002.2-6.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", }, product_reference: "salt-doc-3002.2-6.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-doc-3002.2-6.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", }, product_reference: "salt-doc-3002.2-6.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-doc-3002.2-6.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", }, product_reference: "salt-doc-3002.2-6.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-fish-completion-3002.2-6.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", }, product_reference: "salt-fish-completion-3002.2-6.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-fish-completion-3002.2-6.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", }, product_reference: "salt-fish-completion-3002.2-6.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-fish-completion-3002.2-6.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", }, product_reference: "salt-fish-completion-3002.2-6.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-fish-completion-3002.2-6.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", }, product_reference: "salt-fish-completion-3002.2-6.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-master-3002.2-6.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", }, product_reference: "salt-master-3002.2-6.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-master-3002.2-6.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", }, product_reference: "salt-master-3002.2-6.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-master-3002.2-6.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", }, product_reference: "salt-master-3002.2-6.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-master-3002.2-6.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", }, product_reference: "salt-master-3002.2-6.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-minion-3002.2-6.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", }, product_reference: "salt-minion-3002.2-6.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-minion-3002.2-6.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", }, product_reference: "salt-minion-3002.2-6.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-minion-3002.2-6.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", }, product_reference: "salt-minion-3002.2-6.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-minion-3002.2-6.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", }, product_reference: "salt-minion-3002.2-6.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-proxy-3002.2-6.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", }, product_reference: "salt-proxy-3002.2-6.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-proxy-3002.2-6.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", }, product_reference: "salt-proxy-3002.2-6.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-proxy-3002.2-6.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", }, product_reference: "salt-proxy-3002.2-6.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-proxy-3002.2-6.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", }, product_reference: "salt-proxy-3002.2-6.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-ssh-3002.2-6.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", }, product_reference: "salt-ssh-3002.2-6.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-ssh-3002.2-6.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", }, product_reference: "salt-ssh-3002.2-6.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-ssh-3002.2-6.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", }, product_reference: "salt-ssh-3002.2-6.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-ssh-3002.2-6.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", }, product_reference: "salt-ssh-3002.2-6.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-standalone-formulas-configuration-3002.2-6.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", }, product_reference: "salt-standalone-formulas-configuration-3002.2-6.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-standalone-formulas-configuration-3002.2-6.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", }, product_reference: "salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-standalone-formulas-configuration-3002.2-6.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", }, product_reference: "salt-standalone-formulas-configuration-3002.2-6.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-standalone-formulas-configuration-3002.2-6.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", }, product_reference: "salt-standalone-formulas-configuration-3002.2-6.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-syndic-3002.2-6.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", }, product_reference: "salt-syndic-3002.2-6.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-syndic-3002.2-6.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", }, product_reference: "salt-syndic-3002.2-6.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-syndic-3002.2-6.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", }, product_reference: "salt-syndic-3002.2-6.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-syndic-3002.2-6.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", }, product_reference: "salt-syndic-3002.2-6.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-transactional-update-3002.2-6.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", }, product_reference: "salt-transactional-update-3002.2-6.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-transactional-update-3002.2-6.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", }, product_reference: "salt-transactional-update-3002.2-6.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-transactional-update-3002.2-6.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", }, product_reference: "salt-transactional-update-3002.2-6.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-transactional-update-3002.2-6.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", }, product_reference: "salt-transactional-update-3002.2-6.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-zsh-completion-3002.2-6.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", }, product_reference: "salt-zsh-completion-3002.2-6.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-zsh-completion-3002.2-6.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", }, product_reference: "salt-zsh-completion-3002.2-6.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-zsh-completion-3002.2-6.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", }, product_reference: "salt-zsh-completion-3002.2-6.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "salt-zsh-completion-3002.2-6.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", }, product_reference: "salt-zsh-completion-3002.2-6.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, ], }, vulnerabilities: [ { cve: "CVE-2016-9639", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2016-9639", }, ], notes: [ { category: "general", text: "Salt before 2015.8.11 allows deleted minions to read or write to minions with the same id, related to caching.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2016-9639", url: "https://www.suse.com/security/cve/CVE-2016-9639", }, { category: "external", summary: "SUSE Bug 1012398 for CVE-2016-9639", url: "https://bugzilla.suse.com/1012398", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 9.1, baseSeverity: "CRITICAL", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", version: "3.0", }, products: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "low", }, ], title: "CVE-2016-9639", }, { cve: "CVE-2017-12791", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2017-12791", }, ], notes: [ { category: "general", text: "Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2017-12791", url: "https://www.suse.com/security/cve/CVE-2017-12791", }, { category: "external", summary: "SUSE Bug 1053955 for CVE-2017-12791", url: "https://bugzilla.suse.com/1053955", }, { category: "external", summary: "SUSE Bug 1062462 for CVE-2017-12791", url: "https://bugzilla.suse.com/1062462", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2017-12791", }, { cve: "CVE-2017-14695", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2017-14695", }, ], notes: [ { category: "general", text: "Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.3.8, 2016.11.x before 2016.11.8, and 2017.7.x before 2017.7.2 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-12791.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2017-14695", url: "https://www.suse.com/security/cve/CVE-2017-14695", }, { category: "external", summary: "SUSE Bug 1053955 for CVE-2017-14695", url: "https://bugzilla.suse.com/1053955", }, { category: "external", summary: "SUSE Bug 1062462 for CVE-2017-14695", url: "https://bugzilla.suse.com/1062462", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.0", }, products: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2017-14695", }, { cve: "CVE-2017-14696", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2017-14696", }, ], notes: [ { category: "general", text: "SaltStack Salt before 2016.3.8, 2016.11.x before 2016.11.8, and 2017.7.x before 2017.7.2 allows remote attackers to cause a denial of service via a crafted authentication request.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2017-14696", url: "https://www.suse.com/security/cve/CVE-2017-14696", }, { category: "external", summary: "SUSE Bug 1053955 for CVE-2017-14696", url: "https://bugzilla.suse.com/1053955", }, { category: "external", summary: "SUSE Bug 1062464 for CVE-2017-14696", url: "https://bugzilla.suse.com/1062464", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.0", }, products: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2017-14696", }, { cve: "CVE-2018-15750", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2018-15750", }, ], notes: [ { category: "general", text: "Directory Traversal vulnerability in salt-api in SaltStack Salt before 2017.7.8 and 2018.3.x before 2018.3.3 allows remote attackers to determine which files exist on the server.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2018-15750", url: "https://www.suse.com/security/cve/CVE-2018-15750", }, { category: "external", summary: "SUSE Bug 1113698 for CVE-2018-15750", url: "https://bugzilla.suse.com/1113698", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.7, baseSeverity: "HIGH", vectorString: "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N", version: "3.0", }, products: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2018-15750", }, { cve: "CVE-2018-15751", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2018-15751", }, ], notes: [ { category: "general", text: "SaltStack Salt before 2017.7.8 and 2018.3.x before 2018.3.3 allow remote attackers to bypass authentication and execute arbitrary commands via salt-api(netapi).", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2018-15751", url: "https://www.suse.com/security/cve/CVE-2018-15751", }, { category: "external", summary: "SUSE Bug 1113698 for CVE-2018-15751", url: "https://bugzilla.suse.com/1113698", }, { category: "external", summary: "SUSE Bug 1113699 for CVE-2018-15751", url: "https://bugzilla.suse.com/1113699", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, products: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2018-15751", }, { cve: "CVE-2019-17361", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-17361", }, ], notes: [ { category: "general", text: "In SaltStack Salt through 2019.2.0, the salt-api NET API with the ssh client enabled is vulnerable to command injection. This allows an unauthenticated attacker with network access to the API endpoint to execute arbitrary code on the salt-api host.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-17361", url: "https://www.suse.com/security/cve/CVE-2019-17361", }, { category: "external", summary: "SUSE Bug 1162504 for CVE-2019-17361", url: "https://bugzilla.suse.com/1162504", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.1, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2019-17361", }, { cve: "CVE-2019-18897", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-18897", }, ], notes: [ { category: "general", text: "A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of salt of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15; openSUSE Factory allows local attackers to escalate privileges from user salt to root. This issue affects: SUSE Linux Enterprise Server 12 salt-master version 2019.2.0-46.83.1 and prior versions. SUSE Linux Enterprise Server 15 salt-master version 2019.2.0-6.21.1 and prior versions. openSUSE Factory salt-master version 2019.2.2-3.1 and prior versions.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-18897", url: "https://www.suse.com/security/cve/CVE-2019-18897", }, { category: "external", summary: "SUSE Bug 1157465 for CVE-2019-18897", url: "https://bugzilla.suse.com/1157465", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.4, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2019-18897", }, { cve: "CVE-2020-11651", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-11651", }, ], notes: [ { category: "general", text: "An issue was discovered in SaltStack Salt before 2019.2.4 and 3000 before 3000.2. The salt-master process ClearFuncs class does not properly validate method calls. This allows a remote user to access some methods without authentication. These methods can be used to retrieve user tokens from the salt master and/or run arbitrary commands on salt minions.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-11651", url: "https://www.suse.com/security/cve/CVE-2020-11651", }, { category: "external", summary: "SUSE Bug 1170595 for CVE-2020-11651", url: "https://bugzilla.suse.com/1170595", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2020-11651", }, { cve: "CVE-2020-25592", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-25592", }, ], notes: [ { category: "general", text: "In SaltStack Salt through 3002, salt-netapi improperly validates eauth credentials and tokens. A user can bypass authentication and invoke Salt SSH.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-25592", url: "https://www.suse.com/security/cve/CVE-2020-25592", }, { category: "external", summary: "SUSE Bug 1178319 for CVE-2020-25592", url: "https://bugzilla.suse.com/1178319", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2020-25592", }, { cve: "CVE-2020-28243", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-28243", }, ], notes: [ { category: "general", text: "An issue was discovered in SaltStack Salt before 3002.5. The minion's restartcheck is vulnerable to command injection via a crafted process name. This allows for a local privilege escalation by any user able to create a files on the minion in a non-blacklisted directory.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-28243", url: "https://www.suse.com/security/cve/CVE-2020-28243", }, { category: "external", summary: "SUSE Bug 1181550 for CVE-2020-28243", url: "https://bugzilla.suse.com/1181550", }, { category: "external", summary: "SUSE Bug 1181556 for CVE-2020-28243", url: "https://bugzilla.suse.com/1181556", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.4, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2020-28243", }, { cve: "CVE-2021-21996", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-21996", }, ], notes: [ { category: "general", text: "An issue was discovered in SaltStack Salt before 3003.3. A user who has control of the source, and source_hash URLs can gain full file system access as root on a salt minion.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-21996", url: "https://www.suse.com/security/cve/CVE-2021-21996", }, { category: "external", summary: "SUSE Bug 1190265 for CVE-2021-21996", url: "https://bugzilla.suse.com/1190265", }, { category: "external", summary: "SUSE Bug 1210934 for CVE-2021-21996", url: "https://bugzilla.suse.com/1210934", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.2, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L", version: "3.1", }, products: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2021-21996", }, { cve: "CVE-2021-25281", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-25281", }, ], notes: [ { category: "general", text: "An issue was discovered in through SaltStack Salt before 3002.5. salt-api does not honor eauth credentials for the wheel_async client. Thus, an attacker can remotely run any wheel modules on the master.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-25281", url: "https://www.suse.com/security/cve/CVE-2021-25281", }, { category: "external", summary: "SUSE Bug 1181550 for CVE-2021-25281", url: "https://bugzilla.suse.com/1181550", }, { category: "external", summary: "SUSE Bug 1181559 for CVE-2021-25281", url: "https://bugzilla.suse.com/1181559", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-25281", }, { cve: "CVE-2021-25315", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-25315", }, ], notes: [ { category: "general", text: "CWE - CWE-287: Improper Authentication vulnerability in SUSE Linux Enterprise Server 15 SP 3; openSUSE Tumbleweed allows local attackers to execute arbitrary code via salt without the need to specify valid credentials. This issue affects: SUSE Linux Enterprise Server 15 SP 3 salt versions prior to 3002.2-3. openSUSE Tumbleweed salt version 3002.2-2.1 and prior versions. This issue affects: SUSE Linux Enterprise Server 15 SP 3 salt versions prior to 3002.2-3. openSUSE Tumbleweed salt version 3002.2-2.1 and prior versions.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-25315", url: "https://www.suse.com/security/cve/CVE-2021-25315", }, { category: "external", summary: "SUSE Bug 1182382 for CVE-2021-25315", url: "https://bugzilla.suse.com/1182382", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "critical", }, ], title: "CVE-2021-25315", }, { cve: "CVE-2021-31607", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-31607", }, ], notes: [ { category: "general", text: "In SaltStack Salt 2016.9 through 3002.6, a command injection vulnerability exists in the snapper module that allows for local privilege escalation on a minion. The attack requires that a file is created with a pathname that is backed up by snapper, and that the master calls the snapper.diff function (which executes popen unsafely).", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-31607", url: "https://www.suse.com/security/cve/CVE-2021-31607", }, { category: "external", summary: "SUSE Bug 1185281 for CVE-2021-31607", url: "https://bugzilla.suse.com/1185281", }, { category: "external", summary: "SUSE Bug 1210934 for CVE-2021-31607", url: "https://bugzilla.suse.com/1210934", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:python3-salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:python3-salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-api-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-api-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-api-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-bash-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-cloud-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-doc-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-fish-completion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-master-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-master-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-master-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-minion-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-proxy-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-ssh-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-standalone-formulas-configuration-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-syndic-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-transactional-update-3002.2-6.1.x86_64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.aarch64", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.ppc64le", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.s390x", "openSUSE Tumbleweed:salt-zsh-completion-3002.2-6.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2021-31607", }, ], }
suse-su-2017:2676-1
Vulnerability from csaf_suse
Published
2017-10-09 13:39
Modified
2017-10-09 13:39
Summary
Security update for Salt
Notes
Title of the patch
Security update for Salt
Description of the patch
This update for salt fixes one security issue and bugs:
The following security issue has been fixed:
- CVE-2017-12791: Directory traversal vulnerability in minion id validation
allowed remote minions with incorrect credentials to authenticate to a master
via a crafted minion ID (bsc#1053955).
Additionally, the following non-security issues have been fixed:
- Added support for SUSE Manager scalability features. (bsc#1052264)
- Introduced the kubernetes module. (bsc#1051948)
- Notify systemd synchronously via NOTIFY_SOCKET. (bsc#1053376)
Patchnames
SUSE-OpenStack-Cloud-Magnum-Orchestration-7-2017-1660,SUSE-SLE-Manager-Tools-12-2017-1660,SUSE-SLE-Module-Adv-Systems-Management-12-2017-1660,SUSE-SLE-POS-12-SP2-2017-1660,SUSE-SUSE-Manager-Proxy-3.0-2017-1660,SUSE-SUSE-Manager-Server-3.0-2017-1660,SUSE-Storage-3-2017-1660,SUSE-Storage-4-2017-1660
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for Salt", title: "Title of the patch", }, { category: "description", text: "This update for salt fixes one security issue and bugs:\n\nThe following security issue has been fixed:\n\n- CVE-2017-12791: Directory traversal vulnerability in minion id validation\n allowed remote minions with incorrect credentials to authenticate to a master\n via a crafted minion ID (bsc#1053955).\n\nAdditionally, the following non-security issues have been fixed:\n\n- Added support for SUSE Manager scalability features. (bsc#1052264)\n- Introduced the kubernetes module. (bsc#1051948)\n- Notify systemd synchronously via NOTIFY_SOCKET. (bsc#1053376)", title: "Description of the patch", }, { category: "details", text: "SUSE-OpenStack-Cloud-Magnum-Orchestration-7-2017-1660,SUSE-SLE-Manager-Tools-12-2017-1660,SUSE-SLE-Module-Adv-Systems-Management-12-2017-1660,SUSE-SLE-POS-12-SP2-2017-1660,SUSE-SUSE-Manager-Proxy-3.0-2017-1660,SUSE-SUSE-Manager-Server-3.0-2017-1660,SUSE-Storage-3-2017-1660,SUSE-Storage-4-2017-1660", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_2676-1.json", }, { category: "self", summary: "URL for SUSE-SU-2017:2676-1", url: "https://www.suse.com/support/update/announcement/2017/suse-su-20172676-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2017:2676-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2017-October/003281.html", }, { category: "self", summary: "SUSE Bug 1051948", url: "https://bugzilla.suse.com/1051948", }, { category: "self", summary: "SUSE Bug 1052264", url: "https://bugzilla.suse.com/1052264", }, { category: "self", summary: "SUSE Bug 1053376", url: "https://bugzilla.suse.com/1053376", }, { category: "self", summary: "SUSE Bug 1053955", url: "https://bugzilla.suse.com/1053955", }, { category: "self", summary: "SUSE CVE CVE-2017-12791 page", url: "https://www.suse.com/security/cve/CVE-2017-12791/", }, ], title: "Security update for Salt", tracking: { current_release_date: "2017-10-09T13:39:39Z", generator: { date: "2017-10-09T13:39:39Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2017:2676-1", initial_release_date: "2017-10-09T13:39:39Z", revision_history: [ { date: "2017-10-09T13:39:39Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "salt-2016.11.4-46.7.1.aarch64", product: { name: "salt-2016.11.4-46.7.1.aarch64", product_id: "salt-2016.11.4-46.7.1.aarch64", }, }, { category: "product_version", name: "salt-doc-2016.11.4-46.7.1.aarch64", product: { name: "salt-doc-2016.11.4-46.7.1.aarch64", product_id: "salt-doc-2016.11.4-46.7.1.aarch64", }, }, { category: "product_version", name: "salt-minion-2016.11.4-46.7.1.aarch64", product: { name: "salt-minion-2016.11.4-46.7.1.aarch64", product_id: "salt-minion-2016.11.4-46.7.1.aarch64", }, }, { category: "product_version", name: "salt-master-2016.11.4-46.7.1.aarch64", product: { name: "salt-master-2016.11.4-46.7.1.aarch64", product_id: "salt-master-2016.11.4-46.7.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "salt-bash-completion-2016.11.4-46.7.1.noarch", product: { name: "salt-bash-completion-2016.11.4-46.7.1.noarch", product_id: "salt-bash-completion-2016.11.4-46.7.1.noarch", }, }, { category: "product_version", name: "salt-zsh-completion-2016.11.4-46.7.1.noarch", product: { name: "salt-zsh-completion-2016.11.4-46.7.1.noarch", product_id: "salt-zsh-completion-2016.11.4-46.7.1.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "salt-2016.11.4-46.7.1.ppc64le", product: { name: "salt-2016.11.4-46.7.1.ppc64le", product_id: "salt-2016.11.4-46.7.1.ppc64le", }, }, { category: "product_version", name: "salt-doc-2016.11.4-46.7.1.ppc64le", product: { name: "salt-doc-2016.11.4-46.7.1.ppc64le", product_id: "salt-doc-2016.11.4-46.7.1.ppc64le", }, }, { category: "product_version", name: "salt-minion-2016.11.4-46.7.1.ppc64le", product: { name: "salt-minion-2016.11.4-46.7.1.ppc64le", product_id: "salt-minion-2016.11.4-46.7.1.ppc64le", }, }, { category: "product_version", name: "salt-api-2016.11.4-46.7.1.ppc64le", product: { name: "salt-api-2016.11.4-46.7.1.ppc64le", product_id: "salt-api-2016.11.4-46.7.1.ppc64le", }, }, { category: "product_version", name: "salt-cloud-2016.11.4-46.7.1.ppc64le", product: { name: "salt-cloud-2016.11.4-46.7.1.ppc64le", product_id: "salt-cloud-2016.11.4-46.7.1.ppc64le", }, }, { category: "product_version", name: "salt-master-2016.11.4-46.7.1.ppc64le", product: { name: "salt-master-2016.11.4-46.7.1.ppc64le", product_id: "salt-master-2016.11.4-46.7.1.ppc64le", }, }, { category: "product_version", name: "salt-proxy-2016.11.4-46.7.1.ppc64le", product: { name: "salt-proxy-2016.11.4-46.7.1.ppc64le", product_id: "salt-proxy-2016.11.4-46.7.1.ppc64le", }, }, { category: "product_version", name: "salt-ssh-2016.11.4-46.7.1.ppc64le", product: { name: "salt-ssh-2016.11.4-46.7.1.ppc64le", product_id: "salt-ssh-2016.11.4-46.7.1.ppc64le", }, }, { category: "product_version", name: "salt-syndic-2016.11.4-46.7.1.ppc64le", product: { name: "salt-syndic-2016.11.4-46.7.1.ppc64le", product_id: "salt-syndic-2016.11.4-46.7.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "salt-2016.11.4-46.7.1.s390x", product: { name: "salt-2016.11.4-46.7.1.s390x", product_id: "salt-2016.11.4-46.7.1.s390x", }, }, { category: "product_version", name: "salt-doc-2016.11.4-46.7.1.s390x", product: { name: "salt-doc-2016.11.4-46.7.1.s390x", product_id: "salt-doc-2016.11.4-46.7.1.s390x", }, }, { category: "product_version", name: "salt-minion-2016.11.4-46.7.1.s390x", product: { name: "salt-minion-2016.11.4-46.7.1.s390x", product_id: "salt-minion-2016.11.4-46.7.1.s390x", }, }, { category: "product_version", name: "salt-api-2016.11.4-46.7.1.s390x", product: { name: "salt-api-2016.11.4-46.7.1.s390x", product_id: "salt-api-2016.11.4-46.7.1.s390x", }, }, { category: "product_version", name: "salt-cloud-2016.11.4-46.7.1.s390x", product: { name: "salt-cloud-2016.11.4-46.7.1.s390x", product_id: "salt-cloud-2016.11.4-46.7.1.s390x", }, }, { category: "product_version", name: "salt-master-2016.11.4-46.7.1.s390x", product: { name: "salt-master-2016.11.4-46.7.1.s390x", product_id: "salt-master-2016.11.4-46.7.1.s390x", }, }, { category: "product_version", name: "salt-proxy-2016.11.4-46.7.1.s390x", product: { name: "salt-proxy-2016.11.4-46.7.1.s390x", product_id: "salt-proxy-2016.11.4-46.7.1.s390x", }, }, { category: "product_version", name: "salt-ssh-2016.11.4-46.7.1.s390x", product: { name: "salt-ssh-2016.11.4-46.7.1.s390x", product_id: "salt-ssh-2016.11.4-46.7.1.s390x", }, }, { category: "product_version", name: "salt-syndic-2016.11.4-46.7.1.s390x", product: { name: "salt-syndic-2016.11.4-46.7.1.s390x", product_id: "salt-syndic-2016.11.4-46.7.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "salt-2016.11.4-46.7.1.x86_64", product: { name: "salt-2016.11.4-46.7.1.x86_64", product_id: "salt-2016.11.4-46.7.1.x86_64", }, }, { category: "product_version", name: "salt-doc-2016.11.4-46.7.1.x86_64", product: { name: "salt-doc-2016.11.4-46.7.1.x86_64", product_id: "salt-doc-2016.11.4-46.7.1.x86_64", }, }, { category: "product_version", name: "salt-minion-2016.11.4-46.7.1.x86_64", product: { name: "salt-minion-2016.11.4-46.7.1.x86_64", product_id: "salt-minion-2016.11.4-46.7.1.x86_64", }, }, { category: "product_version", name: "salt-api-2016.11.4-46.7.1.x86_64", product: { name: "salt-api-2016.11.4-46.7.1.x86_64", product_id: "salt-api-2016.11.4-46.7.1.x86_64", }, }, { category: "product_version", name: "salt-cloud-2016.11.4-46.7.1.x86_64", product: { name: "salt-cloud-2016.11.4-46.7.1.x86_64", product_id: "salt-cloud-2016.11.4-46.7.1.x86_64", }, }, { category: "product_version", name: "salt-master-2016.11.4-46.7.1.x86_64", product: { name: "salt-master-2016.11.4-46.7.1.x86_64", product_id: "salt-master-2016.11.4-46.7.1.x86_64", }, }, { category: "product_version", name: "salt-proxy-2016.11.4-46.7.1.x86_64", product: { name: "salt-proxy-2016.11.4-46.7.1.x86_64", product_id: "salt-proxy-2016.11.4-46.7.1.x86_64", }, }, { category: "product_version", name: "salt-ssh-2016.11.4-46.7.1.x86_64", product: { name: "salt-ssh-2016.11.4-46.7.1.x86_64", product_id: "salt-ssh-2016.11.4-46.7.1.x86_64", }, }, { category: "product_version", name: "salt-syndic-2016.11.4-46.7.1.x86_64", product: { name: "salt-syndic-2016.11.4-46.7.1.x86_64", product_id: "salt-syndic-2016.11.4-46.7.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Manager Client Tools 12", product: { name: "SUSE Manager Client Tools 12", product_id: "SUSE Manager Client Tools 12", }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Advanced Systems Management 12", product: { name: "SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-adv-systems-management:12", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Point of Sale 12 SP2", product: { name: "SUSE Linux Enterprise Point of Sale 12 SP2", product_id: "SUSE Linux Enterprise Point of Sale 12 SP2", product_identification_helper: { cpe: "cpe:/o:suse:sle-pos:12:sp2", }, }, }, { category: "product_name", name: "SUSE Manager Proxy 3.0", product: { name: "SUSE Manager Proxy 3.0", product_id: "SUSE Manager Proxy 3.0", product_identification_helper: { cpe: "cpe:/o:suse:suse-manager-proxy:3.0", }, }, }, { category: "product_name", name: "SUSE Manager Server 3.0", product: { name: "SUSE Manager Server 3.0", product_id: "SUSE Manager Server 3.0", product_identification_helper: { cpe: "cpe:/o:suse:suse-manager-server:3.0", }, }, }, { category: "product_name", name: "SUSE Enterprise Storage 3", product: { name: "SUSE Enterprise Storage 3", product_id: "SUSE Enterprise Storage 3", product_identification_helper: { cpe: "cpe:/o:suse:ses:3", }, }, }, { category: "product_name", name: "SUSE Enterprise Storage 4", product: { name: "SUSE Enterprise Storage 4", product_id: "SUSE Enterprise Storage 4", product_identification_helper: { cpe: "cpe:/o:suse:ses:4", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-46.7.1.aarch64 as component of SUSE Manager Client Tools 12", product_id: "SUSE Manager Client Tools 12:salt-2016.11.4-46.7.1.aarch64", }, product_reference: "salt-2016.11.4-46.7.1.aarch64", relates_to_product_reference: "SUSE Manager Client Tools 12", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-46.7.1.ppc64le as component of SUSE Manager Client Tools 12", product_id: "SUSE Manager Client Tools 12:salt-2016.11.4-46.7.1.ppc64le", }, product_reference: "salt-2016.11.4-46.7.1.ppc64le", relates_to_product_reference: "SUSE Manager Client Tools 12", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-46.7.1.s390x as component of SUSE Manager Client Tools 12", product_id: "SUSE Manager Client Tools 12:salt-2016.11.4-46.7.1.s390x", }, product_reference: "salt-2016.11.4-46.7.1.s390x", relates_to_product_reference: "SUSE Manager Client Tools 12", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-46.7.1.x86_64 as component of SUSE Manager Client Tools 12", product_id: "SUSE Manager Client Tools 12:salt-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Manager Client Tools 12", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-46.7.1.aarch64 as component of SUSE Manager Client Tools 12", product_id: "SUSE Manager Client Tools 12:salt-doc-2016.11.4-46.7.1.aarch64", }, product_reference: "salt-doc-2016.11.4-46.7.1.aarch64", relates_to_product_reference: "SUSE Manager Client Tools 12", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-46.7.1.ppc64le as component of SUSE Manager Client Tools 12", product_id: "SUSE Manager Client Tools 12:salt-doc-2016.11.4-46.7.1.ppc64le", }, product_reference: "salt-doc-2016.11.4-46.7.1.ppc64le", relates_to_product_reference: "SUSE Manager Client Tools 12", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-46.7.1.s390x as component of SUSE Manager Client Tools 12", product_id: "SUSE Manager Client Tools 12:salt-doc-2016.11.4-46.7.1.s390x", }, product_reference: "salt-doc-2016.11.4-46.7.1.s390x", relates_to_product_reference: "SUSE Manager Client Tools 12", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-46.7.1.x86_64 as component of SUSE Manager Client Tools 12", product_id: "SUSE Manager Client Tools 12:salt-doc-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-doc-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Manager Client Tools 12", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-46.7.1.aarch64 as component of SUSE Manager Client Tools 12", product_id: "SUSE Manager Client Tools 12:salt-minion-2016.11.4-46.7.1.aarch64", }, product_reference: "salt-minion-2016.11.4-46.7.1.aarch64", relates_to_product_reference: "SUSE Manager Client Tools 12", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-46.7.1.ppc64le as component of SUSE Manager Client Tools 12", product_id: "SUSE Manager Client Tools 12:salt-minion-2016.11.4-46.7.1.ppc64le", }, product_reference: "salt-minion-2016.11.4-46.7.1.ppc64le", relates_to_product_reference: "SUSE Manager Client Tools 12", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-46.7.1.s390x as component of SUSE Manager Client Tools 12", product_id: "SUSE Manager Client Tools 12:salt-minion-2016.11.4-46.7.1.s390x", }, product_reference: "salt-minion-2016.11.4-46.7.1.s390x", relates_to_product_reference: "SUSE Manager Client Tools 12", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-46.7.1.x86_64 as component of SUSE Manager Client Tools 12", product_id: "SUSE Manager Client Tools 12:salt-minion-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-minion-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Manager Client Tools 12", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-46.7.1.ppc64le as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-2016.11.4-46.7.1.ppc64le", }, product_reference: "salt-2016.11.4-46.7.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-46.7.1.s390x as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-2016.11.4-46.7.1.s390x", }, product_reference: "salt-2016.11.4-46.7.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-46.7.1.x86_64 as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-api-2016.11.4-46.7.1.ppc64le as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-api-2016.11.4-46.7.1.ppc64le", }, product_reference: "salt-api-2016.11.4-46.7.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-api-2016.11.4-46.7.1.s390x as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-api-2016.11.4-46.7.1.s390x", }, product_reference: "salt-api-2016.11.4-46.7.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-api-2016.11.4-46.7.1.x86_64 as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-api-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-api-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-bash-completion-2016.11.4-46.7.1.noarch as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-bash-completion-2016.11.4-46.7.1.noarch", }, product_reference: "salt-bash-completion-2016.11.4-46.7.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-cloud-2016.11.4-46.7.1.ppc64le as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-cloud-2016.11.4-46.7.1.ppc64le", }, product_reference: "salt-cloud-2016.11.4-46.7.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-cloud-2016.11.4-46.7.1.s390x as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-cloud-2016.11.4-46.7.1.s390x", }, product_reference: "salt-cloud-2016.11.4-46.7.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-cloud-2016.11.4-46.7.1.x86_64 as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-cloud-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-cloud-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-46.7.1.ppc64le as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-doc-2016.11.4-46.7.1.ppc64le", }, product_reference: "salt-doc-2016.11.4-46.7.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-46.7.1.s390x as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-doc-2016.11.4-46.7.1.s390x", }, product_reference: "salt-doc-2016.11.4-46.7.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-46.7.1.x86_64 as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-doc-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-doc-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-master-2016.11.4-46.7.1.ppc64le as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-master-2016.11.4-46.7.1.ppc64le", }, product_reference: "salt-master-2016.11.4-46.7.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-master-2016.11.4-46.7.1.s390x as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-master-2016.11.4-46.7.1.s390x", }, product_reference: "salt-master-2016.11.4-46.7.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-master-2016.11.4-46.7.1.x86_64 as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-master-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-master-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-46.7.1.ppc64le as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-minion-2016.11.4-46.7.1.ppc64le", }, product_reference: "salt-minion-2016.11.4-46.7.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-46.7.1.s390x as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-minion-2016.11.4-46.7.1.s390x", }, product_reference: "salt-minion-2016.11.4-46.7.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-46.7.1.x86_64 as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-minion-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-minion-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-proxy-2016.11.4-46.7.1.ppc64le as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-proxy-2016.11.4-46.7.1.ppc64le", }, product_reference: "salt-proxy-2016.11.4-46.7.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-proxy-2016.11.4-46.7.1.s390x as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-proxy-2016.11.4-46.7.1.s390x", }, product_reference: "salt-proxy-2016.11.4-46.7.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-proxy-2016.11.4-46.7.1.x86_64 as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-proxy-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-proxy-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-ssh-2016.11.4-46.7.1.ppc64le as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-ssh-2016.11.4-46.7.1.ppc64le", }, product_reference: "salt-ssh-2016.11.4-46.7.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-ssh-2016.11.4-46.7.1.s390x as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-ssh-2016.11.4-46.7.1.s390x", }, product_reference: "salt-ssh-2016.11.4-46.7.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-ssh-2016.11.4-46.7.1.x86_64 as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-ssh-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-ssh-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-syndic-2016.11.4-46.7.1.ppc64le as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-syndic-2016.11.4-46.7.1.ppc64le", }, product_reference: "salt-syndic-2016.11.4-46.7.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-syndic-2016.11.4-46.7.1.s390x as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-syndic-2016.11.4-46.7.1.s390x", }, product_reference: "salt-syndic-2016.11.4-46.7.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-syndic-2016.11.4-46.7.1.x86_64 as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-syndic-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-syndic-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-zsh-completion-2016.11.4-46.7.1.noarch as component of SUSE Linux Enterprise Module for Advanced Systems Management 12", product_id: "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-zsh-completion-2016.11.4-46.7.1.noarch", }, product_reference: "salt-zsh-completion-2016.11.4-46.7.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Advanced Systems Management 12", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-46.7.1.x86_64 as component of SUSE Linux Enterprise Point of Sale 12 SP2", product_id: "SUSE Linux Enterprise Point of Sale 12 SP2:salt-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Point of Sale 12 SP2", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-46.7.1.x86_64 as component of SUSE Linux Enterprise Point of Sale 12 SP2", product_id: "SUSE Linux Enterprise Point of Sale 12 SP2:salt-minion-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-minion-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Point of Sale 12 SP2", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-46.7.1.x86_64 as component of SUSE Manager Proxy 3.0", product_id: "SUSE Manager Proxy 3.0:salt-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Manager Proxy 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-api-2016.11.4-46.7.1.x86_64 as component of SUSE Manager Proxy 3.0", product_id: "SUSE Manager Proxy 3.0:salt-api-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-api-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Manager Proxy 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-bash-completion-2016.11.4-46.7.1.noarch as component of SUSE Manager Proxy 3.0", product_id: "SUSE Manager Proxy 3.0:salt-bash-completion-2016.11.4-46.7.1.noarch", }, product_reference: "salt-bash-completion-2016.11.4-46.7.1.noarch", relates_to_product_reference: "SUSE Manager Proxy 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-46.7.1.x86_64 as component of SUSE Manager Proxy 3.0", product_id: "SUSE Manager Proxy 3.0:salt-doc-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-doc-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Manager Proxy 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-master-2016.11.4-46.7.1.x86_64 as component of SUSE Manager Proxy 3.0", product_id: "SUSE Manager Proxy 3.0:salt-master-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-master-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Manager Proxy 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-46.7.1.x86_64 as component of SUSE Manager Proxy 3.0", product_id: "SUSE Manager Proxy 3.0:salt-minion-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-minion-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Manager Proxy 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-proxy-2016.11.4-46.7.1.x86_64 as component of SUSE Manager Proxy 3.0", product_id: "SUSE Manager Proxy 3.0:salt-proxy-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-proxy-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Manager Proxy 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-ssh-2016.11.4-46.7.1.x86_64 as component of SUSE Manager Proxy 3.0", product_id: "SUSE Manager Proxy 3.0:salt-ssh-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-ssh-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Manager Proxy 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-syndic-2016.11.4-46.7.1.x86_64 as component of SUSE Manager Proxy 3.0", product_id: "SUSE Manager Proxy 3.0:salt-syndic-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-syndic-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Manager Proxy 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-zsh-completion-2016.11.4-46.7.1.noarch as component of SUSE Manager Proxy 3.0", product_id: "SUSE Manager Proxy 3.0:salt-zsh-completion-2016.11.4-46.7.1.noarch", }, product_reference: "salt-zsh-completion-2016.11.4-46.7.1.noarch", relates_to_product_reference: "SUSE Manager Proxy 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-46.7.1.s390x as component of SUSE Manager Server 3.0", product_id: "SUSE Manager Server 3.0:salt-2016.11.4-46.7.1.s390x", }, product_reference: "salt-2016.11.4-46.7.1.s390x", relates_to_product_reference: "SUSE Manager Server 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-46.7.1.x86_64 as component of SUSE Manager Server 3.0", product_id: "SUSE Manager Server 3.0:salt-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Manager Server 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-api-2016.11.4-46.7.1.s390x as component of SUSE Manager Server 3.0", product_id: "SUSE Manager Server 3.0:salt-api-2016.11.4-46.7.1.s390x", }, product_reference: "salt-api-2016.11.4-46.7.1.s390x", relates_to_product_reference: "SUSE Manager Server 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-api-2016.11.4-46.7.1.x86_64 as component of SUSE Manager Server 3.0", product_id: "SUSE Manager Server 3.0:salt-api-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-api-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Manager Server 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-bash-completion-2016.11.4-46.7.1.noarch as component of SUSE Manager Server 3.0", product_id: "SUSE Manager Server 3.0:salt-bash-completion-2016.11.4-46.7.1.noarch", }, product_reference: "salt-bash-completion-2016.11.4-46.7.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-46.7.1.s390x as component of SUSE Manager Server 3.0", product_id: "SUSE Manager Server 3.0:salt-doc-2016.11.4-46.7.1.s390x", }, product_reference: "salt-doc-2016.11.4-46.7.1.s390x", relates_to_product_reference: "SUSE Manager Server 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-46.7.1.x86_64 as component of SUSE Manager Server 3.0", product_id: "SUSE Manager Server 3.0:salt-doc-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-doc-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Manager Server 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-master-2016.11.4-46.7.1.s390x as component of SUSE Manager Server 3.0", product_id: "SUSE Manager Server 3.0:salt-master-2016.11.4-46.7.1.s390x", }, product_reference: "salt-master-2016.11.4-46.7.1.s390x", relates_to_product_reference: "SUSE Manager Server 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-master-2016.11.4-46.7.1.x86_64 as component of SUSE Manager Server 3.0", product_id: "SUSE Manager Server 3.0:salt-master-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-master-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Manager Server 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-46.7.1.s390x as component of SUSE Manager Server 3.0", product_id: "SUSE Manager Server 3.0:salt-minion-2016.11.4-46.7.1.s390x", }, product_reference: "salt-minion-2016.11.4-46.7.1.s390x", relates_to_product_reference: "SUSE Manager Server 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-46.7.1.x86_64 as component of SUSE Manager Server 3.0", product_id: "SUSE Manager Server 3.0:salt-minion-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-minion-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Manager Server 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-proxy-2016.11.4-46.7.1.s390x as component of SUSE Manager Server 3.0", product_id: "SUSE Manager Server 3.0:salt-proxy-2016.11.4-46.7.1.s390x", }, product_reference: "salt-proxy-2016.11.4-46.7.1.s390x", relates_to_product_reference: "SUSE Manager Server 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-proxy-2016.11.4-46.7.1.x86_64 as component of SUSE Manager Server 3.0", product_id: "SUSE Manager Server 3.0:salt-proxy-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-proxy-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Manager Server 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-ssh-2016.11.4-46.7.1.s390x as component of SUSE Manager Server 3.0", product_id: "SUSE Manager Server 3.0:salt-ssh-2016.11.4-46.7.1.s390x", }, product_reference: "salt-ssh-2016.11.4-46.7.1.s390x", relates_to_product_reference: "SUSE Manager Server 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-ssh-2016.11.4-46.7.1.x86_64 as component of SUSE Manager Server 3.0", product_id: "SUSE Manager Server 3.0:salt-ssh-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-ssh-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Manager Server 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-syndic-2016.11.4-46.7.1.s390x as component of SUSE Manager Server 3.0", product_id: "SUSE Manager Server 3.0:salt-syndic-2016.11.4-46.7.1.s390x", }, product_reference: "salt-syndic-2016.11.4-46.7.1.s390x", relates_to_product_reference: "SUSE Manager Server 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-syndic-2016.11.4-46.7.1.x86_64 as component of SUSE Manager Server 3.0", product_id: "SUSE Manager Server 3.0:salt-syndic-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-syndic-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Manager Server 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-zsh-completion-2016.11.4-46.7.1.noarch as component of SUSE Manager Server 3.0", product_id: "SUSE Manager Server 3.0:salt-zsh-completion-2016.11.4-46.7.1.noarch", }, product_reference: "salt-zsh-completion-2016.11.4-46.7.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.0", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-46.7.1.aarch64 as component of SUSE Enterprise Storage 3", product_id: "SUSE Enterprise Storage 3:salt-2016.11.4-46.7.1.aarch64", }, product_reference: "salt-2016.11.4-46.7.1.aarch64", relates_to_product_reference: "SUSE Enterprise Storage 3", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-46.7.1.x86_64 as component of SUSE Enterprise Storage 3", product_id: "SUSE Enterprise Storage 3:salt-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 3", }, { category: "default_component_of", full_product_name: { name: "salt-master-2016.11.4-46.7.1.aarch64 as component of SUSE Enterprise Storage 3", product_id: "SUSE Enterprise Storage 3:salt-master-2016.11.4-46.7.1.aarch64", }, product_reference: "salt-master-2016.11.4-46.7.1.aarch64", relates_to_product_reference: "SUSE Enterprise Storage 3", }, { category: "default_component_of", full_product_name: { name: "salt-master-2016.11.4-46.7.1.x86_64 as component of SUSE Enterprise Storage 3", product_id: "SUSE Enterprise Storage 3:salt-master-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-master-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 3", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-46.7.1.aarch64 as component of SUSE Enterprise Storage 3", product_id: "SUSE Enterprise Storage 3:salt-minion-2016.11.4-46.7.1.aarch64", }, product_reference: "salt-minion-2016.11.4-46.7.1.aarch64", relates_to_product_reference: "SUSE Enterprise Storage 3", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-46.7.1.x86_64 as component of SUSE Enterprise Storage 3", product_id: "SUSE Enterprise Storage 3:salt-minion-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-minion-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 3", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-46.7.1.aarch64 as component of SUSE Enterprise Storage 4", product_id: "SUSE Enterprise Storage 4:salt-2016.11.4-46.7.1.aarch64", }, product_reference: "salt-2016.11.4-46.7.1.aarch64", relates_to_product_reference: "SUSE Enterprise Storage 4", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-46.7.1.x86_64 as component of SUSE Enterprise Storage 4", product_id: "SUSE Enterprise Storage 4:salt-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 4", }, { category: "default_component_of", full_product_name: { name: "salt-master-2016.11.4-46.7.1.aarch64 as component of SUSE Enterprise Storage 4", product_id: "SUSE Enterprise Storage 4:salt-master-2016.11.4-46.7.1.aarch64", }, product_reference: "salt-master-2016.11.4-46.7.1.aarch64", relates_to_product_reference: "SUSE Enterprise Storage 4", }, { category: "default_component_of", full_product_name: { name: "salt-master-2016.11.4-46.7.1.x86_64 as component of SUSE Enterprise Storage 4", product_id: "SUSE Enterprise Storage 4:salt-master-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-master-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 4", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-46.7.1.aarch64 as component of SUSE Enterprise Storage 4", product_id: "SUSE Enterprise Storage 4:salt-minion-2016.11.4-46.7.1.aarch64", }, product_reference: "salt-minion-2016.11.4-46.7.1.aarch64", relates_to_product_reference: "SUSE Enterprise Storage 4", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-46.7.1.x86_64 as component of SUSE Enterprise Storage 4", product_id: "SUSE Enterprise Storage 4:salt-minion-2016.11.4-46.7.1.x86_64", }, product_reference: "salt-minion-2016.11.4-46.7.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 4", }, ], }, vulnerabilities: [ { cve: "CVE-2017-12791", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2017-12791", }, ], notes: [ { category: "general", text: "Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 3:salt-2016.11.4-46.7.1.aarch64", "SUSE Enterprise Storage 3:salt-2016.11.4-46.7.1.x86_64", "SUSE Enterprise Storage 3:salt-master-2016.11.4-46.7.1.aarch64", "SUSE Enterprise Storage 3:salt-master-2016.11.4-46.7.1.x86_64", "SUSE Enterprise Storage 3:salt-minion-2016.11.4-46.7.1.aarch64", "SUSE Enterprise Storage 3:salt-minion-2016.11.4-46.7.1.x86_64", "SUSE Enterprise Storage 4:salt-2016.11.4-46.7.1.aarch64", "SUSE Enterprise Storage 4:salt-2016.11.4-46.7.1.x86_64", "SUSE Enterprise Storage 4:salt-master-2016.11.4-46.7.1.aarch64", "SUSE Enterprise Storage 4:salt-master-2016.11.4-46.7.1.x86_64", "SUSE Enterprise Storage 4:salt-minion-2016.11.4-46.7.1.aarch64", "SUSE Enterprise Storage 4:salt-minion-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-api-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-api-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-api-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-bash-completion-2016.11.4-46.7.1.noarch", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-cloud-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-cloud-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-cloud-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-doc-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-doc-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-doc-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-master-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-master-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-master-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-minion-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-minion-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-minion-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-proxy-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-proxy-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-proxy-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-ssh-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-ssh-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-ssh-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-syndic-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-syndic-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-syndic-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-zsh-completion-2016.11.4-46.7.1.noarch", "SUSE Linux Enterprise Point of Sale 12 SP2:salt-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Point of Sale 12 SP2:salt-minion-2016.11.4-46.7.1.x86_64", "SUSE Manager Client Tools 12:salt-2016.11.4-46.7.1.aarch64", "SUSE Manager Client Tools 12:salt-2016.11.4-46.7.1.ppc64le", "SUSE Manager Client Tools 12:salt-2016.11.4-46.7.1.s390x", "SUSE Manager Client Tools 12:salt-2016.11.4-46.7.1.x86_64", "SUSE Manager Client Tools 12:salt-doc-2016.11.4-46.7.1.aarch64", "SUSE Manager Client Tools 12:salt-doc-2016.11.4-46.7.1.ppc64le", "SUSE Manager Client Tools 12:salt-doc-2016.11.4-46.7.1.s390x", "SUSE Manager Client Tools 12:salt-doc-2016.11.4-46.7.1.x86_64", "SUSE Manager Client Tools 12:salt-minion-2016.11.4-46.7.1.aarch64", "SUSE Manager Client Tools 12:salt-minion-2016.11.4-46.7.1.ppc64le", "SUSE Manager Client Tools 12:salt-minion-2016.11.4-46.7.1.s390x", "SUSE Manager Client Tools 12:salt-minion-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-api-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-bash-completion-2016.11.4-46.7.1.noarch", "SUSE Manager Proxy 3.0:salt-doc-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-master-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-minion-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-proxy-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-ssh-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-syndic-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-zsh-completion-2016.11.4-46.7.1.noarch", "SUSE Manager Server 3.0:salt-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-api-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-api-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-bash-completion-2016.11.4-46.7.1.noarch", "SUSE Manager Server 3.0:salt-doc-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-doc-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-master-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-master-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-minion-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-minion-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-proxy-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-proxy-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-ssh-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-ssh-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-syndic-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-syndic-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-zsh-completion-2016.11.4-46.7.1.noarch", ], }, references: [ { category: "external", summary: "CVE-2017-12791", url: "https://www.suse.com/security/cve/CVE-2017-12791", }, { category: "external", summary: "SUSE Bug 1053955 for CVE-2017-12791", url: "https://bugzilla.suse.com/1053955", }, { category: "external", summary: "SUSE Bug 1062462 for CVE-2017-12791", url: "https://bugzilla.suse.com/1062462", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 3:salt-2016.11.4-46.7.1.aarch64", "SUSE Enterprise Storage 3:salt-2016.11.4-46.7.1.x86_64", "SUSE Enterprise Storage 3:salt-master-2016.11.4-46.7.1.aarch64", "SUSE Enterprise Storage 3:salt-master-2016.11.4-46.7.1.x86_64", "SUSE Enterprise Storage 3:salt-minion-2016.11.4-46.7.1.aarch64", "SUSE Enterprise Storage 3:salt-minion-2016.11.4-46.7.1.x86_64", "SUSE Enterprise Storage 4:salt-2016.11.4-46.7.1.aarch64", "SUSE Enterprise Storage 4:salt-2016.11.4-46.7.1.x86_64", "SUSE Enterprise Storage 4:salt-master-2016.11.4-46.7.1.aarch64", "SUSE Enterprise Storage 4:salt-master-2016.11.4-46.7.1.x86_64", "SUSE Enterprise Storage 4:salt-minion-2016.11.4-46.7.1.aarch64", "SUSE Enterprise Storage 4:salt-minion-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-api-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-api-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-api-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-bash-completion-2016.11.4-46.7.1.noarch", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-cloud-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-cloud-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-cloud-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-doc-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-doc-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-doc-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-master-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-master-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-master-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-minion-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-minion-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-minion-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-proxy-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-proxy-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-proxy-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-ssh-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-ssh-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-ssh-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-syndic-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-syndic-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-syndic-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-zsh-completion-2016.11.4-46.7.1.noarch", "SUSE Linux Enterprise Point of Sale 12 SP2:salt-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Point of Sale 12 SP2:salt-minion-2016.11.4-46.7.1.x86_64", "SUSE Manager Client Tools 12:salt-2016.11.4-46.7.1.aarch64", "SUSE Manager Client Tools 12:salt-2016.11.4-46.7.1.ppc64le", "SUSE Manager Client Tools 12:salt-2016.11.4-46.7.1.s390x", "SUSE Manager Client Tools 12:salt-2016.11.4-46.7.1.x86_64", "SUSE Manager Client Tools 12:salt-doc-2016.11.4-46.7.1.aarch64", "SUSE Manager Client Tools 12:salt-doc-2016.11.4-46.7.1.ppc64le", "SUSE Manager Client Tools 12:salt-doc-2016.11.4-46.7.1.s390x", "SUSE Manager Client Tools 12:salt-doc-2016.11.4-46.7.1.x86_64", "SUSE Manager Client Tools 12:salt-minion-2016.11.4-46.7.1.aarch64", "SUSE Manager Client Tools 12:salt-minion-2016.11.4-46.7.1.ppc64le", "SUSE Manager Client Tools 12:salt-minion-2016.11.4-46.7.1.s390x", "SUSE Manager Client Tools 12:salt-minion-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-api-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-bash-completion-2016.11.4-46.7.1.noarch", "SUSE Manager Proxy 3.0:salt-doc-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-master-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-minion-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-proxy-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-ssh-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-syndic-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-zsh-completion-2016.11.4-46.7.1.noarch", "SUSE Manager Server 3.0:salt-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-api-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-api-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-bash-completion-2016.11.4-46.7.1.noarch", "SUSE Manager Server 3.0:salt-doc-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-doc-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-master-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-master-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-minion-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-minion-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-proxy-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-proxy-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-ssh-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-ssh-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-syndic-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-syndic-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-zsh-completion-2016.11.4-46.7.1.noarch", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "SUSE Enterprise Storage 3:salt-2016.11.4-46.7.1.aarch64", "SUSE Enterprise Storage 3:salt-2016.11.4-46.7.1.x86_64", "SUSE Enterprise Storage 3:salt-master-2016.11.4-46.7.1.aarch64", "SUSE Enterprise Storage 3:salt-master-2016.11.4-46.7.1.x86_64", "SUSE Enterprise Storage 3:salt-minion-2016.11.4-46.7.1.aarch64", "SUSE Enterprise Storage 3:salt-minion-2016.11.4-46.7.1.x86_64", "SUSE Enterprise Storage 4:salt-2016.11.4-46.7.1.aarch64", "SUSE Enterprise Storage 4:salt-2016.11.4-46.7.1.x86_64", "SUSE Enterprise Storage 4:salt-master-2016.11.4-46.7.1.aarch64", "SUSE Enterprise Storage 4:salt-master-2016.11.4-46.7.1.x86_64", "SUSE Enterprise Storage 4:salt-minion-2016.11.4-46.7.1.aarch64", "SUSE Enterprise Storage 4:salt-minion-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-api-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-api-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-api-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-bash-completion-2016.11.4-46.7.1.noarch", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-cloud-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-cloud-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-cloud-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-doc-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-doc-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-doc-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-master-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-master-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-master-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-minion-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-minion-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-minion-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-proxy-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-proxy-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-proxy-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-ssh-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-ssh-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-ssh-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-syndic-2016.11.4-46.7.1.ppc64le", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-syndic-2016.11.4-46.7.1.s390x", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-syndic-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Module for Advanced Systems Management 12:salt-zsh-completion-2016.11.4-46.7.1.noarch", "SUSE Linux Enterprise Point of Sale 12 SP2:salt-2016.11.4-46.7.1.x86_64", "SUSE Linux Enterprise Point of Sale 12 SP2:salt-minion-2016.11.4-46.7.1.x86_64", "SUSE Manager Client Tools 12:salt-2016.11.4-46.7.1.aarch64", "SUSE Manager Client Tools 12:salt-2016.11.4-46.7.1.ppc64le", "SUSE Manager Client Tools 12:salt-2016.11.4-46.7.1.s390x", "SUSE Manager Client Tools 12:salt-2016.11.4-46.7.1.x86_64", "SUSE Manager Client Tools 12:salt-doc-2016.11.4-46.7.1.aarch64", "SUSE Manager Client Tools 12:salt-doc-2016.11.4-46.7.1.ppc64le", "SUSE Manager Client Tools 12:salt-doc-2016.11.4-46.7.1.s390x", "SUSE Manager Client Tools 12:salt-doc-2016.11.4-46.7.1.x86_64", "SUSE Manager Client Tools 12:salt-minion-2016.11.4-46.7.1.aarch64", "SUSE Manager Client Tools 12:salt-minion-2016.11.4-46.7.1.ppc64le", "SUSE Manager Client Tools 12:salt-minion-2016.11.4-46.7.1.s390x", "SUSE Manager Client Tools 12:salt-minion-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-api-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-bash-completion-2016.11.4-46.7.1.noarch", "SUSE Manager Proxy 3.0:salt-doc-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-master-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-minion-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-proxy-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-ssh-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-syndic-2016.11.4-46.7.1.x86_64", "SUSE Manager Proxy 3.0:salt-zsh-completion-2016.11.4-46.7.1.noarch", "SUSE Manager Server 3.0:salt-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-api-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-api-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-bash-completion-2016.11.4-46.7.1.noarch", "SUSE Manager Server 3.0:salt-doc-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-doc-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-master-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-master-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-minion-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-minion-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-proxy-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-proxy-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-ssh-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-ssh-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-syndic-2016.11.4-46.7.1.s390x", "SUSE Manager Server 3.0:salt-syndic-2016.11.4-46.7.1.x86_64", "SUSE Manager Server 3.0:salt-zsh-completion-2016.11.4-46.7.1.noarch", ], }, ], threats: [ { category: "impact", date: "2017-10-09T13:39:39Z", details: "moderate", }, ], title: "CVE-2017-12791", }, ], }
suse-su-2017:2674-1
Vulnerability from csaf_suse
Published
2017-10-09 13:38
Modified
2017-10-09 13:38
Summary
Security update for Salt
Notes
Title of the patch
Security update for Salt
Description of the patch
This update for salt fixes one security issue and bugs:
The following security issue has been fixed:
- CVE-2017-12791: Directory traversal vulnerability in minion id validation
allowed remote minions with incorrect credentials to authenticate to a master
via a crafted minion ID (bsc#1053955).
Additionally, the following non-security issues have been fixed:
- Added support for SUSE Manager scalability features. (bsc#1052264)
- Introduced the kubernetes module. (bsc#1051948)
- Notify systemd synchronously via NOTIFY_SOCKET. (bsc#1053376)
- Added bugfix when jobs scheduled to run at a future time stay pending for Salt minions. (bsc#1036125)
- Adding procps as dependency. This provides 'ps' and 'pgrep' utils which are called from different Salt
modules and also from new salt-minion watchdog.
Patchnames
SUSE-SUSE-Manager-Proxy-3.1-2017-1654,SUSE-SUSE-Manager-Server-3.1-2017-1654
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for Salt", title: "Title of the patch", }, { category: "description", text: "This update for salt fixes one security issue and bugs:\n\nThe following security issue has been fixed:\n\n- CVE-2017-12791: Directory traversal vulnerability in minion id validation\n allowed remote minions with incorrect credentials to authenticate to a master\n via a crafted minion ID (bsc#1053955).\n\nAdditionally, the following non-security issues have been fixed:\n\n- Added support for SUSE Manager scalability features. (bsc#1052264)\n- Introduced the kubernetes module. (bsc#1051948)\n- Notify systemd synchronously via NOTIFY_SOCKET. (bsc#1053376)\n- Added bugfix when jobs scheduled to run at a future time stay pending for Salt minions. (bsc#1036125)\n- Adding procps as dependency. This provides 'ps' and 'pgrep' utils which are called from different Salt\n modules and also from new salt-minion watchdog.", title: "Description of the patch", }, { category: "details", text: "SUSE-SUSE-Manager-Proxy-3.1-2017-1654,SUSE-SUSE-Manager-Server-3.1-2017-1654", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_2674-1.json", }, { category: "self", summary: "URL for SUSE-SU-2017:2674-1", url: "https://www.suse.com/support/update/announcement/2017/suse-su-20172674-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2017:2674-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2017-October/003280.html", }, { category: "self", summary: "SUSE Bug 1036125", url: "https://bugzilla.suse.com/1036125", }, { category: "self", summary: "SUSE Bug 1051948", url: "https://bugzilla.suse.com/1051948", }, { category: "self", summary: "SUSE Bug 1052264", url: "https://bugzilla.suse.com/1052264", }, { category: "self", summary: "SUSE Bug 1053376", url: "https://bugzilla.suse.com/1053376", }, { category: "self", summary: "SUSE Bug 1053955", url: "https://bugzilla.suse.com/1053955", }, { category: "self", summary: "SUSE CVE CVE-2017-12791 page", url: "https://www.suse.com/security/cve/CVE-2017-12791/", }, ], title: "Security update for Salt", tracking: { current_release_date: "2017-10-09T13:38:11Z", generator: { date: "2017-10-09T13:38:11Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2017:2674-1", initial_release_date: "2017-10-09T13:38:11Z", revision_history: [ { date: "2017-10-09T13:38:11Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "salt-bash-completion-2016.11.4-4.3.1.noarch", product: { name: "salt-bash-completion-2016.11.4-4.3.1.noarch", product_id: "salt-bash-completion-2016.11.4-4.3.1.noarch", }, }, { category: "product_version", name: "salt-zsh-completion-2016.11.4-4.3.1.noarch", product: { name: "salt-zsh-completion-2016.11.4-4.3.1.noarch", product_id: "salt-zsh-completion-2016.11.4-4.3.1.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "salt-2016.11.4-4.3.1.ppc64le", product: { name: "salt-2016.11.4-4.3.1.ppc64le", product_id: "salt-2016.11.4-4.3.1.ppc64le", }, }, { category: "product_version", name: "salt-minion-2016.11.4-4.3.1.ppc64le", product: { name: "salt-minion-2016.11.4-4.3.1.ppc64le", product_id: "salt-minion-2016.11.4-4.3.1.ppc64le", }, }, { category: "product_version", name: "salt-api-2016.11.4-4.3.1.ppc64le", product: { name: "salt-api-2016.11.4-4.3.1.ppc64le", product_id: "salt-api-2016.11.4-4.3.1.ppc64le", }, }, { category: "product_version", name: "salt-cloud-2016.11.4-4.3.1.ppc64le", product: { name: "salt-cloud-2016.11.4-4.3.1.ppc64le", product_id: "salt-cloud-2016.11.4-4.3.1.ppc64le", }, }, { category: "product_version", name: "salt-doc-2016.11.4-4.3.1.ppc64le", product: { name: "salt-doc-2016.11.4-4.3.1.ppc64le", product_id: "salt-doc-2016.11.4-4.3.1.ppc64le", }, }, { category: "product_version", name: "salt-master-2016.11.4-4.3.1.ppc64le", product: { name: "salt-master-2016.11.4-4.3.1.ppc64le", product_id: "salt-master-2016.11.4-4.3.1.ppc64le", }, }, { category: "product_version", name: "salt-proxy-2016.11.4-4.3.1.ppc64le", product: { name: "salt-proxy-2016.11.4-4.3.1.ppc64le", product_id: "salt-proxy-2016.11.4-4.3.1.ppc64le", }, }, { category: "product_version", name: "salt-ssh-2016.11.4-4.3.1.ppc64le", product: { name: "salt-ssh-2016.11.4-4.3.1.ppc64le", product_id: "salt-ssh-2016.11.4-4.3.1.ppc64le", }, }, { category: "product_version", name: "salt-syndic-2016.11.4-4.3.1.ppc64le", product: { name: "salt-syndic-2016.11.4-4.3.1.ppc64le", product_id: "salt-syndic-2016.11.4-4.3.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "salt-2016.11.4-4.3.1.s390x", product: { name: "salt-2016.11.4-4.3.1.s390x", product_id: "salt-2016.11.4-4.3.1.s390x", }, }, { category: "product_version", name: "salt-api-2016.11.4-4.3.1.s390x", product: { name: "salt-api-2016.11.4-4.3.1.s390x", product_id: "salt-api-2016.11.4-4.3.1.s390x", }, }, { category: "product_version", name: "salt-cloud-2016.11.4-4.3.1.s390x", product: { name: "salt-cloud-2016.11.4-4.3.1.s390x", product_id: "salt-cloud-2016.11.4-4.3.1.s390x", }, }, { category: "product_version", name: "salt-doc-2016.11.4-4.3.1.s390x", product: { name: "salt-doc-2016.11.4-4.3.1.s390x", product_id: "salt-doc-2016.11.4-4.3.1.s390x", }, }, { category: "product_version", name: "salt-master-2016.11.4-4.3.1.s390x", product: { name: "salt-master-2016.11.4-4.3.1.s390x", product_id: "salt-master-2016.11.4-4.3.1.s390x", }, }, { category: "product_version", name: "salt-minion-2016.11.4-4.3.1.s390x", product: { name: "salt-minion-2016.11.4-4.3.1.s390x", product_id: "salt-minion-2016.11.4-4.3.1.s390x", }, }, { category: "product_version", name: "salt-proxy-2016.11.4-4.3.1.s390x", product: { name: "salt-proxy-2016.11.4-4.3.1.s390x", product_id: "salt-proxy-2016.11.4-4.3.1.s390x", }, }, { category: "product_version", name: "salt-ssh-2016.11.4-4.3.1.s390x", product: { name: "salt-ssh-2016.11.4-4.3.1.s390x", product_id: "salt-ssh-2016.11.4-4.3.1.s390x", }, }, { category: "product_version", name: "salt-syndic-2016.11.4-4.3.1.s390x", product: { name: "salt-syndic-2016.11.4-4.3.1.s390x", product_id: "salt-syndic-2016.11.4-4.3.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "salt-2016.11.4-4.3.1.x86_64", product: { name: "salt-2016.11.4-4.3.1.x86_64", product_id: "salt-2016.11.4-4.3.1.x86_64", }, }, { category: "product_version", name: "salt-minion-2016.11.4-4.3.1.x86_64", product: { name: "salt-minion-2016.11.4-4.3.1.x86_64", product_id: "salt-minion-2016.11.4-4.3.1.x86_64", }, }, { category: "product_version", name: "salt-api-2016.11.4-4.3.1.x86_64", product: { name: "salt-api-2016.11.4-4.3.1.x86_64", product_id: "salt-api-2016.11.4-4.3.1.x86_64", }, }, { category: "product_version", name: "salt-cloud-2016.11.4-4.3.1.x86_64", product: { name: "salt-cloud-2016.11.4-4.3.1.x86_64", product_id: "salt-cloud-2016.11.4-4.3.1.x86_64", }, }, { category: "product_version", name: "salt-doc-2016.11.4-4.3.1.x86_64", product: { name: "salt-doc-2016.11.4-4.3.1.x86_64", product_id: "salt-doc-2016.11.4-4.3.1.x86_64", }, }, { category: "product_version", name: "salt-master-2016.11.4-4.3.1.x86_64", product: { name: "salt-master-2016.11.4-4.3.1.x86_64", product_id: "salt-master-2016.11.4-4.3.1.x86_64", }, }, { category: "product_version", name: "salt-proxy-2016.11.4-4.3.1.x86_64", product: { name: "salt-proxy-2016.11.4-4.3.1.x86_64", product_id: "salt-proxy-2016.11.4-4.3.1.x86_64", }, }, { category: "product_version", name: "salt-ssh-2016.11.4-4.3.1.x86_64", product: { name: "salt-ssh-2016.11.4-4.3.1.x86_64", product_id: "salt-ssh-2016.11.4-4.3.1.x86_64", }, }, { category: "product_version", name: "salt-syndic-2016.11.4-4.3.1.x86_64", product: { name: "salt-syndic-2016.11.4-4.3.1.x86_64", product_id: "salt-syndic-2016.11.4-4.3.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Manager Proxy 3.1", product: { name: "SUSE Manager Proxy 3.1", product_id: "SUSE Manager Proxy 3.1", product_identification_helper: { cpe: "cpe:/o:suse:suse-manager-proxy:3.1", }, }, }, { category: "product_name", name: "SUSE Manager Server 3.1", product: { name: "SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1", product_identification_helper: { cpe: "cpe:/o:suse:suse-manager-server:3.1", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-4.3.1.ppc64le as component of SUSE Manager Proxy 3.1", product_id: "SUSE Manager Proxy 3.1:salt-2016.11.4-4.3.1.ppc64le", }, product_reference: "salt-2016.11.4-4.3.1.ppc64le", relates_to_product_reference: "SUSE Manager Proxy 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-4.3.1.x86_64 as component of SUSE Manager Proxy 3.1", product_id: "SUSE Manager Proxy 3.1:salt-2016.11.4-4.3.1.x86_64", }, product_reference: "salt-2016.11.4-4.3.1.x86_64", relates_to_product_reference: "SUSE Manager Proxy 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-4.3.1.ppc64le as component of SUSE Manager Proxy 3.1", product_id: "SUSE Manager Proxy 3.1:salt-minion-2016.11.4-4.3.1.ppc64le", }, product_reference: "salt-minion-2016.11.4-4.3.1.ppc64le", relates_to_product_reference: "SUSE Manager Proxy 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-4.3.1.x86_64 as component of SUSE Manager Proxy 3.1", product_id: "SUSE Manager Proxy 3.1:salt-minion-2016.11.4-4.3.1.x86_64", }, product_reference: "salt-minion-2016.11.4-4.3.1.x86_64", relates_to_product_reference: "SUSE Manager Proxy 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-4.3.1.ppc64le as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-2016.11.4-4.3.1.ppc64le", }, product_reference: "salt-2016.11.4-4.3.1.ppc64le", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-4.3.1.s390x as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-2016.11.4-4.3.1.s390x", }, product_reference: "salt-2016.11.4-4.3.1.s390x", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-4.3.1.x86_64 as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-2016.11.4-4.3.1.x86_64", }, product_reference: "salt-2016.11.4-4.3.1.x86_64", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-api-2016.11.4-4.3.1.ppc64le as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-api-2016.11.4-4.3.1.ppc64le", }, product_reference: "salt-api-2016.11.4-4.3.1.ppc64le", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-api-2016.11.4-4.3.1.s390x as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-api-2016.11.4-4.3.1.s390x", }, product_reference: "salt-api-2016.11.4-4.3.1.s390x", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-api-2016.11.4-4.3.1.x86_64 as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-api-2016.11.4-4.3.1.x86_64", }, product_reference: "salt-api-2016.11.4-4.3.1.x86_64", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-bash-completion-2016.11.4-4.3.1.noarch as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-bash-completion-2016.11.4-4.3.1.noarch", }, product_reference: "salt-bash-completion-2016.11.4-4.3.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-cloud-2016.11.4-4.3.1.ppc64le as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-cloud-2016.11.4-4.3.1.ppc64le", }, product_reference: "salt-cloud-2016.11.4-4.3.1.ppc64le", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-cloud-2016.11.4-4.3.1.s390x as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-cloud-2016.11.4-4.3.1.s390x", }, product_reference: "salt-cloud-2016.11.4-4.3.1.s390x", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-cloud-2016.11.4-4.3.1.x86_64 as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-cloud-2016.11.4-4.3.1.x86_64", }, product_reference: "salt-cloud-2016.11.4-4.3.1.x86_64", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-4.3.1.ppc64le as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-doc-2016.11.4-4.3.1.ppc64le", }, product_reference: "salt-doc-2016.11.4-4.3.1.ppc64le", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-4.3.1.s390x as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-doc-2016.11.4-4.3.1.s390x", }, product_reference: "salt-doc-2016.11.4-4.3.1.s390x", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-4.3.1.x86_64 as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-doc-2016.11.4-4.3.1.x86_64", }, product_reference: "salt-doc-2016.11.4-4.3.1.x86_64", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-master-2016.11.4-4.3.1.ppc64le as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-master-2016.11.4-4.3.1.ppc64le", }, product_reference: "salt-master-2016.11.4-4.3.1.ppc64le", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-master-2016.11.4-4.3.1.s390x as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-master-2016.11.4-4.3.1.s390x", }, product_reference: "salt-master-2016.11.4-4.3.1.s390x", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-master-2016.11.4-4.3.1.x86_64 as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-master-2016.11.4-4.3.1.x86_64", }, product_reference: "salt-master-2016.11.4-4.3.1.x86_64", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-4.3.1.ppc64le as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-minion-2016.11.4-4.3.1.ppc64le", }, product_reference: "salt-minion-2016.11.4-4.3.1.ppc64le", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-4.3.1.s390x as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-minion-2016.11.4-4.3.1.s390x", }, product_reference: "salt-minion-2016.11.4-4.3.1.s390x", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-4.3.1.x86_64 as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-minion-2016.11.4-4.3.1.x86_64", }, product_reference: "salt-minion-2016.11.4-4.3.1.x86_64", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-proxy-2016.11.4-4.3.1.ppc64le as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-proxy-2016.11.4-4.3.1.ppc64le", }, product_reference: "salt-proxy-2016.11.4-4.3.1.ppc64le", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-proxy-2016.11.4-4.3.1.s390x as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-proxy-2016.11.4-4.3.1.s390x", }, product_reference: "salt-proxy-2016.11.4-4.3.1.s390x", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-proxy-2016.11.4-4.3.1.x86_64 as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-proxy-2016.11.4-4.3.1.x86_64", }, product_reference: "salt-proxy-2016.11.4-4.3.1.x86_64", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-ssh-2016.11.4-4.3.1.ppc64le as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-ssh-2016.11.4-4.3.1.ppc64le", }, product_reference: "salt-ssh-2016.11.4-4.3.1.ppc64le", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-ssh-2016.11.4-4.3.1.s390x as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-ssh-2016.11.4-4.3.1.s390x", }, product_reference: "salt-ssh-2016.11.4-4.3.1.s390x", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-ssh-2016.11.4-4.3.1.x86_64 as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-ssh-2016.11.4-4.3.1.x86_64", }, product_reference: "salt-ssh-2016.11.4-4.3.1.x86_64", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-syndic-2016.11.4-4.3.1.ppc64le as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-syndic-2016.11.4-4.3.1.ppc64le", }, product_reference: "salt-syndic-2016.11.4-4.3.1.ppc64le", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-syndic-2016.11.4-4.3.1.s390x as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-syndic-2016.11.4-4.3.1.s390x", }, product_reference: "salt-syndic-2016.11.4-4.3.1.s390x", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-syndic-2016.11.4-4.3.1.x86_64 as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-syndic-2016.11.4-4.3.1.x86_64", }, product_reference: "salt-syndic-2016.11.4-4.3.1.x86_64", relates_to_product_reference: "SUSE Manager Server 3.1", }, { category: "default_component_of", full_product_name: { name: "salt-zsh-completion-2016.11.4-4.3.1.noarch as component of SUSE Manager Server 3.1", product_id: "SUSE Manager Server 3.1:salt-zsh-completion-2016.11.4-4.3.1.noarch", }, product_reference: "salt-zsh-completion-2016.11.4-4.3.1.noarch", relates_to_product_reference: "SUSE Manager Server 3.1", }, ], }, vulnerabilities: [ { cve: "CVE-2017-12791", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2017-12791", }, ], notes: [ { category: "general", text: "Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Manager Proxy 3.1:salt-2016.11.4-4.3.1.ppc64le", "SUSE Manager Proxy 3.1:salt-2016.11.4-4.3.1.x86_64", "SUSE Manager Proxy 3.1:salt-minion-2016.11.4-4.3.1.ppc64le", "SUSE Manager Proxy 3.1:salt-minion-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-api-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-api-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-api-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-bash-completion-2016.11.4-4.3.1.noarch", "SUSE Manager Server 3.1:salt-cloud-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-cloud-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-cloud-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-doc-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-doc-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-doc-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-master-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-master-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-master-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-minion-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-minion-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-minion-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-proxy-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-proxy-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-proxy-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-ssh-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-ssh-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-ssh-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-syndic-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-syndic-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-syndic-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-zsh-completion-2016.11.4-4.3.1.noarch", ], }, references: [ { category: "external", summary: "CVE-2017-12791", url: "https://www.suse.com/security/cve/CVE-2017-12791", }, { category: "external", summary: "SUSE Bug 1053955 for CVE-2017-12791", url: "https://bugzilla.suse.com/1053955", }, { category: "external", summary: "SUSE Bug 1062462 for CVE-2017-12791", url: "https://bugzilla.suse.com/1062462", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Manager Proxy 3.1:salt-2016.11.4-4.3.1.ppc64le", "SUSE Manager Proxy 3.1:salt-2016.11.4-4.3.1.x86_64", "SUSE Manager Proxy 3.1:salt-minion-2016.11.4-4.3.1.ppc64le", "SUSE Manager Proxy 3.1:salt-minion-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-api-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-api-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-api-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-bash-completion-2016.11.4-4.3.1.noarch", "SUSE Manager Server 3.1:salt-cloud-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-cloud-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-cloud-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-doc-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-doc-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-doc-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-master-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-master-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-master-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-minion-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-minion-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-minion-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-proxy-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-proxy-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-proxy-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-ssh-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-ssh-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-ssh-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-syndic-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-syndic-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-syndic-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-zsh-completion-2016.11.4-4.3.1.noarch", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "SUSE Manager Proxy 3.1:salt-2016.11.4-4.3.1.ppc64le", "SUSE Manager Proxy 3.1:salt-2016.11.4-4.3.1.x86_64", "SUSE Manager Proxy 3.1:salt-minion-2016.11.4-4.3.1.ppc64le", "SUSE Manager Proxy 3.1:salt-minion-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-api-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-api-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-api-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-bash-completion-2016.11.4-4.3.1.noarch", "SUSE Manager Server 3.1:salt-cloud-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-cloud-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-cloud-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-doc-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-doc-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-doc-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-master-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-master-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-master-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-minion-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-minion-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-minion-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-proxy-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-proxy-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-proxy-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-ssh-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-ssh-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-ssh-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-syndic-2016.11.4-4.3.1.ppc64le", "SUSE Manager Server 3.1:salt-syndic-2016.11.4-4.3.1.s390x", "SUSE Manager Server 3.1:salt-syndic-2016.11.4-4.3.1.x86_64", "SUSE Manager Server 3.1:salt-zsh-completion-2016.11.4-4.3.1.noarch", ], }, ], threats: [ { category: "impact", date: "2017-10-09T13:38:11Z", details: "moderate", }, ], title: "CVE-2017-12791", }, ], }
suse-su-2017:2666-1
Vulnerability from csaf_suse
Published
2017-10-09 13:38
Modified
2017-10-09 13:38
Summary
Security update for salt
Notes
Title of the patch
Security update for salt
Description of the patch
This update for salt fixes one security issue and bugs.
The following security issue has been fixed:
- CVE-2017-12791: Directory traversal vulnerability in minion id validation
allowed remote minions with incorrect credentials to authenticate to a master
via a crafted minion ID (bsc#1053955).
Additionally, the following non-security issues have been fixed:
- Added support for SUSE Manager scalability features. (bsc#1052264)
- Introduced the kubernetes module. (bsc#1051948)
- Notify systemd synchronously via NOTIFY_SOCKET. (bsc#1053376)
Patchnames
slesctsp3-salt-13304,slesctsp4-salt-13304
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for salt", title: "Title of the patch", }, { category: "description", text: "This update for salt fixes one security issue and bugs.\n\nThe following security issue has been fixed:\n\n- CVE-2017-12791: Directory traversal vulnerability in minion id validation\n allowed remote minions with incorrect credentials to authenticate to a master\n via a crafted minion ID (bsc#1053955).\n\nAdditionally, the following non-security issues have been fixed:\n\n- Added support for SUSE Manager scalability features. (bsc#1052264)\n- Introduced the kubernetes module. (bsc#1051948)\n- Notify systemd synchronously via NOTIFY_SOCKET. (bsc#1053376)\n", title: "Description of the patch", }, { category: "details", text: "slesctsp3-salt-13304,slesctsp4-salt-13304", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_2666-1.json", }, { category: "self", summary: "URL for SUSE-SU-2017:2666-1", url: "https://www.suse.com/support/update/announcement/2017/suse-su-20172666-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2017:2666-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2017-October/003279.html", }, { category: "self", summary: "SUSE Bug 1051948", url: "https://bugzilla.suse.com/1051948", }, { category: "self", summary: "SUSE Bug 1052264", url: "https://bugzilla.suse.com/1052264", }, { category: "self", summary: "SUSE Bug 1053376", url: "https://bugzilla.suse.com/1053376", }, { category: "self", summary: "SUSE Bug 1053955", url: "https://bugzilla.suse.com/1053955", }, { category: "self", summary: "SUSE CVE CVE-2017-12791 page", url: "https://www.suse.com/security/cve/CVE-2017-12791/", }, ], title: "Security update for salt", tracking: { current_release_date: "2017-10-09T13:38:05Z", generator: { date: "2017-10-09T13:38:05Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2017:2666-1", initial_release_date: "2017-10-09T13:38:05Z", revision_history: [ { date: "2017-10-09T13:38:05Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "salt-2016.11.4-43.7.1.i586", product: { name: "salt-2016.11.4-43.7.1.i586", product_id: "salt-2016.11.4-43.7.1.i586", }, }, { category: "product_version", name: "salt-doc-2016.11.4-43.7.1.i586", product: { name: "salt-doc-2016.11.4-43.7.1.i586", product_id: "salt-doc-2016.11.4-43.7.1.i586", }, }, { category: "product_version", name: "salt-minion-2016.11.4-43.7.1.i586", product: { name: "salt-minion-2016.11.4-43.7.1.i586", product_id: "salt-minion-2016.11.4-43.7.1.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "salt-2016.11.4-43.7.1.ia64", product: { name: "salt-2016.11.4-43.7.1.ia64", product_id: "salt-2016.11.4-43.7.1.ia64", }, }, { category: "product_version", name: "salt-doc-2016.11.4-43.7.1.ia64", product: { name: "salt-doc-2016.11.4-43.7.1.ia64", product_id: "salt-doc-2016.11.4-43.7.1.ia64", }, }, { category: "product_version", name: "salt-minion-2016.11.4-43.7.1.ia64", product: { name: "salt-minion-2016.11.4-43.7.1.ia64", product_id: "salt-minion-2016.11.4-43.7.1.ia64", }, }, ], category: "architecture", name: "ia64", }, { branches: [ { category: "product_version", name: "salt-2016.11.4-43.7.1.ppc64", product: { name: "salt-2016.11.4-43.7.1.ppc64", product_id: "salt-2016.11.4-43.7.1.ppc64", }, }, { category: "product_version", name: "salt-doc-2016.11.4-43.7.1.ppc64", product: { name: "salt-doc-2016.11.4-43.7.1.ppc64", product_id: "salt-doc-2016.11.4-43.7.1.ppc64", }, }, { category: "product_version", name: "salt-minion-2016.11.4-43.7.1.ppc64", product: { name: "salt-minion-2016.11.4-43.7.1.ppc64", product_id: "salt-minion-2016.11.4-43.7.1.ppc64", }, }, ], category: "architecture", name: "ppc64", }, { branches: [ { category: "product_version", name: "salt-2016.11.4-43.7.1.s390x", product: { name: "salt-2016.11.4-43.7.1.s390x", product_id: "salt-2016.11.4-43.7.1.s390x", }, }, { category: "product_version", name: "salt-doc-2016.11.4-43.7.1.s390x", product: { name: "salt-doc-2016.11.4-43.7.1.s390x", product_id: "salt-doc-2016.11.4-43.7.1.s390x", }, }, { category: "product_version", name: "salt-minion-2016.11.4-43.7.1.s390x", product: { name: "salt-minion-2016.11.4-43.7.1.s390x", product_id: "salt-minion-2016.11.4-43.7.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "salt-2016.11.4-43.7.1.x86_64", product: { name: "salt-2016.11.4-43.7.1.x86_64", product_id: "salt-2016.11.4-43.7.1.x86_64", }, }, { category: "product_version", name: "salt-doc-2016.11.4-43.7.1.x86_64", product: { name: "salt-doc-2016.11.4-43.7.1.x86_64", product_id: "salt-doc-2016.11.4-43.7.1.x86_64", }, }, { category: "product_version", name: "salt-minion-2016.11.4-43.7.1.x86_64", product: { name: "salt-minion-2016.11.4-43.7.1.x86_64", product_id: "salt-minion-2016.11.4-43.7.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", product: { name: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", product_identification_helper: { cpe: "cpe:/a:suse:sle-clienttools:11:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", product: { name: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", product_identification_helper: { cpe: "cpe:/a:suse:sle-clienttools:11:sp4", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-43.7.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-2016.11.4-43.7.1.i586", }, product_reference: "salt-2016.11.4-43.7.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-43.7.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-2016.11.4-43.7.1.ia64", }, product_reference: "salt-2016.11.4-43.7.1.ia64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-43.7.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-2016.11.4-43.7.1.ppc64", }, product_reference: "salt-2016.11.4-43.7.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-43.7.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-2016.11.4-43.7.1.s390x", }, product_reference: "salt-2016.11.4-43.7.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-43.7.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-2016.11.4-43.7.1.x86_64", }, product_reference: "salt-2016.11.4-43.7.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-43.7.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.i586", }, product_reference: "salt-doc-2016.11.4-43.7.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-43.7.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.ia64", }, product_reference: "salt-doc-2016.11.4-43.7.1.ia64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-43.7.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.ppc64", }, product_reference: "salt-doc-2016.11.4-43.7.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-43.7.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.s390x", }, product_reference: "salt-doc-2016.11.4-43.7.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-43.7.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.x86_64", }, product_reference: "salt-doc-2016.11.4-43.7.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-43.7.1.i586 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.i586", }, product_reference: "salt-minion-2016.11.4-43.7.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-43.7.1.ia64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.ia64", }, product_reference: "salt-minion-2016.11.4-43.7.1.ia64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-43.7.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.ppc64", }, product_reference: "salt-minion-2016.11.4-43.7.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-43.7.1.s390x as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.s390x", }, product_reference: "salt-minion-2016.11.4-43.7.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-43.7.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.x86_64", }, product_reference: "salt-minion-2016.11.4-43.7.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-43.7.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-2016.11.4-43.7.1.i586", }, product_reference: "salt-2016.11.4-43.7.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-43.7.1.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-2016.11.4-43.7.1.ia64", }, product_reference: "salt-2016.11.4-43.7.1.ia64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-43.7.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-2016.11.4-43.7.1.ppc64", }, product_reference: "salt-2016.11.4-43.7.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-43.7.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-2016.11.4-43.7.1.s390x", }, product_reference: "salt-2016.11.4-43.7.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-2016.11.4-43.7.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-2016.11.4-43.7.1.x86_64", }, product_reference: "salt-2016.11.4-43.7.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-43.7.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.i586", }, product_reference: "salt-doc-2016.11.4-43.7.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-43.7.1.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.ia64", }, product_reference: "salt-doc-2016.11.4-43.7.1.ia64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-43.7.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.ppc64", }, product_reference: "salt-doc-2016.11.4-43.7.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-43.7.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.s390x", }, product_reference: "salt-doc-2016.11.4-43.7.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-doc-2016.11.4-43.7.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.x86_64", }, product_reference: "salt-doc-2016.11.4-43.7.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-43.7.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.i586", }, product_reference: "salt-minion-2016.11.4-43.7.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-43.7.1.ia64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.ia64", }, product_reference: "salt-minion-2016.11.4-43.7.1.ia64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-43.7.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.ppc64", }, product_reference: "salt-minion-2016.11.4-43.7.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-43.7.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.s390x", }, product_reference: "salt-minion-2016.11.4-43.7.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", }, { category: "default_component_of", full_product_name: { name: "salt-minion-2016.11.4-43.7.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", product_id: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.x86_64", }, product_reference: "salt-minion-2016.11.4-43.7.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS", }, ], }, vulnerabilities: [ { cve: "CVE-2017-12791", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2017-12791", }, ], notes: [ { category: "general", text: "Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-2016.11.4-43.7.1.i586", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-2016.11.4-43.7.1.ia64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-2016.11.4-43.7.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-2016.11.4-43.7.1.s390x", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-2016.11.4-43.7.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.i586", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.ia64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.s390x", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.i586", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.ia64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.s390x", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-2016.11.4-43.7.1.i586", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-2016.11.4-43.7.1.ia64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-2016.11.4-43.7.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-2016.11.4-43.7.1.s390x", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-2016.11.4-43.7.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.i586", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.ia64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.s390x", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.i586", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.ia64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.s390x", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2017-12791", url: "https://www.suse.com/security/cve/CVE-2017-12791", }, { category: "external", summary: "SUSE Bug 1053955 for CVE-2017-12791", url: "https://bugzilla.suse.com/1053955", }, { category: "external", summary: "SUSE Bug 1062462 for CVE-2017-12791", url: "https://bugzilla.suse.com/1062462", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-2016.11.4-43.7.1.i586", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-2016.11.4-43.7.1.ia64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-2016.11.4-43.7.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-2016.11.4-43.7.1.s390x", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-2016.11.4-43.7.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.i586", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.ia64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.s390x", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.i586", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.ia64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.s390x", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-2016.11.4-43.7.1.i586", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-2016.11.4-43.7.1.ia64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-2016.11.4-43.7.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-2016.11.4-43.7.1.s390x", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-2016.11.4-43.7.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.i586", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.ia64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.s390x", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.i586", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.ia64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.s390x", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, products: [ "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-2016.11.4-43.7.1.i586", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-2016.11.4-43.7.1.ia64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-2016.11.4-43.7.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-2016.11.4-43.7.1.s390x", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-2016.11.4-43.7.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.i586", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.ia64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.s390x", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.x86_64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.i586", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.ia64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.ppc64", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.s390x", "SUSE Linux Enterprise Server 11 SP3-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-2016.11.4-43.7.1.i586", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-2016.11.4-43.7.1.ia64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-2016.11.4-43.7.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-2016.11.4-43.7.1.s390x", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-2016.11.4-43.7.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.i586", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.ia64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.s390x", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-doc-2016.11.4-43.7.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.i586", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.ia64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.s390x", "SUSE Linux Enterprise Server 11 SP4-CLIENT-TOOLS:salt-minion-2016.11.4-43.7.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2017-10-09T13:38:05Z", details: "moderate", }, ], title: "CVE-2017-12791", }, ], }
fkie_cve-2017-12791
Vulnerability from fkie_nvd
Published
2017-08-23 14:29
Modified
2024-11-21 03:10
Severity ?
Summary
Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.
References
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:saltstack:salt:*:*:*:*:*:*:*:*", matchCriteriaId: "5F8DFD0A-C813-4EA5-B90D-4A05E84D7F68", versionEndIncluding: "2016.11.6", vulnerable: true, }, { criteria: "cpe:2.3:a:saltstack:salt:2017.7.0:*:*:*:*:*:*:*", matchCriteriaId: "8F54D0CC-68F0-44E0-B565-BB9EFFE56817", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.", }, { lang: "es", value: "Una vulnerabilidad de salto de directorio en la validación minion id en SaltStack Salt en versiones anteriores a la 2016.11.7 y 2017.7.x en versiones anteriores a la 2017.7.1 permite que minions remotos con credenciales incorrectas se autentiquen en un master mediante un ID minion manipulado.", }, ], id: "CVE-2017-12791", lastModified: "2024-11-21T03:10:12.060", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "HIGH", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 7.5, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:N/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 10, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV30: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, exploitabilityScore: 3.9, impactScore: 5.9, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2017-08-23T14:29:00.283", references: [ { source: "cve@mitre.org", tags: [ "Third Party Advisory", "VDB Entry", ], url: "http://www.securityfocus.com/bid/100384", }, { source: "cve@mitre.org", tags: [ "Issue Tracking", "Patch", "Third Party Advisory", ], url: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=872399", }, { source: "cve@mitre.org", tags: [ "Issue Tracking", "Patch", "Third Party Advisory", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1482006", }, { source: "cve@mitre.org", tags: [ "Patch", "Release Notes", "Vendor Advisory", ], url: "https://docs.saltstack.com/en/2016.11/topics/releases/2016.11.7.html", }, { source: "cve@mitre.org", tags: [ "Patch", "Release Notes", "Vendor Advisory", ], url: "https://docs.saltstack.com/en/latest/topics/releases/2017.7.1.html", }, { source: "cve@mitre.org", tags: [ "Issue Tracking", "Patch", "Third Party Advisory", ], url: "https://github.com/saltstack/salt/pull/42944", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", "VDB Entry", ], url: "http://www.securityfocus.com/bid/100384", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Issue Tracking", "Patch", "Third Party Advisory", ], url: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=872399", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Issue Tracking", "Patch", "Third Party Advisory", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1482006", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Release Notes", "Vendor Advisory", ], url: "https://docs.saltstack.com/en/2016.11/topics/releases/2016.11.7.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Release Notes", "Vendor Advisory", ], url: "https://docs.saltstack.com/en/latest/topics/releases/2017.7.1.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Issue Tracking", "Patch", "Third Party Advisory", ], url: "https://github.com/saltstack/salt/pull/42944", }, ], sourceIdentifier: "cve@mitre.org", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-22", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
pysec-2017-35
Vulnerability from pysec
Published
2017-08-23 14:29
Modified
2021-09-29 02:54
Details
Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.
Impacted products
| Name | purl |
|---|---|
| salt | pkg:pypi/salt |
Aliases
{ affected: [ { package: { ecosystem: "PyPI", name: "salt", purl: "pkg:pypi/salt", }, ranges: [ { events: [ { introduced: "0", }, { fixed: "2016.11.7", }, { introduced: "2017.7", }, { fixed: "2017.7.1", }, ], type: "ECOSYSTEM", }, ], versions: [ "0.10.0", "0.10.1", "0.10.2", "0.10.3", "0.10.4", "0.10.5", "0.11.0", "0.11.1", "0.12.0", "0.12.1", "0.13.0", "0.13.1", "0.13.2", "0.13.3", "0.14.0", "0.14.1", "0.15.0", "0.15.1", "0.15.2", "0.15.3", "0.15.90", "0.16.0", "0.16.1", "0.16.2", "0.16.3", "0.16.4", "0.17.0", "0.17.0rc1", "0.17.1", "0.17.2", "0.17.3", "0.17.4", "0.17.5", "0.8.7", "0.8.9", "0.9.0", "0.9.1", "0.9.2", "0.9.3", "0.9.4", "0.9.5", "0.9.6", "0.9.7", "0.9.8", "0.9.9", "0.9.9.1", "2014.1.0", "2014.1.0rc1", "2014.1.0rc2", "2014.1.0rc3", "2014.1.1", "2014.1.10", "2014.1.11", "2014.1.12", "2014.1.13", "2014.1.2", "2014.1.3", "2014.1.4", "2014.1.5", "2014.1.6", "2014.1.7", "2014.1.8", "2014.1.9", "2014.7.0", "2014.7.0rc1", "2014.7.0rc2", "2014.7.0rc3", "2014.7.0rc4", "2014.7.0rc5", "2014.7.0rc6", "2014.7.0rc7", "2014.7.1", "2014.7.2", "2014.7.3", "2014.7.4", "2014.7.5", "2014.7.6", "2014.7.7", "2015.2.0rc1", "2015.2.0rc2", "2015.5.0", "2015.5.1", "2015.5.10", "2015.5.11", "2015.5.2", "2015.5.3", "2015.5.4", "2015.5.5", "2015.5.6", "2015.5.7", "2015.5.8", "2015.5.9", "2015.8.0", "2015.8.0rc1", "2015.8.0rc2", "2015.8.0rc3", "2015.8.0rc4", "2015.8.0rc5", "2015.8.1", "2015.8.10", "2015.8.11", "2015.8.12", "2015.8.13", "2015.8.2", "2015.8.3", "2015.8.4", "2015.8.5", "2015.8.7", "2015.8.8", "2015.8.8.2", "2015.8.9", "2016.11.0", "2016.11.0rc1", "2016.11.0rc2", "2016.11.1", "2016.11.2", "2016.11.3", "2016.11.4", "2016.11.5", "2016.11.6", "2016.3.0", "2016.3.0rc2", "2016.3.0rc3", "2016.3.1", "2016.3.2", "2016.3.3", "2016.3.4", "2016.3.5", "2016.3.6", "2016.3.7", "2016.3.8", "2017.7.0", ], }, ], aliases: [ "CVE-2017-12791", ], details: "Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.", id: "PYSEC-2017-35", modified: "2021-09-29T02:54:43.147751Z", published: "2017-08-23T14:29:00Z", references: [ { type: "WEB", url: "https://github.com/saltstack/salt/pull/42944", }, { type: "WEB", url: "https://docs.saltstack.com/en/latest/topics/releases/2017.7.1.html", }, { type: "WEB", url: "https://docs.saltstack.com/en/2016.11/topics/releases/2016.11.7.html", }, { type: "REPORT", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1482006", }, { type: "WEB", url: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=872399", }, { type: "WEB", url: "http://www.securityfocus.com/bid/100384", }, ], }
gsd-2017-12791
Vulnerability from gsd
Modified
2023-12-13 01:21
Details
Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.
Aliases
Aliases
{ GSD: { alias: "CVE-2017-12791", description: "Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.", id: "GSD-2017-12791", references: [ "https://www.suse.com/security/cve/CVE-2017-12791.html", "https://security.archlinux.org/CVE-2017-12791", "https://ubuntu.com/security/CVE-2017-12791", ], }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2017-12791", ], details: "Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.", id: "GSD-2017-12791", modified: "2023-12-13T01:21:03.688024Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2017-12791", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "https://github.com/saltstack/salt/pull/42944", refsource: "CONFIRM", url: "https://github.com/saltstack/salt/pull/42944", }, { name: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=872399", refsource: "MISC", url: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=872399", }, { name: "100384", refsource: "BID", url: "http://www.securityfocus.com/bid/100384", }, { name: "https://bugzilla.redhat.com/show_bug.cgi?id=1482006", refsource: "MISC", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1482006", }, { name: "https://docs.saltstack.com/en/latest/topics/releases/2017.7.1.html", refsource: "CONFIRM", url: "https://docs.saltstack.com/en/latest/topics/releases/2017.7.1.html", }, { name: "https://docs.saltstack.com/en/2016.11/topics/releases/2016.11.7.html", refsource: "CONFIRM", url: "https://docs.saltstack.com/en/2016.11/topics/releases/2016.11.7.html", }, ], }, }, "gitlab.com": { advisories: [ { affected_range: "<=2016.11.6||==2017.7.0", affected_versions: "All versions up to 2016.11.6, version 2017.7.0", cvss_v2: "AV:N/AC:L/Au:N/C:P/I:P/A:P", cvss_v3: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", cwe_ids: [ "CWE-1035", "CWE-22", "CWE-937", ], date: "2017-08-29", description: "A directory traversal vulnerability in minion id validation in SaltStack Salt allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.", fixed_versions: [ "2016.11.7", "2017.7.1", ], identifier: "CVE-2017-12791", identifiers: [ "CVE-2017-12791", ], not_impacted: "All versions after 2016.11.6 before 2017.7.0, all versions after 2017.7.0", package_slug: "pypi/salt", pubdate: "2017-08-23", solution: "Upgrade to versions 2016.11.7, 2017.7.1 or above.", title: "Path Traversal", urls: [ "https://nvd.nist.gov/vuln/detail/CVE-2017-12791", "https://github.com/saltstack/salt/pull/42944", ], uuid: "654f9b29-d97c-47d4-95ce-b8d6f36cb646", }, ], }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:saltstack:salt:2017.7.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:saltstack:salt:*:*:*:*:*:*:*:*", cpe_name: [], versionEndIncluding: "2016.11.6", vulnerable: true, }, ], operator: "OR", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2017-12791", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: "Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.11.7 and 2017.7.x before 2017.7.1 allows remote minions with incorrect credentials to authenticate to a master via a crafted minion ID.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "CWE-22", }, ], }, ], }, references: { reference_data: [ { name: "https://github.com/saltstack/salt/pull/42944", refsource: "CONFIRM", tags: [ "Issue Tracking", "Patch", "Third Party Advisory", ], url: "https://github.com/saltstack/salt/pull/42944", }, { name: "https://docs.saltstack.com/en/latest/topics/releases/2017.7.1.html", refsource: "CONFIRM", tags: [ "Release Notes", "Patch", "Vendor Advisory", ], url: "https://docs.saltstack.com/en/latest/topics/releases/2017.7.1.html", }, { name: "https://docs.saltstack.com/en/2016.11/topics/releases/2016.11.7.html", refsource: "CONFIRM", tags: [ "Release Notes", "Patch", "Vendor Advisory", ], url: "https://docs.saltstack.com/en/2016.11/topics/releases/2016.11.7.html", }, { name: "https://bugzilla.redhat.com/show_bug.cgi?id=1482006", refsource: "MISC", tags: [ "Issue Tracking", "Patch", "Third Party Advisory", ], url: "https://bugzilla.redhat.com/show_bug.cgi?id=1482006", }, { name: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=872399", refsource: "MISC", tags: [ "Issue Tracking", "Patch", "Third Party Advisory", ], url: "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=872399", }, { name: "100384", refsource: "BID", tags: [ "Third Party Advisory", "VDB Entry", ], url: "http://www.securityfocus.com/bid/100384", }, ], }, }, impact: { baseMetricV2: { cvssV2: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 7.5, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:N/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 10, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "HIGH", userInteractionRequired: false, }, baseMetricV3: { cvssV3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, exploitabilityScore: 3.9, impactScore: 5.9, }, }, lastModifiedDate: "2017-08-29T16:43Z", publishedDate: "2017-08-23T14:29Z", }, }, }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.