Oval Definition:
oval:com.ubuntu.artful:def:20178109000
Revision Date
:
2017-04-25
Version
:
1
Title
:
CVE-2017-8109 on Ubuntu 17.10 (artful) - medium.
Description
:
The salt-ssh minion code in SaltStack Salt 2016.11 before 2016.11.4 copied over configuration from the Salt Master without adjusting permissions, which might leak credentials to local attackers on configured minions (clients).
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2017-8109
Platform(s)
:
Ubuntu 17.10
Product(s)
:
Definition Synopsis
Ubuntu 17.10 (artful) is installed.
AND
The 'salt' package in artful is affected and needs fixing.
BACK