Oval Definition:oval:org.opensuse.security:def:102229
Revision Date:2022-03-30Version:1
Title:Security update for salt (Important)
Description:

This update for salt fixes the following issues:

- CVE-2022-22935: Sign authentication replies to prevent MiTM (bsc#1197417) - CVE-2022-22934: Sign pillar data to prevent MiTM attacks. (bsc#1197417) - CVE-2022-22936: Prevent job and fileserver replays (bsc#1197417) - CVE-2022-22941: Fixed targeting bug, especially visible when using syndic and user auth. (bsc#1197417)
Family:unixClass:patch
Status:Reference(s):1065600
1065729
1078720
1081134
1084610
1132477
1151927
1152472
1152489
1154353
1155518
1156395
1163776
1169514
1170442
1176248
1176855
1177109
1177326
1177440
1177529
1178142
1178995
1179082
1179137
1179243
1179428
1179660
1179929
1180058
1180846
1180964
1180989
1181133
1181259
1181544
1181574
1181637
1181655
1181671
1181674
1181710
1181720
1181735
1181736
1181738
1181747
1181753
1181818
1181843
1181854
1181896
1181958
1181960
1181985
1182047
1182110
1182118
1182128
1182140
1182171
1182175
1182259
1182265
1182266
1182267
1182268
1182271
1182272
1182273
1182275
1182276
1182278
1182283
1182341
1182374
1182380
1182381
1182406
1182430
1182439
1182441
1182442
1182443
1182444
1182445
1182446
1182447
1182449
1182454
1182455
1182456
1182457
1182458
1182459
1182460
1182461
1182462
1182463
1182464
1182465
1182466
1182485
1182489
1182490
1182507
1182547
1182558
1182560
1182561
1182571
1182599
1182602
1182626
1182650
1182672
1182676
1182683
1182684
1182686
1182770
1182798
1182800
1182801
1182854
1182856
1197417
CVE-2020-12362
CVE-2020-12363
CVE-2020-12364
CVE-2020-12373
CVE-2020-29368
CVE-2020-29374
CVE-2021-26930
CVE-2021-26931
CVE-2021-26932
CVE-2022-22934
CVE-2022-22935
CVE-2022-22936
CVE-2022-22941
SUSE-SU-2022:1059-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Server Applications 15 SP3
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Linux Enterprise Storage 7.1
SUSE Manager Proxy 4.2
SUSE Manager Retail Branch Server 4.2
SUSE Manager Server 4.2
Product(s):
Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Server Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Server 4.2 is installed
  • AND Package Information
  • salt-api-3002.2-150300.53.10.1 is installed
  • OR salt-cloud-3002.2-150300.53.10.1 is installed
  • OR salt-fish-completion-3002.2-150300.53.10.1 is installed
  • OR salt-master-3002.2-150300.53.10.1 is installed
  • OR salt-proxy-3002.2-150300.53.10.1 is installed
  • OR salt-ssh-3002.2-150300.53.10.1 is installed
  • OR salt-standalone-formulas-configuration-3002.2-150300.53.10.1 is installed
  • OR salt-syndic-3002.2-150300.53.10.1 is installed
    • BACK