Oval Definition:
oval:org.opensuse.security:def:106247
Revision Date
:
2021-10-27
Version
:
1
Title
:
Security update for salt (Moderate)
Description
:
This update for salt fixes the following issues:
- Support querying for JSON data in external sql pillar. - Exclude the full path of a download URL to prevent injection of malicious code. (bsc#1190265, CVE-2021-21996)
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1190265
CVE-2017-5852
CVE-2017-5853
CVE-2017-5854
CVE-2017-5855
CVE-2017-5886
CVE-2017-6840
CVE-2017-6844
CVE-2017-6845
CVE-2017-6847
CVE-2017-7378
CVE-2017-7379
CVE-2017-7380
CVE-2017-7381
CVE-2017-7382
CVE-2017-7383
CVE-2017-7994
CVE-2017-8054
CVE-2017-8787
CVE-2018-11255
CVE-2018-11256
CVE-2018-12982
CVE-2018-14320
CVE-2018-20751
CVE-2018-5295
CVE-2018-5296
CVE-2018-5308
CVE-2018-5309
CVE-2018-5783
CVE-2018-8001
CVE-2019-9687
CVE-2021-21996
SUSE-SU-2021:3555-1
Platform(s)
:
openSUSE Tumbleweed
SUSE Linux Enterprise Server 15 SP1-LTSS
Product(s)
:
Definition Synopsis
openSUSE Tumbleweed is installed
AND
Package Information
libpodofo-devel-0.9.7-2.2 is installed
OR
libpodofo0_9_7-0.9.7-2.2 is installed
OR
podofo-0.9.7-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15 SP1-LTSS is installed
AND
Package Information
python3-salt-3002.2-48.4 is installed
OR
salt-3002.2-48.4 is installed
OR
salt-api-3002.2-48.4 is installed
OR
salt-bash-completion-3002.2-48.4 is installed
OR
salt-cloud-3002.2-48.4 is installed
OR
salt-doc-3002.2-48.4 is installed
OR
salt-fish-completion-3002.2-48.4 is installed
OR
salt-master-3002.2-48.4 is installed
OR
salt-minion-3002.2-48.4 is installed
OR
salt-proxy-3002.2-48.4 is installed
OR
salt-ssh-3002.2-48.4 is installed
OR
salt-standalone-formulas-configuration-3002.2-48.4 is installed
OR
salt-syndic-3002.2-48.4 is installed
OR
salt-transactional-update-3002.2-48.4 is installed
OR
salt-zsh-completion-3002.2-48.4 is installed
BACK