Oval Definition:	oval:org.opensuse.security:def:69168
Revision Date: 2021-10-27 Version: 1 Title: Security update for salt (Moderate) Description: This update for salt fixes the following issues: - Support querying for JSON data in external sql pillar. - Exclude the full path of a download URL to prevent injection of malicious code. (bsc#1190265, CVE-2021-21996) Family: unix Class: patch Status: Reference(s): 1103203 1122292 1122299 1141780 1141782 1141783 1141785 1141787 1141789 1147021 1160467 1160468 1190265 CVE-2018-11212 CVE-2019-11771 CVE-2019-11772 CVE-2019-11775 CVE-2019-14896 CVE-2019-14897 CVE-2019-2449 CVE-2019-2762 CVE-2019-2766 CVE-2019-2769 CVE-2019-2786 CVE-2019-2816 CVE-2019-4473 CVE-2019-7317 CVE-2021-21996 SUSE-SU-2019:2291-1 SUSE-SU-2021:3556-1 Platform(s): SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Transactional Server 15 SP2 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_4-default-8-2 is installed OR kernel-livepatch-SLE15-SP1_Update_1-8-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-3.24 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-3.24 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.40-3.24 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-3.24 is installed Definition Synopsis SUSE Linux Enterprise Module for Transactional Server 15 SP2 is installed AND salt-transactional-update-3002.2-49.2 is installed
BACK