Oval Definition:oval:org.opensuse.security:def:69169
Revision Date:2021-06-10Version:1
Title:Security update for salt (Important)
Description:

This update for salt fixes the following issues:

- Check if dpkgnotify is executable (bsc#1186674) - Update to Salt release version 3002.2 (jsc#ECO-3212, jsc#SLE-18033, jsc#SLE-18028) - Drop support for Python2. Obsoletes `python2-salt` package (jsc#SLE-18028) - Fix issue parsing errors in ansiblegate state module - Prevent command injection in the snapper module (bsc#1185281, CVE-2021-31607) - transactional_update: detect recursion in the executor - Add subpackage `salt-transactional-update` (jsc#SLE-18033) - Remove duplicate directories
Family:unixClass:patch
Status:Reference(s):1073313
1103203
1111388
1114845
1143194
1143273
1160467
1160468
1185281
1186674
CVE-2017-17740
CVE-2019-13057
CVE-2019-13565
CVE-2019-14896
CVE-2019-14897
CVE-2021-31607
SUSE-SU-2019:2395-1
SUSE-SU-2021:1951-1
Platform(s):SUSE Linux Enterprise Module for Legacy Software 15 SP1
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Transactional Server 15 SP3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed
  • AND Package Information
  • openldap2-2.4.46-9.19 is installed
  • OR openldap2-back-meta-2.4.46-9.19 is installed
  • OR openldap2-back-perl-2.4.46-9.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-195-default-9-25 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_0-9-25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Transactional Server 15 SP3 is installed
  • AND salt-transactional-update-3002.2-8.41.8.1 is installed
    • BACK