Oval Definition:oval:org.opensuse.security:def:69170
Revision Date:2021-10-27Version:1
Title:Security update for salt (Moderate)
Description:

This update for salt fixes the following issues:

- CVE-2021-21996: Exclude the full path of a download URL to prevent injection of malicious code. (bsc#1190265)
Family:unixClass:patch
Status:Reference(s):1047238
1050911
1051510
1054914
1055117
1056686
1060662
1061840
1061843
1064597
1064701
1065600
1065729
1066369
1071009
1071306
1071995
1078248
1082555
1082635
1085030
1085536
1085539
1086103
1087092
1090734
1091171
1093205
1102097
1103990
1104353
1104427
1104745
1104902
1106061
1106284
1106434
1108382
1109837
1111666
1112178
1112374
1112894
1112899
1112902
1112903
1112905
1112906
1112907
1113722
1113956
1113994
1114279
1114542
1118689
1119086
1119113
1120046
1120876
1120902
1123105
1123959
1124370
1129424
1129519
1129664
1131107
1131281
1131489
1131565
1133021
1134291
1134476
1134881
1134882
1135219
1135642
1135897
1135990
1136039
1136261
1136346
1136349
1136352
1136496
1136498
1136502
1136682
1137322
1137323
1137884
1138099
1138100
1138539
1139020
1139021
1139101
1139500
1140012
1140426
1140487
1141340
1141450
1141543
1141554
1142019
1142076
1142109
1142117
1142118
1142119
1142496
1142541
1142635
1142685
1142701
1142857
1143300
1143331
1143466
1143706
1143738
1143765
1143841
1143843
1143962
1144123
1144333
1144375
1144474
1144518
1144582
1144718
1144813
1144880
1144886
1144912
1144920
1144979
1145010
1145018
1145051
1145059
1145189
1145235
1145256
1145300
1145302
1145357
1145388
1145389
1145390
1145391
1145392
1145393
1145394
1145395
1145396
1145397
1145408
1145409
1145446
1145661
1145678
1145687
1145920
1145922
1145934
1145937
1145940
1145941
1145942
1145946
1146074
1146084
1146141
1146163
1146215
1146285
1146346
1146351
1146352
1146361
1146368
1146376
1146378
1146381
1146391
1146399
1146413
1146425
1146516
1146519
1146524
1146526
1146529
1146531
1146543
1146547
1146550
1146575
1146589
1146678
1146938
1148031
1148032
1148033
1148034
1148035
1148093
1148133
1148192
1148196
1148198
1148202
1148219
1148297
1148303
1148308
1148363
1148379
1148394
1148527
1148570
1148574
1148616
1148617
1148619
1148698
1148859
1148868
1149053
1149083
1149104
1149105
1149106
1149197
1149214
1149224
1149325
1149376
1149413
1149418
1149424
1149522
1149527
1149539
1149552
1149591
1149602
1149612
1149626
1149652
1149713
1149940
1149976
1150025
1150033
1150112
1150562
1150660
1150727
1150860
1150861
1150933
1151927
1152107
1152624
1158983
1159058
1161016
1162002
1162063
1163309
1166985
1167104
1168081
1168959
1169194
1169514
1169771
1169795
1170011
1170442
1170592
1170617
1170618
1171124
1171424
1171529
1171530
1171558
1171732
1171739
1171743
1171753
1171759
1171835
1171841
1171868
1171904
1172247
1172257
1172344
1172458
1172484
1172537
1172538
1172687
1172719
1172759
1172775
1172781
1172782
1172783
1172871
1172872
1172999
1173060
1173074
1173146
1173265
1173280
1173284
1173428
1173514
1173567
1173573
1173659
1173746
1173818
1173820
1173825
1173826
1173833
1173838
1173839
1173845
1173857
1174113
1174115
1174122
1174123
1174186
1174187
1174296
1174343
1174356
1174409
1174438
1174462
1174543
1190265
CVE-2017-18551
CVE-2018-20976
CVE-2018-21008
CVE-2019-10207
CVE-2019-14814
CVE-2019-14815
CVE-2019-14816
CVE-2019-14835
CVE-2019-15030
CVE-2019-15031
CVE-2019-15090
CVE-2019-15098
CVE-2019-15099
CVE-2019-15117
CVE-2019-15118
CVE-2019-15211
CVE-2019-15212
CVE-2019-15214
CVE-2019-15215
CVE-2019-15216
CVE-2019-15217
CVE-2019-15218
CVE-2019-15219
CVE-2019-15220
CVE-2019-15221
CVE-2019-15222
CVE-2019-15239
CVE-2019-15290
CVE-2019-15292
CVE-2019-15538
CVE-2019-15666
CVE-2019-15902
CVE-2019-15917
CVE-2019-15919
CVE-2019-15920
CVE-2019-15921
CVE-2019-15924
CVE-2019-15926
CVE-2019-15927
CVE-2019-16746
CVE-2019-20810
CVE-2019-20908
CVE-2019-9456
CVE-2020-0305
CVE-2020-10766
CVE-2020-10767
CVE-2020-10768
CVE-2020-10769
CVE-2020-10773
CVE-2020-10781
CVE-2020-12771
CVE-2020-12888
CVE-2020-13974
CVE-2020-14416
CVE-2020-15393
CVE-2020-15780
CVE-2021-21996
SUSE-SU-2019:2424-1
SUSE-SU-2021:3557-1
Platform(s):SUSE Linux Enterprise Module for Legacy Software 15 SP1
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Transactional Server 15 SP3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.18 is installed
  • OR reiserfs-kmp-default-4.12.14-197.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.48 is installed
  • OR kernel-default-livepatch-4.12.14-197.48 is installed
  • OR kernel-default-livepatch-devel-4.12.14-197.48 is installed
  • OR kernel-livepatch-4_12_14-197_48-default-1-3.3 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_13-1-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Transactional Server 15 SP3 is installed
  • AND salt-transactional-update-3002.2-50.1.15.1 is installed
    • BACK