Oval Definition:oval:org.opensuse.security:def:70498
Revision Date:2021-10-27Version:1
Title:Security update for salt (Moderate)
Description:

This update for salt fixes the following issues:

- Support querying for JSON data in external sql pillar. - Exclude the full path of a download URL to prevent injection of malicious code. (bsc#1190265, CVE-2021-21996)
Family:unixClass:patch
Status:Reference(s):1174633
1174635
1174638
1175109
1190265
CVE-2020-14345
CVE-2020-14346
CVE-2020-14347
CVE-2020-8231
CVE-2021-21996
SUSE-SU-2020:2240-1
SUSE-SU-2021:3555-1
Platform(s):SUSE Linux Enterprise Module for Development Tools 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 SP2 is installed
  • AND Package Information
  • xorg-x11-server-1.20.3-22.5 is installed
  • OR xorg-x11-server-sdk-1.20.3-22.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • curl-7.66.0-4.6 is installed
  • OR curl-mini-7.66.0-4.6 is installed
  • OR libcurl-devel-32bit-7.66.0-4.6 is installed
  • OR libcurl-mini-devel-7.66.0-4.6 is installed
  • OR libcurl4-mini-7.66.0-4.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • AND Package Information
  • python3-salt-3002.2-48.4 is installed
  • OR salt-3002.2-48.4 is installed
  • OR salt-api-3002.2-48.4 is installed
  • OR salt-bash-completion-3002.2-48.4 is installed
  • OR salt-cloud-3002.2-48.4 is installed
  • OR salt-doc-3002.2-48.4 is installed
  • OR salt-fish-completion-3002.2-48.4 is installed
  • OR salt-master-3002.2-48.4 is installed
  • OR salt-minion-3002.2-48.4 is installed
  • OR salt-proxy-3002.2-48.4 is installed
  • OR salt-ssh-3002.2-48.4 is installed
  • OR salt-standalone-formulas-configuration-3002.2-48.4 is installed
  • OR salt-syndic-3002.2-48.4 is installed
  • OR salt-transactional-update-3002.2-48.4 is installed
  • OR salt-zsh-completion-3002.2-48.4 is installed
    • BACK