[Git][security-tracker-team/security-tracker][master] salt fixed in sid

Moritz Muehlenhoff jmm at debian.org
Tue Mar 2 17:20:03 GMT 2021 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ee899adb by Moritz Muehlenhoff at 2021-03-02T18:19:43+01:00
salt fixed in sid

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5309,7 +5309,7 @@ CVE-2020-36201 (An issue was discovered in certain Xerox WorkCentre products. Th
 CVE-2019-25015 (LuCI in OpenWrt 18.06.0 through 18.06.4 allows stored XSS via a crafte ...)
 	NOT-FOR-US: LuCI in OpenWrt
 CVE-2021-3197 (An issue was discovered in SaltStack Salt before 3002.5. The salt-api' ...)
-	- salt <unfixed> (bug #983632)
+	- salt 3002.5+dfsg1-1 (bug #983632)
 	NOTE: https://saltproject.io/security_announcements/active-saltstack-cve-release-2021-feb-25/
 CVE-2021-3196
 	RESERVED
@@ -6231,16 +6231,16 @@ CVE-2021-25286
 CVE-2021-25285
 	RESERVED
 CVE-2021-25284 (An issue was discovered in through SaltStack Salt before 3002.5. salt. ...)
-	- salt <unfixed> (bug #983632)
+	- salt 3002.5+dfsg1-1 (bug #983632)
 	NOTE: https://saltproject.io/security_announcements/active-saltstack-cve-release-2021-feb-25/
 CVE-2021-25283 (An issue was discovered in through SaltStack Salt before 3002.5. The j ...)
-	- salt <unfixed> (bug #983632)
+	- salt 3002.5+dfsg1-1 (bug #983632)
 	NOTE: https://saltproject.io/security_announcements/active-saltstack-cve-release-2021-feb-25/
 CVE-2021-25282 (An issue was discovered in through SaltStack Salt before 3002.5. The s ...)
-	- salt <unfixed> (bug #983632)
+	- salt 3002.5+dfsg1-1 (bug #983632)
 	NOTE: https://saltproject.io/security_announcements/active-saltstack-cve-release-2021-feb-25/
 CVE-2021-25281 (An issue was discovered in through SaltStack Salt before 3002.5. salt- ...)
-	- salt <unfixed> (bug #983632)
+	- salt 3002.5+dfsg1-1 (bug #983632)
 	NOTE: https://saltproject.io/security_announcements/active-saltstack-cve-release-2021-feb-25/
 CVE-2021-XXXX [Unexpected database bindings via requests (follow-up)]
 	- php-laravel-framework 6.20.14+dfsg-1
@@ -6457,7 +6457,7 @@ CVE-2021-3150
 CVE-2021-3149 (On Netshield NANO 25 10.2.18 devices, /usr/local/webmin/System/manual_ ...)
 	NOT-FOR-US: Netshield NANO devices
 CVE-2021-3148 (An issue was discovered in SaltStack Salt before 3002.5. Sending craft ...)
-	- salt <unfixed> (bug #983632)
+	- salt 3002.5+dfsg1-1 (bug #983632)
 	NOTE: https://saltproject.io/security_announcements/active-saltstack-cve-release-2021-feb-25/
 CVE-2021-3147
 	RESERVED
@@ -8642,7 +8642,7 @@ CVE-2021-3146
 CVE-2021-3145
 	RESERVED
 CVE-2021-3144 (In SaltStack Salt before 3002.5, eauth tokens can be used once after e ...)
-	- salt <unfixed> (bug #983632)
+	- salt 3002.5+dfsg1-1 (bug #983632)
 	NOTE: https://saltproject.io/security_announcements/active-saltstack-cve-release-2021-feb-25/
 CVE-2021-3143
 	RESERVED
@@ -15559,7 +15559,7 @@ CVE-2020-35664 (An issue was discovered in Acronis Cyber Protect before 15 Updat
 CVE-2020-35663
 	RESERVED
 CVE-2020-35662 (In SaltStack Salt before 3002.5, when authenticating to services using ...)
-	- salt <unfixed> (bug #983632)
+	- salt 3002.5+dfsg1-1 (bug #983632)
 	NOTE: https://saltproject.io/security_announcements/active-saltstack-cve-release-2021-feb-25/
 CVE-2020-35661
 	RESERVED
@@ -23548,7 +23548,7 @@ CVE-2020-28975 (** DISPUTED ** svm_predict_values in svm.cpp in Libsvm v324, as
 CVE-2020-28973
 	RESERVED
 CVE-2020-28972 (In SaltStack Salt before 3002.5, authentication to VMware vcenter, vsp ...)
-	- salt <unfixed> (bug #983632)
+	- salt 3002.5+dfsg1-1 (bug #983632)
 	NOTE: https://saltproject.io/security_announcements/active-saltstack-cve-release-2021-feb-25/
 CVE-2020-26235 (In Rust time crate from version 0.2.7 and before version 0.2.23, unix- ...)
 	- rust-time <not-affected> (Vulnerable methods introduced in v0.2.7)
@@ -27902,7 +27902,7 @@ CVE-2020-28245
 CVE-2020-28244
 	RESERVED
 CVE-2020-28243 (An issue was discovered in SaltStack Salt before 3002.5. The minion's  ...)
-	- salt <unfixed> (bug #983632)
+	- salt 3002.5+dfsg1-1 (bug #983632)
 	NOTE: https://saltproject.io/security_announcements/active-saltstack-cve-release-2021-feb-25/
 CVE-2020-28242 (An issue was discovered in Asterisk Open Source 13.x before 13.37.1, 1 ...)
 	- asterisk 1:16.15.0~dfsg-1 (bug #974713)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ee899adbd5da6762317a63791ddea71a4ab8c159

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ee899adbd5da6762317a63791ddea71a4ab8c159
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210302/697b7c2c/attachment.htm>

More information about the debian-security-tracker-commits mailing list