SUSE-SU-2022:1059-1 -- SLES salt, python3-salt| ID: oval:org.secpod.oval:def:89047497 | Date: (C)2022-11-04 (M)2023-12-26 |
| Class: PATCH | Family: unix |
This update for salt fixes the following issues: - CVE-2022-22935: Sign authentication replies to prevent MiTM - CVE-2022-22934: Sign pillar data to prevent MiTM attacks. - CVE-2022-22936: Prevent job and fileserver replays - CVE-2022-22941: Fixed targeting bug, especially visible when using syndic and user auth
| Platform: |
| SUSE Linux Enterprise Server 15 SP3 |
| SUSE Linux Enterprise Desktop 15 SP3 |
