-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 19 Nov 2021 22:51:21 CET Source: salt Binary: salt-common salt-master salt-minion salt-syndic salt-ssh salt-doc salt-cloud salt-api salt-proxy Architecture: source Version: 2016.11.2+ds-1+deb9u8 Distribution: stretch-security Urgency: high Maintainer: Debian Salt Team <pkg-salt-team@lists.alioth.debian.org> Changed-By: Markus Koschany <apo@debian.org> Description: salt-api - Generic, modular network access system salt-cloud - public cloud VM management system salt-common - shared libraries that salt requires for all packages salt-doc - additional documentation for salt, the distributed remote executi salt-master - remote manager to administer servers via salt salt-minion - client package for salt, the distributed remote execution system salt-proxy - Proxy client package for salt stack salt-ssh - remote manager to administer servers via Salt SSH salt-syndic - master-of-masters for salt, the distributed remote execution syst Checksums-Sha1: b1a1289cc972d9be715b3f23f3700e8b8b2db155 2903 salt_2016.11.2+ds-1+deb9u8.dsc a180d43816c3e8d5ce3afc7cef1d2ca3cbacddc0 54864 salt_2016.11.2+ds-1+deb9u8.debian.tar.xz a3944df65fb44c7703b1b6f841bae836fbf9ac5b 9753 salt_2016.11.2+ds-1+deb9u8_amd64.buildinfo Checksums-Sha256: 189c00beb412442d66995734008f64a5456e143573d2aadf38436bd3ff46f0cc 2903 salt_2016.11.2+ds-1+deb9u8.dsc 3a6a2265738702e18161934f0ac17dc5222640c468568a8e4b38bd5bc80cbd0c 54864 salt_2016.11.2+ds-1+deb9u8.debian.tar.xz 8f2491699c498e0361e13e2f8530fe097485b833df3d690b661eb985c12e7702 9753 salt_2016.11.2+ds-1+deb9u8_amd64.buildinfo Changes: salt (2016.11.2+ds-1+deb9u8) stretch-security; urgency=high . * Non-maintainer upload by the LTS team. * Fix CVE-2021-21996: Jonathan Schlue discovered that a user who has control of the source, and source_hash URLs can gain full file system access as root on a salt minion. Files: 944e191555df1628e63d656210cb14c3 2903 admin extra salt_2016.11.2+ds-1+deb9u8.dsc f07b19f9d4627f98100597d851573ca9 54864 admin extra salt_2016.11.2+ds-1+deb9u8.debian.tar.xz 848ace21e6d04bda0b047a25789e0446 9753 admin extra salt_2016.11.2+ds-1+deb9u8_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQKjBAEBCgCNFiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAmGYHGRfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQPHGFwb0BkZWJp YW4ub3JnAAoJENmtFLlRO1Hkt68P/i/gcMRzS2uFgE1D+Upui8584kRNgb8d5NC5 AWDcJF5PsrFquL+FJif5ItUmKwwUkXi65xOLJY+yP5wHYrLKJmWM5vqbEJhVKDiu poWmZw2By+EWRb+uN78e3yDDlGc7/biixdKRsFfOyiso8Z7y7J0182GJ/dM3pJuC OWaP0rXG6Ch1DAhylxPWksviHyB2DAfdQDQdEQsujF7WnaZXF9Q6BDkuYtVnSSpN C6NgFOCJrbHb5XKCJ2WEC28KJNJCYywBEjavjUQ9Xbu7EB4BYdhImvZWtE/LjzPu USGd/DmZgNli4cy/IFuYK/NcP9TVczyktShXPS2N+sxw1vhCxDRCy09I802jGfhF ulfjG+Osrie2DwLfu7K0B8EPcILbzrSuII6/lIRDBT55vqIXJ2286L6wvQZCZWRN ACOTZiiS6VqbYbAwrqtjSSQ6HXUgad3kGy6Hxs7bVpUAUvM85PlolqWZdANziYZU dvWIeYv6o1xmqxqBh0HlgWUFQC2wj9B78BobnMxaAAe+m0/SZ09QNzs90u1xNbei 7KLADeVjJmhlSUng6H7ig+U3lVNOMQ0cCgTg2FFxADyUjKwW6pbma6XleYB8rmuv EYaRp3s1nfcMS0tr5WVg1Ww6giiV4RsG4WGE+Knx/H+XCOg5vNmlTzba1d3lJM8k X0JpQTl0 =Nth3 -----END PGP SIGNATURE-----
