[ubuntu/xenial-updates] salt 2015.8.8+ds-1ubuntu0.1 (Accepted)

[Ubuntu Archive Robot]

salt (2015.8.8+ds-1ubuntu0.1) xenial-security; urgency=medium

  * SECURITY UPDATE: Command injection vulnerabilities in salt-api and
    salt-master caused by improper sanitized input.
    - debian/patches/CVE-2019-17361.patch: various netapi fixes and tests.
    - debian/patches/CVE-2020-11651_11652_1.patch: Checks and sanitization.
    - debian/patches/CVE-2020-11651_11652_2.patch: Adding in missing fixes.
    - CVE-2019-17361
    - CVE-2020-11651
    - CVE-2020-11652

Date: 2020-08-13 17:20:16.162366+00:00
Changed-By: Paulo Flabiano Smorigo <pfsmorigo at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/salt/2015.8.8+ds-1ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.