Salt 2018.3.5 Release Notes

Version 2018.3.5 is a CVE-fix release for 2018.3.0.

Security Fix

CVE-2019-17361

With the Salt NetAPI enabled in addition to having a SSH roster defined, unauthenticated access is possible when specifying the client as SSH. Additionally, when the raw_shell option is specified any arbitrary command may be run on the Salt master when specifying SSH options.

Generated on May 22, 2024 at 17:25:40 UTC.

You are viewing docs for the latest stable release, 3007.1. Switch to docs for the previous stable release, 3006.8, or to a recent doc build from the master branch.


saltproject.io

© 2024 VMware, Inc. | Privacy Policy