Bug 243908 - sysutils/py-salt: Update to 2019.2.3
Summary: sysutils/py-salt: Update to 2019.2.3
Status: New
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Only Me
Assignee: freebsd-ports-bugs mailing list
URL:
Keywords: buildisok
Depends on:
Blocks:
 
Reported: 2020-02-05 17:21 UTC by Christer Edwards
Modified: 2020-02-07 18:25 UTC (History)
1 user (show)

See Also:


Attachments
patch (964 bytes, text/plain)
2020-02-05 17:21 UTC, Christer Edwards
no flags Details
poudriere testport (amd64) (656.92 KB, text/plain)
2020-02-05 17:21 UTC, Christer Edwards
no flags Details

Note You need to log in before you can comment on or make changes to this bug.
Description Christer Edwards 2020-02-05 17:21:27 UTC
Created attachment 211383 [details]
patch

This patch updates sysutils/py-salt to 2019.2.3.

Version 2019.2.3 is a CVE-fix release for 2019.2.0.

CVE-2019-17361

With the Salt NetAPI enabled in addition to having a SSH roster defined, unauthenticated access is possible when specifying the client as SSH. Additionally, when the raw_shell option is specified any arbitrary command may be run on the Salt master when specifying SSH options.
Comment 1 Christer Edwards 2020-02-05 17:21:46 UTC
Created attachment 211384 [details]
poudriere testport (amd64)
Comment 2 Automation User 2020-02-05 20:42:27 UTC
Build info is available at https://gitlab.com/swills/freebsd-ports/pipelines/115294584