Bug 251013 - sysutils/py-salt: Update to 3002.1 (includes security fix)
Summary: sysutils/py-salt: Update to 3002.1 (includes security fix)
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: Normal Affects Many People
Assignee: Rainer Hurling
URL: https://docs.saltstack.com/en/latest/...
Keywords: security
Depends on:
Blocks:
 
Reported: 2020-11-10 12:23 UTC by michael.glaus
Modified: 2020-11-19 17:30 UTC (History)
3 users (show)

See Also:
bugzilla: maintainer-feedback? (christer.edwards)
koobs: merge-quarterly?


Attachments
Patch for update to 3002.1 (646 bytes, patch)
2020-11-10 12:23 UTC, michael.glaus
no flags Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description michael.glaus 2020-11-10 12:23:03 UTC
Created attachment 219519 [details]
Patch for update to 3002.1

Contains fixes for these vulnerabilities:
- CVE-2020-16846
- CVE-2020-17490
- CVE-2020-25592
Comment 1 Automation User 2020-11-10 15:52:22 UTC
Build and package info is available at https://gitlab.com/swills/freebsd-ports/pipelines/214283924
Comment 2 Rainer Hurling freebsd_committer 2020-11-11 20:48:17 UTC
I am just in the preparation of a VuXML entry for these vulns.

The ports builds and installs fine so far. 

For a merge-quartely I have to investigate a bit more  :)