Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package salt for openSUSE:Factory checked in at 2025-06-27 23:00:16 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/salt (Old) and /work/SRC/openSUSE:Factory/.salt.new.7067 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "salt" Fri Jun 27 23:00:16 2025 rev:176 rq:1288665 version:3006.0 Changes: -------- --- /work/SRC/openSUSE:Factory/salt/salt.changes 2025-06-12 15:47:50.387679888 +0200 +++ /work/SRC/openSUSE:Factory/.salt.new.7067/salt.changes 2025-06-27 23:00:31.855341000 +0200 @@ -1,0 +2,31 @@ +Thu Jun 26 09:44:59 UTC 2025 - Pablo Suárez Hernández <pablo.suarezhernan...@suse.com> + +- Several fixes for security issues + (bsc#1244561, CVE-2024-38822) + (bsc#1244564, CVE-2024-38823) + (bsc#1244565, CVE-2024-38824) + (bsc#1244566, CVE-2024-38825) + (bsc#1244567, CVE-2025-22240) + (bsc#1244568, CVE-2025-22236) + (bsc#1244570, CVE-2025-22241) + (bsc#1244571, CVE-2025-22237) + (bsc#1244572, CVE-2025-22238) + (bsc#1244574, CVE-2025-22239) + (bsc#1244575, CVE-2025-22242) + + * Request server hardening + * Prevent traversal in local_cache::save_minions + * Add test and fix for file_recv cve + * Fix traversal in gitfs find_file + * Fix traversal in salt.utils.virt + * Fix traversal in pub_ret + * Reasonable failures when pillars timeout + * Make send_req_async wait longer + * Remove token to prevent decoding errors + * Fix checking of non-url style git remotes + * Allow subdirs in GitFS find_file check + +- Added: + * several-fixes-for-security-issues.patch + +------------------------------------------------------------------- New: ---- several-fixes-for-security-issues.patch ----------(New B)---------- New:- Added: * several-fixes-for-security-issues.patch ----------(New E)---------- ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ salt.spec ++++++ --- /var/tmp/diff_new_pack.vxrNt6/_old 2025-06-27 23:00:36.659538996 +0200 +++ /var/tmp/diff_new_pack.vxrNt6/_new 2025-06-27 23:00:36.663539162 +0200 @@ -556,6 +556,13 @@ Patch172: fix-of-cve-2025-47287-bsc-1243268-718.patch # PATCH-FIX_UPSTREAM: https://github.com/saltstack/salt/pull/68047 Patch173: add-subsystem-filter-to-udev.exportdb-bsc-1236621-71.patch +# PATCH-FIX_UPSTREAM: https://github.com/saltstack/salt/compare/v3006.11..v3006.12 +# PATCH-FIX_UPSTREAM: https://github.com/saltstack/salt/pull/68083 +# PATCH-FIX_UPSTREAM: https://github.com/saltstack/salt/pull/68084 +# PATCH-FIX_UPSTREAM: https://github.com/saltstack/salt/pull/68085 +# PATCH-FIX_UPSTREAM: https://github.com/saltstack/salt/pull/68089 +# PATCH-FIX_UPSTREAM: https://github.com/saltstack/salt/commit/0519a4cc6b6aac58e5358037ae61436e30b07c17 +Patch174: several-fixes-for-security-issues.patch ### IMPORTANT: The line below is used as a snippet marker. Do not touch it. ### SALT PATCHES LIST END ++++++ _lastrevision ++++++ --- /var/tmp/diff_new_pack.vxrNt6/_old 2025-06-27 23:00:36.759543117 +0200 +++ /var/tmp/diff_new_pack.vxrNt6/_new 2025-06-27 23:00:36.763543282 +0200 @@ -1,3 +1,3 @@ -61095a4e2004ef22cfbcfd6e7beed2e26407fabf +a2acba39ec6b8885f5b2c91298b6f7746ee60679 (No newline at EOF) ++++++ several-fixes-for-security-issues.patch ++++++ ++++ 4874 lines (skipped)
