|
|
Log in / Subscribe / Register

Arch Linux alert ASA-201708-17 (salt)



From:
    	      Levente Polyak <anthraxx@archlinux.org> 


To:
    	      arch-security@archlinux.org 


Subject:
    	      [arch-security] [ASA-201708-17] salt: directory traversal 


Date:
    	      Thu, 24 Aug 2017 00:39:43 +0200


Message-ID:
    	      <202c5746-f30d-fcc2-e8c7-6442faaf3103@archlinux.org>


Arch Linux Security Advisory ASA-201708-17
==========================================

Severity: Medium
Date    : 2017-08-23
CVE-ID  : CVE-2017-12791
Package : salt
Type    : directory traversal
Remote  : Yes
Link    : https://security.archlinux.org/AVG-383

Summary
=======

The package salt before version 2017.7.1-1 is vulnerable to directory
traversal.

Resolution
==========

Upgrade to 2017.7.1-1.

# pacman -Syu "salt>=2017.7.1-1"

The problem has been fixed upstream in version 2017.7.1.

Workaround
==========

None.

Description
===========

It has been discovered that maliciously crafted minion IDs can cause
unwanted directory traversals on the salt-master. The flaw is within
the minion id validation which could allow certain minions to
authenticate to a master despite not having the correct credentials. To
exploit the vulnerability, an attacker must create a salt-minion with
an ID containing characters that will cause a directory traversal.

Impact
======

An unauthenticated attacker is able to craft a malicious minion ID to
cause a directory traversal on the salt-master.

References
==========

https://groups.google.com/forum/#!topic/salt-announce/3e5...
https://security.archlinux.org/CVE-2017-12791
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds