valitydev/salt
14
0
Fork 0
mirror of https://github.com/valitydev/salt.git synced 2024-11-06 16:45:27 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

[2018.3.3] remove in progress and add security details

Browse Source
This commit is contained in:
Ch3LL 2018-10-24 10:31:16 -04:00
parent 5f904dd5c5
commit 1e3415860f
No known key found for this signature in database
GPG Key ID: 132B55A7C13EFA73
1 changed files with 11 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
doc/topics/releases/2018.3.3.rst
View File

@ -1,9 +1,8 @@
========================================
In Progress: Salt 2018.3.3 Release Notes
========================================
===========================
Salt 2018.3.3 Release Notes
===========================
Version 2018.3.3 is an **unreleased** bugfix release for :ref:`2018.3.0 <release-2018-3-0>`.
This release is still in progress and has not been released yet.
Version 2018.3.3 is a security and bugfix release for :ref:`2018.3.0 <release-2018-3-0>`.
Statistics
==========
@ -44,6 +43,13 @@ Statistics
- template: jinja
- defaults: {{ mydict | tojson }}
Security Fix
============
CVE-2018-15751 Remote command execution and incorrect access control when using salt-api.
CVE-2018-15750 Directory traversal vulnerability when using salt-api. Allows an attacker to determine what files exist on a server when querying /run or /events.
Changes to win_timezone
=======================