-
salt (2016.11.2+ds-1+deb9u4) stretch-security; urgency=high
* Non-maintainer upload by the Security Team.
* Apply missing fixes as part of the CVE-2020-11651 and CVE-2020-11652
-- Salvatore Bonaccorso <email address hidden> Wed, 06 May 2020 13:10:10 +0200
-
salt (2016.11.2+ds-1+deb9u2) stretch; urgency=medium
* Fix CVE-2017-8109: salt-ssh minion copied over configuration from the
Salt Master without adjusting permissions (Closes: #861219)
-- Ondřej Nový <email address hidden> Fri, 20 Apr 2018 14:33:54 +0200
-
salt (2016.11.2+ds-1+deb9u1) stretch; urgency=medium
* Fix CVE-2017-12791: Directory traversal vulnerability on salt-master
via crafted minion IDs (Closes: #872399)
* Fix CVE-2017-14695: Directory traversal vulnerability in minion id
validation in SaltStack (Closes: #879089)
* Fix CVE-2017-14696: Remote Denial of Service with a specially crafted
authentication request (Closes: #879090)
* Check if data[return] is dict type (Closes: #887724)
* Do not require sphinx-build for cleaning docs (Closes: #851559)
-- Ondřej Nový <email address hidden> Mon, 22 Jan 2018 16:30:47 +0100
-
salt (2016.11.2+ds-1) unstable; urgency=medium
* New upstream bug-fix release. Security fixes:
- CVE-2017-5192: local_batch client external authentication not respected
- CVE-2017-5200: Salt-api allows arbitrary command execution on a
salt-master via Salt's ssh_client
* Refresh patches
* Fix top_file_merging_strategy warning if env_order is set (fixes upstream
bug #29104)
-- Benjamin Drung <email address hidden> Wed, 01 Feb 2017 17:09:07 +0100
-
salt (2016.11.1+ds-1) unstable; urgency=medium
* New upstream release.
* Drop 3 patches that are included upstream and refresh remaining patches.
-- Benjamin Drung <email address hidden> Fri, 23 Dec 2016 17:36:42 +0100
-
salt (2016.3.4+ds-2) unstable; urgency=medium
* Workaround-wrong-oscodename-grain.patch: Fix salt-minion startup issue when
VERSION_ID is not defined in /etc/os-release.
-- Benjamin Drung <email address hidden> Tue, 29 Nov 2016 10:47:07 +0100
-
salt (2016.3.4+ds-1) unstable; urgency=medium
* New upstream release.
* Drop four upstream-applied patches and refresh remaining patches
* Support initializing OpenSSL 1.1 (patch accepted upstream) (Closes: #844503)
* Fix/workaround wrong oscodename grain (when lsb-release is not installed)
* Cherry-pick tempfile cleanup fix from pull request 37540
-- Benjamin Drung <email address hidden> Thu, 24 Nov 2016 15:35:04 +0100
-
salt (2016.3.3+ds-3) unstable; urgency=medium
* Remove grains type deprecation warning from 2016.3
-- Benjamin Drung <email address hidden> Thu, 27 Oct 2016 17:03:26 +0200
-
salt (2016.3.3+ds-1) unstable; urgency=medium
* New upstream release.
* Replace doc build fix patch by final patch version from 2016.3 branch
* Correct Vcs-Git URL
* Make the Salt Proxy environment aware (patch taken from develop branch)
* Depend on lsb-base (>= 3.0-6) for /lib/lsb/init-functions
-- Benjamin Drung <email address hidden> Tue, 18 Oct 2016 11:45:38 +0200
-
salt (2016.3.2+ds-1) unstable; urgency=medium
* New upstream release.
* Refresh patches.
* Fix documentation build (see upstream bug #35399).
-- Benjamin Drung <email address hidden> Thu, 25 Aug 2016 19:00:32 +0200
-
salt (2016.3.1+ds-1) unstable; urgency=medium
* New upstream release
* Drop backported maintenance process patch
* Change doc-base index file to ToC
-- Wolodja Wentland <email address hidden> Wed, 13 Jul 2016 10:46:06 +0200
-
salt (2016.3.0+ds-1) unstable; urgency=medium
[ Wolodja Wentland ]
* New upstream release
* Bump Standards-Version to 3.9.8
* Use Build-Depends-Indep for arch independent build dependencies
- Bump python-sphinx dependency to 1.3.5 as salt-doc FTBFS with earlier
versions due to https://github.com/sphinx-doc/sphinx/issues/2247
- Add python2.7-doc to correctly resolve intersphinx references to the
Python documentation
* Drop patches accepted upstream
* Fix crashing maintenance process
- See https://github.com/saltstack/salt/issues/33544 and the 2016.3.0
release notes for details
[ Robert James Hernandez ]
* Moving daemon check to after loading default (Closes: #825578)
-- Wolodja Wentland <email address hidden> Mon, 30 May 2016 09:01:20 +0000
-
salt (2015.8.8+ds-1) unstable; urgency=high
* New upstream release
- CVE-2016-3176: Fix insecure configuration of PAM external
authentication service (Closes: #819184)
* Drop reproducible_builds.patch (accepted upstream)
* Cherry-pick the four patches from 2015.8.8.2
* Re-add shebang to ssh-id-wrapper shell script
-- Benjamin Drung <email address hidden> Mon, 04 Apr 2016 13:21:16 +0200
-
salt (2015.8.7+ds-1) unstable; urgency=medium
* New upstream release.
* Override lintian warning about long link in JavaScript comment.
-- Benjamin Drung <email address hidden> Mon, 22 Feb 2016 11:57:20 +0100
-
salt (2015.8.5+ds-1) unstable; urgency=high
[ Benjamin Drung ]
* Drop patches that were accepted upstream
* Rewrite reproducible patch and sent it to upstream
* Bump Standards-Version to 3.9.7 (no changes needed)
* Ignore false positive source-is-missing lintian error (see #813013)
[ Wolodja Wentland ]
* New upstream release.
- CVE-2016-1866: Improper handling of clear messages on the minion, which
could result in executing commands not sent by the master.
* Add Wolodja Wentland to Uploaders
* Use secure URI for Vcs-Git
-- Benjamin Drung <email address hidden> Thu, 04 Feb 2016 10:44:45 +0100
-
salt (2015.8.3+ds-3) unstable; urgency=medium
* Cherry-pick fix to silence warnings from (not installed) nova client
-- Benjamin Drung <email address hidden> Thu, 14 Jan 2016 15:48:02 +0100
-
salt (2015.8.3+ds-2) unstable; urgency=medium
* salt-master: Depend on python-systemd for the startup notification
unless sysvinit is used as default init system (Closes: #807741,
LP: #1525184)
-- Benjamin Drung <email address hidden> Mon, 14 Dec 2015 12:17:44 +0100
-
salt (2015.8.3+ds-1) unstable; urgency=high
* New upstream release.
- CVE-2015-8034: Fix information leak from state.sls cache data stored as
world-readable (Closes: #807356)
* Drop Fix-OS-related-grains-on-Debian.patch (accepted upstream)
* Use upstream systemd service files (Closes: #806786)
* Extend description of salt-cloud
-- Benjamin Drung <email address hidden> Wed, 09 Dec 2015 12:14:33 +0100
-
salt (2015.8.1+ds-2) unstable; urgency=medium
* Demote python-croniter to recommends (only needed for the schedule state)
* Add missing dependency on python-tornado >= 4.2
* Fix OS related grains on Debian (wrongly named "Debian GNU")
-- Benjamin Drung <email address hidden> Fri, 06 Nov 2015 17:40:11 +0100
-
salt (2015.5.3+ds-1) unstable; urgency=medium
* [e481db1] Imported Upstream version 2015.5.3+ds
* [16f6801] Added salt-minion dependency on bsdmainutils. Closes: 790758
* [761f735] Added dependency on python-croniter. Closes: 771015
* [5b957bb] Weakened dependency on python-mako to suggests.
-- Joe Healy <email address hidden> Tue, 28 Jul 2015 22:37:05 +1000
-
salt (2015.5.2+ds-1) unstable; urgency=medium
* [e6d32ad] Updated repack script to remove new sphinx theme
* [48bdace] Imported Upstream version 2015.5.2+ds
* [9e98c1c] Updated patches for 2015.5.2 and set doc theme to saltstack
-- Joe Healy <email address hidden> Wed, 01 Jul 2015 00:13:37 +1000
-
salt (2014.1.13+ds-3) unstable; urgency=medium
* [5273cd4] Added python-msgpack dependency. Closes: 777665
-- Joe Healy <email address hidden> Fri, 13 Feb 2015 16:27:17 +1100
