saltbundle/venv-salt-minion
SHA256
7
0
Fork 4
Code Pull Requests 2 Activity

Compare commits

merge into: saltbundle:bundle_testing
Branches Tags
saltbundle:bundle saltbundle:bundle_testing saltbundle:bundle_testing_fix_selinux_on_sle16 saltbundle:bundle_next saltbundle:bundle_next_fix_selinux_on_sle16 saltbundle:bundle_testing_el9_deps_fix saltbundle:bundle_next_el9_deps_fix
...
pull from: saltbundle:bundle_testing_el9_deps_fix
Branches Tags
saltbundle:bundle saltbundle:bundle_testing saltbundle:bundle_testing_fix_selinux_on_sle16 saltbundle:bundle_next saltbundle:bundle_next_fix_selinux_on_sle16 saltbundle:bundle_testing_el9_deps_fix saltbundle:bundle_next_el9_deps_fix

3 Commits
bundle_tes ... bundle_tes

Author SHA256 Message Date
vzhestkov
58af5582c5 Fix the typo causing buiding EL9 bundle without binary dependencies 2026-02-17 10:03:22 +01:00
Michael Calmer
8bd5abb310 adapt changelog for rebuild 2026-02-02 16:35:03 +01:00
Marek Czernek
8412d1c384 Fix CVE entries in changelog 2026-01-21 17:24:35 +01:00
3 changed files with 18 additions and 5 deletions
Expand all files Collapse all files

2
_lastrevision
View File

@@ -1 +1 @@
c0445b44ea96c5db56fbd74a2c29c81f16c8d5c0
b9f7b17d7248f80ac48596f6347fb328bd11c402

19
venv-salt-minion.changes
View File

@@ -1,3 +1,13 @@
-------------------------------------------------------------------
Mon Feb 16 13:46:38 UTC 2026 - Victor Zhestkov <vzhestkov@suse.com>
- Fix the typo causing buiding EL9 bundle without binary dependencies
-------------------------------------------------------------------
Mon Feb 2 13:50:23 UTC 2026 - Michael Calmer <mc@suse.com>
- Rebuild because of maintenance release
-------------------------------------------------------------------
Mon Jan 19 09:31:06 UTC 2026 - Marek Czernek <marek.czernek@suse.com>
@@ -14,7 +24,10 @@ Wed Jan 14 14:25:41 UTC 2026 - Marek Czernek <marek.czernek@suse.com>
- Use internal deb classes instead of external aptsource lib
* Drop dependency on saltbundlepy-apt
- Speed up wheel key.finger call (bsc#1240532)
- Add security patches (bsc#1254903,bsc#1254905,bsc#1254904)
- Backport security patches for Salt vendored tornado:
* CVE-2025-67724: missing validation of supplied reason phrase (bsc#1254903)
* CVE-2025-67725: fix DoS via malicious HTTP request (bsc#1254905)
* CVE-2025-67726: fix HTTP header parameter parsing algorithm (bsc#1254904)
- Simplify and speed up utils.find_json function (bsc#1246130)
- Added:
@@ -37,12 +50,12 @@ Thu Jan 8 08:39:12 UTC 2026 - Marek Czernek <marek.czernek@suse.com>
-------------------------------------------------------------------
Mon Nov 24 21:02:49 UTC 2025 - Alexander Graul <alexander.graul@suse.com>
- Add minimum_auth_version to enforce security (CVE-2025-62349)
- CVE-2025-62349: Add minimum_auth_version to enforce security (bsc#1254257)
- Backport security fixes for vendored tornado
* BDSA-2024-3438
* BDSA-2024-3439
* BDSA-2024-9026
- Junos module yaml loader fix (CVE-2025-62348)
- CVE-2025-62348: Junos module yaml loader fix (bsc#1254256)
- Added:
* backport-3006.17-security-fixes-739.patch

2
venv-salt-minion.spec
View File

@@ -736,7 +736,7 @@ sed -i -r 's# /libzmq.so/d;# /libzmq.so/d; /libcrypto.so/d; /libssl.so/d;#' %{S:
# Exclude `libcrypt.so` from binary dependencies to make EL9 bundle
# compatible with openEuler, in case if there is no required libcrypt.so
# on the system, salt will use `passlib` instead of `crypt`.
sed -i -r 's# /libzmq.so/d;# /libzmq.so/d; /libcrypt.so/d;/d;#' %{S:101}
sed -i -r 's# /libzmq.so/d;# /libzmq.so/d; /libcrypt.so/d;#' %{S:101}
%endif
# Expand SELinux policy files