SUSE-SU-2025:21218-1

Advisory lineage Upstream: 2 Downstream: 0
Published: 16 Dec 2025, 08:19
Last modified:23 Mar 2026, 04:51

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

16 Dec 2025, 08:19
Published
Vulnerability first disclosed
23 Mar 2026, 04:51
Last Modified
Vulnerability information updated

Description

Security update for salt This update for salt fixes the following issues: salt: - Security issues fixed: - CVE-2025-62349: Added minimum_auth_version to enforce security (bsc#1254257) - CVE-2025-62348: Fixed Junos module yaml loader (bsc#1254256) - Backport security fixes for vendored tornado * BDSA-2024-3438 * BDSA-2024-3439 * BDSA-2024-9026 - Other changes and bugs fixed: - Added `minion_legacy_req_warnings` option to avoid noisy warnings - Fixed TLS and x509 modules for OSes with older cryptography module - Fixed Salt for Python > 3.11 (bsc#1252285) (bsc#1252244) * Use external tornado on Python > 3.11 * Make tls and x509 to use python-cryptography * Remove usage of spwd - Fixed payload signature verification on Tumbleweed (bsc#1251776) - Fixed broken symlink on migration to Leap 16.0 (bsc#1250755) - Fixed known_hosts error on gitfs (bsc#1250520) (bsc#1227207) - Fixed functional.states.test_user for SLES 16 and Micro systems - Fixed the tests failing on AlmaLinux 10 and other clones - Improved SL Micro 6.2 detection with grains - Require Python dependencies only for used Python version - Reverted requirement of M2Crypto >= 0.44.0 for SUSE Family distros - Set python-CherryPy as required for python-salt-testsuite

Affected Systems

  • susesalt&distro=SUSE Linux Micro 6.1

    < 3006.0-slfo.1.1_5.1

References (9)