CVE-2016-9639
critical
CVSS v3
9.1
CVSS v2
7.5
VIR risk
9.1
Description
Salt before 2015.8.11 allows deleted minions to read or write to minions with the same id, related to caching.
Predictions
Exploit likelihood
94%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2016-9639.html
Vendor advisory: cve@mitre.org — https://docs.saltstack.com/en/2015.8/ref/configuration/master.html#rotate-aes-key
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| sles | affected | |
Package impact
| Ecosystem | Package | Vulnerable | Fixed |
|---|---|---|---|
| PyPI | salt | <2015.8.11 | 2015.8.11 |
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| saltstack | salt | {"endIncluding":"2015.8.10"} | |
References
- http://www.openwall.com/lists/oss-security/2016/11/25/2
- http://www.openwall.com/lists/oss-security/2016/11/25/3
- http://www.securityfocus.com/bid/94553
- https://docs.saltstack.com/en/2015.8/ref/configuration/master.html#rotate-aes-key
- https://www.suse.com/security/cve/CVE-2016-9639.html
- https://nvd.nist.gov/vuln/detail/CVE-2016-9639
- https://docs.saltproject.io/en/latest/topics/releases/2015.8.11.html#new-master-configuration-parameter
- https://github.com/pypa/advisory-database/tree/main/vulns/salt/PYSEC-2017-34.yaml
- https://github.com/saltstack/salt
- https://web.archive.org/web/20200227212146/http://www.securityfocus.com/bid/94553
CWEs
CWE-284
Verify integrity in audit chain (admin only). AS-IS.