CVE-2017-8109
Description
The salt-ssh minion code in SaltStack Salt 2016.11 before 2016.11.4 copied over configuration from the Salt Master without adjusting permissions, which might leak credentials to local attackers on configured minions (clients).
Predictions
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2017-8109.html
Vendor advisory: cve@mitre.org — https://github.com/saltstack/salt/pull/40609/commits/6e34c2b5e5e849302af7ccd00509929c3809c658
Vendor advisory: cve@mitre.org — https://github.com/saltstack/salt/pull/40609
Vendor advisory: cve@mitre.org — https://github.com/saltstack/salt/issues/40075
Vendor advisory: cve@mitre.org — https://docs.saltstack.com/en/latest/topics/releases/2016.11.4.html
Vendor advisory: cve@mitre.org — https://bugzilla.suse.com/show_bug.cgi?id=1035912
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| sles | affected | |
Package impact
| Ecosystem | Package | Vulnerable | Fixed |
|---|---|---|---|
| PyPI | salt | >=2016.11,<2016.11.4 | 2016.11.4 |
References
- http://www.securityfocus.com/bid/98095
- https://bugzilla.suse.com/show_bug.cgi?id=1035912
- https://docs.saltstack.com/en/latest/topics/releases/2016.11.4.html
- https://github.com/saltstack/salt/issues/40075
- https://github.com/saltstack/salt/pull/40609
- https://github.com/saltstack/salt/pull/40609/commits/6e34c2b5e5e849302af7ccd00509929c3809c658
- https://www.suse.com/security/cve/CVE-2017-8109.html
- https://nvd.nist.gov/vuln/detail/CVE-2017-8109
- https://github.com/pypa/advisory-database/tree/main/vulns/salt/PYSEC-2017-82.yaml
- https://github.com/saltstack/salt
CWEs
CWE-200
Verify integrity in audit chain (admin only). AS-IS.