{"affected":[{"ecosystem_specific":{"binaries":[{"python313-salt":"3006.0-160000.3.1","python313-salt-testsuite":"3006.0-160000.3.1","salt":"3006.0-160000.3.1","salt-api":"3006.0-160000.3.1","salt-bash-completion":"3006.0-160000.3.1","salt-cloud":"3006.0-160000.3.1","salt-doc":"3006.0-160000.3.1","salt-fish-completion":"3006.0-160000.3.1","salt-master":"3006.0-160000.3.1","salt-minion":"3006.0-160000.3.1","salt-proxy":"3006.0-160000.3.1","salt-ssh":"3006.0-160000.3.1","salt-standalone-formulas-configuration":"3006.0-160000.3.1","salt-syndic":"3006.0-160000.3.1","salt-transactional-update":"3006.0-160000.3.1","salt-zsh-completion":"3006.0-160000.3.1"}]},"package":{"ecosystem":"openSUSE:Leap 16.0","name":"salt","purl":"pkg:rpm/opensuse/salt&distro=openSUSE%20Leap%2016.0"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3006.0-160000.3.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python313-salt":"3006.0-160000.3.1","python313-salt-testsuite":"3006.0-160000.3.1","salt":"3006.0-160000.3.1","salt-api":"3006.0-160000.3.1","salt-bash-completion":"3006.0-160000.3.1","salt-cloud":"3006.0-160000.3.1","salt-doc":"3006.0-160000.3.1","salt-fish-completion":"3006.0-160000.3.1","salt-master":"3006.0-160000.3.1","salt-minion":"3006.0-160000.3.1","salt-proxy":"3006.0-160000.3.1","salt-ssh":"3006.0-160000.3.1","salt-standalone-formulas-configuration":"3006.0-160000.3.1","salt-syndic":"3006.0-160000.3.1","salt-transactional-update":"3006.0-160000.3.1","salt-zsh-completion":"3006.0-160000.3.1"}]},"package":{"ecosystem":"openSUSE:Leap 16.0","name":"salt-test","purl":"pkg:rpm/opensuse/salt-test&distro=openSUSE%20Leap%2016.0"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3006.0-160000.3.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for salt fixes the following issues:\n\nChanges in salt:\n\n- Add minimum_auth_version to enforce security (CVE-2025-62349)\n- Backport security fixes for vendored tornado\n  * BDSA-2024-3438\n  * BDSA-2024-3439\n  * BDSA-2024-9026\n- Junos module yaml loader fix (CVE-2025-62348)\n- Require Python dependencies only for used Python version\n- Fix TLS and x509 modules for OSes with older cryptography module\n- Fix Salt for Python > 3.11 (bsc#1252285, bsc#1252244)\n- Fix payload signature verification on Tumbleweed (bsc#1251776)\n- Fix broken symlink on migration to Leap 16.0 (bsc#1250755)\n- Use versioned python interpreter for salt-ssh\n- Fix known_hosts error on gitfs (bsc#1250520, bsc#1227207)\n- Revert require M2Crypto >= 0.44.0 for SUSE Family distros\n- Improve SL Micro 6.2 detection with grains\n- Fix the tests failing on AlmaLinux 10 and other clones\n","id":"openSUSE-SU-2026:20000-1","modified":"2025-12-23T09:11:50Z","published":"2025-12-23T09:11:50Z","references":[{"type":"ADVISORY","url":null},{"type":"REPORT","url":"https://bugzilla.suse.com/1227207"},{"type":"REPORT","url":"https://bugzilla.suse.com/1250520"},{"type":"REPORT","url":"https://bugzilla.suse.com/1250755"},{"type":"REPORT","url":"https://bugzilla.suse.com/1251776"},{"type":"REPORT","url":"https://bugzilla.suse.com/1252244"},{"type":"REPORT","url":"https://bugzilla.suse.com/1252285"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-62348"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-62349"}],"related":["CVE-2025-62348","CVE-2025-62349"],"summary":"Security update for salt","upstream":["CVE-2025-62348","CVE-2025-62349"]}