APRIL 2020: SALTSTACK CVE – CRITICAL UPDATES
Thank you all for your continued support, collaboration and camaraderie as we work together to address these critical CVEs (CVE-2020-11651 and CVE-2020-11652,) and ensure your Salt environments are secure. Our combined efforts to get all Salt users patched quickly are making a difference.
This communication provides clarity on a number of key updates. Please take note and act quickly.
We have created and made patches available for a number of Salt releases. Please note, some patches are specific to certain Salt versions and, as noted, some will patch multiple versions. To ensure the patch is effective, verify installation of your version prior to installing any patches.