CVE-2024-22231

Syndic cache directory creation is vulnerable to a directory traversal attack in salt project which can lead a malicious attacker to create an arbitrary directory on a Salt master.

References:

https://saltproject.io/security-announcements/2024-01-31-advisory/
https://saltproject.io/security-announcements/2024-01-31-advisory/

Published: 2024-06-27
Modified: 2024-11-21

CVE-2024-22232

A specially crafted url can be created which leads to a directory traversal in the salt file server. A malicious user can read an arbitrary file from a Salt master’s filesystem.

References:

https://saltproject.io/security-announcements/2024-01-31-advisory/
https://saltproject.io/security-announcements/2024-01-31-advisory/

Package php8.3-swoole updated to version 5.1.2-alt1.3 for branch sisyphus_loongarch64.

/usr/lib64/php/8.3.1/extensions/swoole.so.so: cannot open shared object file: No such file or directory

Version: 2.1.0

Branch sisyphus_loongarch64 update on 2024-02-21

ALT-BU-2024-2793-1

ALT-PU-2024-2790-1

Closed vulnerabilities

CVE-2024-22231

CVE-2024-22232

ALT-PU-2024-2792-1

Closed bugs

Bug #49121