Skip to content

Commit cc09acf

Browse files
author
Erwin Dondorp
committed
WIP
1 parent 4131979 commit cc09acf

2 files changed

Lines changed: 40 additions & 1 deletion

File tree

.github/ISSUE_TEMPLATE/add_release.md

Lines changed: 26 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,26 @@
1+
---
2+
name: Add SALT release 30xx.yy1
3+
about: Add SALT release 30xx.yy2
4+
title: Add SALT release 30xx.yy3
5+
labels: enhancement
6+
assignees: erwindon
7+
8+
---
9+
10+
File https://github.com/erwindon/SaltGUI/blob/master/saltgui/static/scripts/panels/Minions.js contains a list of known CVEs.
11+
SaltGUI warns for these vulnerabilities when they still apply for the Salt Master or any of the Salt Minions.
12+
The list ends with a statement on which SALT versions are already supported.
13+
The release that you are reporting now must be newer than that.
14+
When multiple releases are missing, create a separate issue for each.
15+
16+
Note that we do not register Release Candidates.
17+
18+
**Which release is missing**
19+
SALT version 30xx.yy: https://docs.saltproject.io/en/30xx/topics/releases/30xx.yy.html
20+
21+
**Describe the solution you'd like**
22+
Update list with new CVEs (if any).
23+
Update the text just below `ADD_RELEASE` in file `saltgui/static/scripts/panels/Minions.js`.
24+
25+
**Additional context**
26+
Add any other context or screenshots about the request here.

saltgui/static/scripts/panels/Minions.js

Lines changed: 14 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -576,6 +576,9 @@ export class MinionsPanel extends Panel {
576576
["CVE-2024-38825", MASTER + MINION, ["3006", "1[0-1]"]],
577577
["CVE-2024-38825", MASTER + MINION, ["3007", "[0-3]"]],
578578

579+
["CVE-2025-6965", MASTER + MINION, ["3006", "[0-9]"]],
580+
["CVE-2025-6965", MASTER + MINION, ["3006", "1[0-4]"]],
581+
579582
["CVE-2025-22236", MINION, ["3006", "[0-9]"]],
580583
["CVE-2025-22236", MINION, ["3006", "1[0-1]"]],
581584
["CVE-2025-22236", MINION, ["3007", "[0-3]"]],
@@ -599,9 +602,19 @@ export class MinionsPanel extends Panel {
599602
["CVE-2025-22241", MASTER + MINION, ["3006", "[0-9]"]],
600603
["CVE-2025-22241", MASTER + MINION, ["3006", "1[0-1]"]],
601604
["CVE-2025-22241", MASTER + MINION, ["3007", "[0-3]"]],
605+
606+
["CVE-2025-62348", MASTER + MINION, ["3006", "[0-9]"]],
607+
["CVE-2025-62348", MASTER + MINION, ["3006", "1[0-6]"]],
608+
609+
["CVE-2025-62349", MASTER + MINION, ["3006", "[0-9]"]],
610+
["CVE-2025-62349", MASTER + MINION, ["3006", "1[0-6]"]],
611+
602612
];
603613

604-
// the above table is up-to-date until (including) 3006.13 and 3007.5
614+
// ADD_RELEASE
615+
// the above table is up-to-date until (including) 3006.17 and 3007.5
616+
// please file an issue for SaltGUI when a saltstack version newer than that exists
617+
// https://github.com/erwindon/SaltGUI/issues/new?title=Add%20CVE-20xx-xxxxx
605618
}
606619

607620
static _getCveBugs (pVersion, pNodeType) {

0 commit comments

Comments
 (0)