Skip to content

chef-cft/salt-vulnerabilities

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
controls
controls
 
 
libraries
libraries
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
inspec.lock
inspec.lock
 
 
inspec.yml
inspec.yml
 
 

Repository files navigation

Salt Stack Profile

This profile will check to make sure your salt installation is patched to a level that protects you from CVE-2020-11651, and CVE-2020-11652.

It does so by checking to ensure the packages salt-api, salt-cloud, salt-master, salt-minion, salt-ssh, salt-syndic, and salt are either version 3000.2 or newer, or 2019.2.4 or newer, or that they do not exist.

It also checks for the presence of the "salt" command in the command line, and if present, checks the standard out of the salt --version command in case salt was installed without a package manager.

Testing

Tested on:

  • CentOS 7
  • CentOS 6

About

Checks for CVE-2020-11651 and CVE-2020-11652

Resources

Readme
Activity
Custom properties

Stars

6 stars

Watchers

6 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages