Subject: CVS commit: pkgsrc/sysutils
From: Adam Ciarcinski
Date: 2018-10-25 11:08:37
Message id: 20181025090837.7F989FBEE@cvs.NetBSD.org
Log Message:
salt: updated to 2018.3.3

SALT 2018.3.3
CVE-2018-15751 Remote command execution and incorrect access control when using \ 
salt-api.
CVE-2018-15750 Directory traversal vulnerability when using salt-api. Allows an \ 
attacker to determine what files exist on a server when querying /run or \ 
/events.
Improves timezone detection by using the pytz module.
The tojson filter (from Jinja 2.9 and later) has been ported to Salt, and will \ 
be used when this filter is not available. This allows older LTS releases such \ 
as CentOS 7 and Ubuntu 14.04 to use this filter.
Files:
RevisionActionfile
1.67modifypkgsrc/sysutils/salt/Makefile
1.27modifypkgsrc/sysutils/salt/PLIST
1.40modifypkgsrc/sysutils/salt/distinfo
1.19modifypkgsrc/sysutils/salt-docs/Makefile
1.10modifypkgsrc/sysutils/salt-docs/distinfo
1.7removepkgsrc/sysutils/salt/patches/patch-salt_grains_core.py
1.2removepkgsrc/sysutils/salt/patches/patch-salt_modules_pkgin.py
1.7removepkgsrc/sysutils/salt/patches/patch-salt_utils_network.py