ZDNet

SaltStack revises partial patch for command injection, privilege escalation vulnerability

The Salt Project has issued a secondary fix for a command injection vulnerability after the first attempt to patch the issue partially failed. The vulnerability, tracked as CVE-2020-28243, impacts ...
TechRepublic

How to send commands and states to Linux minions from the Salt controller

How to send commands and states to Linux minions from the Salt controller Your email has been sent Image: iStock/EvgeniyShkolenko Cloud: Must-read coverage CrowdStrike Outage Disrupts Microsoft ...
Bleeping Computer

SaltStack reveals new critical vulnerabilities, patch now

SaltStack, a VMware-owned company, has revealed critical vulnerabilities impacting Salt versions 3002 and prior, with patches available as of today. Salt is an open-source IT infrastructure management ...
InfoQ

SaltStack for Flexible and Scalable Configuration Management

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Dany Lepage discusses the architectural ...
Dark Reading

Configuration Issues in SaltStack IT Tool Put Enterprises at Risk

Researchers have identified a template injection technique against the open source SaltStack IT configuration and orchestration platform, as well as common misconfiguration issues, which could allow ...