{"id":"SUSE-SU-2026:1525-1","summary":"Security update 5.1.3 for Multi-Linux Manager Salt Bundle","details":"This update fixes the following issues:\n\nvenv-salt-minion:\n    \n- Security issues fixed:\n\n  * CVE-2026-31958: Security patch for Salt vendored tornado: Added limits on multipart form data parsing (bsc#1259554)\n\n- Added x86_64_v2 as a possible rpm package architecture\n- Make users with backslash working for salt-ssh (bsc#1254629)\n- Fixed ansible.playbooks extra-vars quoting (bsc#1257831)\n- Fixed virtualenv call in test helper to use proper python version\n- Fixed the issue preventing SELinux profile to be loaded on SLES 16\n  deployed using cloud images (bsc#1258957)\n- Fixed the typo causing buiding EL9 bundle without binary dependencies\n\n","modified":"2026-04-22T08:16:43.516804Z","published":"2026-04-21T09:26:32Z","related":["CVE-2026-31958"],"upstream":["CVE-2026-31958"],"references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2026/suse-su-20261525-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1254629"},{"type":"REPORT","url":"https://bugzilla.suse.com/1257831"},{"type":"REPORT","url":"https://bugzilla.suse.com/1258957"},{"type":"REPORT","url":"https://bugzilla.suse.com/1259554"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2026-31958"}],"affected":[{"package":{"name":"venv-salt-minion","ecosystem":"SUSE:Multi Linux Manager Tools SLE-15","purl":"pkg:rpm/suse/venv-salt-minion&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-15"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3006.0-150002.5.12.2"}]}],"ecosystem_specific":{"binaries":[{"venv-salt-minion":"3006.0-150002.5.12.2"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2026:1525-1.json"}},{"package":{"name":"venv-salt-minion","ecosystem":"SUSE:Multi Linux Manager Tools SLE-Micro-5","purl":"pkg:rpm/suse/venv-salt-minion&distro=SUSE%20Multi%20Linux%20Manager%20Tools%20SLE-Micro-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3006.0-150002.5.12.2"}]}],"ecosystem_specific":{"binaries":[{"venv-salt-minion":"3006.0-150002.5.12.2"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2026:1525-1.json"}}],"schema_version":"1.7.5"}