Version 2015.8.1 is a bugfix release for 2015.8.0.
CVE-2015-6941 The Windows user module and
salt-cloud display passwords in log when log level is set to debug
or more verbose.
For the Windows user module, the password is
now replaced with the string XXX-REDACTED-XXX.
For salt-cloud, debug logging no longer displays win_password and
sudo_password authentication credentials.
CVE-2015-6918 Git state/execution modules log HTTPS auth credentials when
log level is set to debug or more verbose.
These credentials are now replaced with REDACTED in the debug output.
Thanks to Andreas Stieger <asteiger@suse.com> for bringing this to our
attention.
spm.d/*.conf configuration of SPM (issue #27010)proxy grains breakage for non-proxy minions (issue #27039)util.http from state.file (issue #21917)multiprocessing: True in windows (on by default`)pkg.info to pkg modulesserial grain (this was accidentally renamed in 2015.8.0`)master.d/minion.d conf files (rather than flat update`)osrelease grain (issue #27065)./bin, salt*, nssm.exe, uninst.exe (issue #27383)dockerng.running replacing creation hostconfig with runtime hostconfig (issue #27265)__states__ integrationGenerated at: 2018-05-27 22:48:32 UTC