Multiple unspecified vulnerabilities in Salt (aka SaltStack) before 2014.1.10 allow local users to have an unspecified impact via vectors related to temporary file creation in (1) seed.py, (2) salt-ssh, or (3) salt-cloud.

References

• https://nvd.nist.gov/vuln/detail/CVE-2014-3563
• https://exchange.xforce.ibmcloud.com/vulnerabilities/95392
• http://docs.saltstack.com/en/latest/topics/releases/2014.1.10.html
• http://seclists.org/oss-sec/2014/q3/428
• http://www.securityfocus.com/bid/69319