Medium severity5.3NVD Advisory· Published Apr 13, 2017· Updated May 13, 2026

CVE-2015-1839

Description

modules/chef.py in SaltStack before 2014.7.4 does not properly handle files in /tmp.

Affected packages

Versions sourced from the GitHub Security Advisory.

Package	Affected versions	Patched versions
saltPyPI	< 2014.7.4	2014.7.4

Affected products

Saltstack/Salt
cpe:2.3:a:saltstack:salt:*:*:*:*:*:*:*:*
Range: <=2014.7.3
Fedoraproject/Fedora
cpe:2.3:o:fedoraproject:fedora:23:*:*:*:*:*:*:*

Patches

22d2f7a1ec93

Use cachedir

https://github.com/saltstack/saltColton MyersMar 25, 2015via ghsa

commit

1 file changed · +4 −1

salt/modules/chef.py+4 −1 modified

@@ -29,7 +29,10 @@ def _default_logfile(exe_name):
     Retrieve the logfile name
     '''
     if salt.utils.is_windows():
-        logfile_tmp = tempfile.NamedTemporaryFile(dir=os.environ['TMP'],
+        tmp_dir = os.path.join(__opts__['cachedir'], 'tmp')
+        if not os.path.isdir(tmp_dir):
+            os.mkdir(tmp_dir)
+        logfile_tmp = tempfile.NamedTemporaryFile(dir=tmp_dir,
                                                   prefix=exe_name,
                                                   suffix='.log',
                                                   delete=False)

b49d0d4b5ca5

Create randomized logfile name in windows for chef.py

https://github.com/saltstack/saltColton MyersMar 25, 2015via ghsa

commit

1 file changed · +10 −5

salt/modules/chef.py+10 −5 modified

@@ -6,6 +6,7 @@
 # Import Python libs
 import logging
 import os
+import tempfile
 
 # Import Salt libs
 import salt.utils
@@ -24,12 +25,16 @@ def __virtual__():
 
 
 def _default_logfile(exe_name):
-
+    '''
+    Retrieve the logfile name
+    '''
     if salt.utils.is_windows():
-        logfile = salt.utils.path_join(
-            os.environ['TMP'],
-            '{0}.log'.format(exe_name)
-        )
+        logfile_tmp = tempfile.NamedTemporaryFile(dir=os.environ['TMP'],
+                                                  prefix=exe_name,
+                                                  suffix='.log',
+                                                  delete=False)
+        logfile = logfile_tmp.name
+        logfile_tmp.close()
     else:
         logfile = salt.utils.path_join(
             '/var/log',

Vulnerability mechanics

Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

bugzilla.redhat.com/show_bug.cginvdIssue TrackingPatchWEB
github.com/saltstack/salt/commit/22d2f7a1ec93300c34e8c42d14ec39d51e610b5cnvdIssue TrackingPatchThird Party AdvisoryWEB
github.com/saltstack/salt/commit/b49d0d4b5ca5c6f31f03e2caf97cef1088eeed81nvdIssue TrackingPatchThird Party AdvisoryWEB
lists.fedoraproject.org/pipermail/package-announce/2016-January/175568.htmlnvdThird Party AdvisoryWEB
docs.saltstack.com/en/latest/topics/releases/2014.7.4.htmlnvdRelease NotesVendor AdvisoryWEB
github.com/advisories/GHSA-6grp-75pq-c8cjghsaADVISORY
nvd.nist.gov/vuln/detail/CVE-2015-1839ghsaADVISORY
github.com/pypa/advisory-database/tree/main/vulns/salt/PYSEC-2017-30.yamlghsaWEB

News mentions

No linked articles in our index yet.

cvss	0.345
epss	0.000
exploit	0.000
kev	0.000
patch	-0.070
ransomware	0.000