This issue involves passing an alternative PAM authentication service with a command that is sent to LocalClient, enabling the attacker to bypass the configured authentication service. External references: https://docs.saltstack.com/en/latest/topics/releases/2015.5.10.html https://docs.saltstack.com/en/latest/topics/releases/2015.8.8.html
Created salt tracking bugs for this issue: Affects: fedora-all [bug 1320867] Affects: epel-6 [bug 1320868] Affects: epel-7 [bug 1320869]