A salt security update has been released for Debian GNU/Linux 10 to address several vulnerabilities that could result in authentication bypass and invocation of Salt SSH, creation of certificates with weak file permissions via the TLS execution module or shell injections with the Salt API using the SSH client.