SaltStack revises partial patch for command injection, privilege escalation vulnerability

The second fix was reportedly necessary after SaltStack did not participate in coordinated disclosure.