ansible -- multiple vulnerabilities

2014-08-06T00:00:00
ID E308C61A-2060-11E5-A4A5-002590263BF5
Type freebsd
Reporter FreeBSD
Modified 2014-08-06T00:00:00

Description

Ansible, Inc. reports:

Arbitrary execution from data from compromised remote hosts or local data when using a legacy Ansible syntax - resolved in Ansible 1.7 ansible-galaxy command when used on local tarballs (and not galaxy.ansible.com) can install a malformed tarball if so provided - resolved in Ansible 1.7