Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2019-2022 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-4396.NASL
HistoryFeb 20, 2019 - 12:00 a.m.

Debian DSA-4396-1 : ansible - security update

2019-02-2000:00:00
This script is Copyright (C) 2019-2022 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
61
JSON

Several vulnerabilities have been found in Ansible, a configuration management, deployment, and task execution system :

  • CVE-2018-10855/ CVE-2018-16876 The no_log task flag wasn’t honored, resulting in an information leak.

  • CVE-2018-10875 ansible.cfg was read from the current working directory.

  • CVE-2018-16837 The user module leaked parameters passed to ssh-keygen to the process environment.

  • CVE-2019-3828 The fetch module was susceptible to path traversal.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Debian Security Advisory DSA-4396. The text 
# itself is copyright (C) Software in the Public Interest, Inc.
#

include("compat.inc");

if (description)
{
  script_id(122321);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/01/31");

  script_cve_id("CVE-2018-10855", "CVE-2018-10875", "CVE-2018-16837", "CVE-2018-16876", "CVE-2019-3828");
  script_xref(name:"DSA", value:"4396");

  script_name(english:"Debian DSA-4396-1 : ansible - security update");
  script_summary(english:"Checks dpkg output for the updated package");

  script_set_attribute(
    attribute:"synopsis",
    value:"The remote Debian host is missing a security-related update."
  );
  script_set_attribute(
    attribute:"description",
    value:
"Several vulnerabilities have been found in Ansible, a configuration
management, deployment, and task execution system :

  - CVE-2018-10855/ CVE-2018-16876
    The no_log task flag wasn't honored, resulting in an
    information leak.

  - CVE-2018-10875
    ansible.cfg was read from the current working directory.

  - CVE-2018-16837
    The user module leaked parameters passed to ssh-keygen
    to the process environment.

  - CVE-2019-3828
    The fetch module was susceptible to path traversal."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2018-10855"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2018-16876"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2018-10875"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2018-16837"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2019-3828"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/source-package/ansible"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://packages.debian.org/source/stretch/ansible"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.debian.org/security/2019/dsa-4396"
  );
  script_set_attribute(
    attribute:"solution",
    value:
"Upgrade the ansible packages.

For the stable distribution (stretch), these problems have been fixed
in version 2.2.1.0-2+deb9u1."
  );
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2018-10875");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:ansible");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:9.0");

  script_set_attribute(attribute:"vuln_publication_date", value:"2018/07/03");
  script_set_attribute(attribute:"patch_publication_date", value:"2019/02/19");
  script_set_attribute(attribute:"plugin_publication_date", value:"2019/02/20");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2019-2022 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Debian Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"9.0", prefix:"ansible", reference:"2.2.1.0-2+deb9u1")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
debiandebian_linuxansiblep-cpe:/a:debian:debian_linux:ansible
debiandebian_linux9.0cpe:/o:debian:debian_linux:9.0

Related

debian 3
openvas 18
osv 18
nessus 35
suse 5
ubuntu 1
fedora 10
mageia 4
redhat 29
veracode 8
redhatcve 5
alpinelinux 5
cve 5
github 5
ubuntucve 5
prion 5
debiancve 5
photon 4
debian
debian
[SECURITY] [DSA 4396-1] ansible security update
2019-02-19 21:54:58
[SECURITY] [DLA 1576-1] ansible security update
2018-11-12 11:29:27
[SECURITY] [DLA 1923-1] ansible security update
2019-09-16 12:23:29
openvas
openvas
Debian: Security Advisory (DSA-4396-1)
2019-02-18 00:00:00
Ubuntu: Security Advisory (USN-4072-1)
2019-07-25 00:00:00
Fedora Update for ansible FEDORA-2019-c54511eaab
2019-03-04 00:00:00
osv
osv
ansible - security update
2019-02-19 00:00:00
PYSEC-2018-43
2018-07-13 22:29:00
Ansible Leaks Data Passed to ssh-keygen
2022-05-13 01:50:27
nessus
nessus
openSUSE Security Update : ansible (openSUSE-2019-1125)
2019-04-03 00:00:00
Ubuntu 16.04 LTS / 18.04 LTS : Ansible vulnerabilities (USN-4072-1)
2019-07-25 00:00:00
openSUSE Security Update : ansible (openSUSE-2019-1635)
2019-06-28 00:00:00
suse
suse
Security update for ansible (moderate)
2019-04-03 00:00:00
Security update for ansible (moderate)
2019-06-27 00:00:00
Security update for ansible (moderate)
2019-08-14 00:00:00
ubuntu
ubuntu
Ansible vulnerabilities
2019-07-24 00:00:00
fedora
fedora
[SECURITY] Fedora 28 Update: ansible-2.7.5-1.fc28
2018-12-24 01:48:57
[SECURITY] Fedora 28 Update: ansible-2.7.8-1.fc28
2019-03-03 03:24:34
[SECURITY] Fedora 28 Update: ansible-2.6.1-1.fc28
2018-07-12 14:21:51
mageia
mageia
Updated ansible packages fix security vulnerability
2019-03-21 19:36:46
Updated ansible packages fix security vulnerability
2018-07-01 20:17:14
Updated ansible package fixes security vulnerability
2019-01-09 00:50:23
redhat
redhat
(RHSA-2019:0564) Low: Red Hat Enterprise Linux OpenStack Platform security update
2019-03-14 13:24:27
(RHSA-2019:0590) Low: ansible security and bug fix update
2019-03-18 12:42:00
(RHSA-2018:2585) Moderate: ansible security update
2018-08-29 15:55:13
veracode
veracode
Arbitrary Code Execution
2018-07-16 07:43:28
Information Disclosure
2019-01-15 09:20:02
Information Disclosure
2019-01-15 09:26:16
redhatcve
redhatcve
CVE-2018-10875
2021-03-20 21:24:25
CVE-2018-10855
2019-10-08 21:40:21
CVE-2018-16837
2020-04-09 09:46:10
alpinelinux
alpinelinux
CVE-2018-16837
2018-10-23 15:29:00
CVE-2018-10855
2018-07-03 01:29:00
CVE-2018-10875
2018-07-13 22:29:00
cve
cve
CVE-2018-16837
2018-10-23 15:29:00
CVE-2018-10855
2018-07-03 01:29:00
CVE-2019-3828
2019-03-27 13:29:00
github
github
Ansible exposes sensitive data in log files and on the terminal
2018-10-10 17:23:20
Ansible Leaks Data Passed to ssh-keygen
2022-05-13 01:50:27
Ansible Arbitrary Code Execution
2022-05-13 01:07:35
ubuntucve
ubuntucve
CVE-2018-10855
2018-07-03 00:00:00
CVE-2018-10875
2018-07-13 00:00:00
CVE-2018-16837
2018-10-23 00:00:00
prion
prion
Code injection
2018-07-03 01:29:00
Path traversal
2019-03-27 13:29:00
Design/Logic Flaw
2018-10-23 15:29:00
debiancve
debiancve
CVE-2018-10855
2018-07-03 01:29:00
CVE-2018-16837
2018-10-23 15:29:00
CVE-2018-16876
2019-01-03 15:29:00
photon
photon
Critical Photon OS Security Update - PHSA-2019-0010
2019-04-19 00:00:00
Critical Photon OS Security Update - PHSA-2019-3.0-0010
2019-04-19 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-2.0-0152
2019-04-23 00:00:00
JSON
Related for DEBIAN_DSA-4396.NASL
debian3openvas18osv18nessus35suse5ubuntu1fedora10mageia4redhat29veracode8redhatcve5alpinelinux5cve5github5ubuntucve5prion5debiancve5photon4