Lucene search
Gentoo FoundationMGASA-2018-0303HistoryJul 01, 2018 - 8:17 p.m.
Updated ansible packages fix security vulnerability
2018-07-0120:17:14
Gentoo Foundation
advisories.mageia.org
10
0.003 Low
EPSS
Percentile
71.7%
Ansible prior to 2.4.5 does not honor the no_log task flag for failed tasks. When the no_log flag has been used to protect sensitive data passed to a task from being logged, and that task does not run successfully, Ansible will expose sensitive data in log files and on the terminal of the user running Ansible (CVE-2018-10855).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 5 | noarch | ansible | < 2.4.5.0-1.1 | ansible-2.4.5.0-1.1.mga5 |
| Mageia | 6 | noarch | ansible | < 2.4.5.0-1.1 | ansible-2.4.5.0-1.1.mga6 |
Related
nessus
nessus
RHEL 7 : ansible (RHSA-2018:1949)
2018-06-22 00:00:00
RHEL 7 : ansible (RHSA-2018:2022)
2018-06-29 00:00:00
Fedora 27 : ansible (2018-b619637e45)
2018-06-25 00:00:00
cvelist
cvelist
CVE-2018-10855
2018-07-02 18:00:00
alpinelinux
alpinelinux
CVE-2018-10855
2018-07-03 01:29:00
openvas
openvas
Fedora Update for ansible FEDORA-2018-1a6e6196b9
2018-06-25 00:00:00
Fedora Update for ansible FEDORA-2018-b619637e45
2018-06-25 00:00:00
Mageia: Security Advisory (MGASA-2018-0303)
2022-01-28 00:00:00
cve
cve
CVE-2018-10855
2018-07-03 01:29:00
redhat
redhat
(RHSA-2018:1949) Moderate: ansible security and bug fix update
2018-06-19 19:17:41
(RHSA-2018:2022) Moderate: ansible security and bug fix update
2018-06-26 17:05:04
(RHSA-2018:2184) Moderate: CloudForms 4.6.3 bug fix and enhancement update
2018-07-12 13:03:55
osv
osv
Ansible exposes sensitive data in log files and on the terminal
2018-10-10 17:23:20
CVE-2018-10855
2018-07-03 01:29:00
PYSEC-2018-42
2018-07-03 01:29:00
redhatcve
redhatcve
CVE-2018-10855
2019-10-08 21:40:21
fedora
fedora
[SECURITY] Fedora 27 Update: ansible-2.5.5-2.fc27
2018-06-24 20:10:48
[SECURITY] Fedora 28 Update: ansible-2.5.5-2.fc28
2018-06-24 20:51:06
[SECURITY] Fedora 27 Update: ansible-2.6.1-1.fc27
2018-07-16 17:38:00
veracode
veracode
Information Disclosure
2019-01-15 09:20:02
Information Disclosure
2018-06-20 07:26:13
ubuntucve
ubuntucve
CVE-2018-10855
2018-07-03 00:00:00
github
github
Ansible exposes sensitive data in log files and on the terminal
2018-10-10 17:23:20
prion
prion
Code injection
2018-07-03 01:29:00
debiancve
debiancve
CVE-2018-10855
2018-07-03 01:29:00
debian
debian
[SECURITY] [DSA 4396-1] ansible security update
2019-02-19 21:55:12
suse
suse
Security update for ansible (moderate)
2019-02-23 00:00:00
ubuntu
ubuntu
Ansible vulnerabilities
2019-07-24 00:00:00