(RHSA-2017:2524) Moderate: ansible security, bug fix, and enhancement update

2017-08-2217:16:32

access.redhat.com

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.028 Low

EPSS

Percentile

90.5%

JSON

Ansible is a simple model-driven configuration management, multi-node
deployment, and remote-task execution system. Ansible works over SSH and
does not require any software or daemons to be installed on remote nodes.
Extension modules can be written in any language and are transferred to
managed machines automatically.

The following packages have been upgraded to a later upstream version: ansible (2.3.1.0). (BZ#1477925)

Security Fix(es):

An input validation flaw was found in Ansible, where it fails to properly mark lookup-plugin results as unsafe. If an attacker could control the results of lookup() calls, they could inject Unicode strings to be parsed by the jinja2 templating system, resulting in code execution. By default, the jinja2 templating language is now marked as ‘unsafe’ and is not evaluated. (CVE-2017-7481)

This issue was discovered by Evgeni Golov (Red Hat).

OSVersionArchitecturePackageVersionFilename
RedHat7noarchansible-doc< 2.3.1.0-3.el7ansible-doc-2.3.1.0-3.el7.noarch.rpm
RedHat7noarchansible< 2.3.1.0-3.el7ansible-2.3.1.0-3.el7.noarch.rpm