Lucene search
RedHatRHSA-2019:4242HistoryDec 16, 2019 - 11:21 p.m.
(RHSA-2019:4242) Important: Red Hat Ansible Tower 3.5.4-1 - RHEL7 Container
2019-12-1623:21:27
access.redhat.com
34
0.003 Low
EPSS
Percentile
68.4%
- Added a command to generate a new SECRET_KEY and rekey the database
- Removed the guest user from the optionally-configured RabbitMQ admin interface (CVE-2019-19340)
- Fixed assorted issues with preserving permissions in the Ansible Tower backup playbook (CVE-2019-19341)
- Fixed a partial password disclosure when special characters existed in the RabbitMQ password (CVE-2019-19342)
- Fixed a file descriptor leak in the Tower service during project updates
- Fixed an issue where AUTHORIZATION_CODE_EXPIRE_SECONDS and ACCESS_TOKEN_EXPIRE_SECONDS were not properly honored
- Fixed an issue where some timezones in schedules could not be parsed
- Fixed isolated execution of playbooks with blanks in the filename
- Fixed saving of workflow extra_vars
- Updated Ansible Tower to disallow Jinja in inventory hostnames
- Updated analytics data collection to match Ansible Tower 3.6
- Updated bundled oVirt SDK to version 4.3.0
Related
nessus
nessus
Ansible Tower 3.5.x < 3.5.4 / 3.6.x < 3.6.2 Multiple Vulnerabilities
2019-12-20 00:00:00
RHEL 7 / 8 : ansible (RHSA-2019:3928)
2019-11-22 00:00:00
RHEL 7 : ansible (RHSA-2019:3925)
2019-11-22 00:00:00
redhat
redhat
(RHSA-2019:4243) Important: Red Hat Ansible Tower 3.6.2-1 - RHEL7 Container
2019-12-16 18:21:29
(RHSA-2019:3928) Moderate: ansible security and bug fix update
2019-11-20 14:32:13
(RHSA-2019:3926) Moderate: ansible security and bug fix update
2019-11-20 14:32:09
symantec
symantec
Ansible Tower Multiple Security Vulnerabilities
2019-12-14 00:00:00
Ansible Tower CVE-2019-19341 Information Disclosure Vulnerability
2019-12-14 00:00:00
Ansible CVE-2019-14864 Multiple Information Disclosure Vulnerabilities
2019-10-16 00:00:00
redhatcve
redhatcve
prion
prion
Design/Logic Flaw
2019-12-19 21:15:00
Default credentials
2019-12-19 21:15:00
Design/Logic Flaw
2019-12-19 21:15:00
cvelist
cvelist
nvd
nvd
cve
cve
github
github
veracode
veracode
Information Disclosure
2019-10-24 08:40:31
mageia
mageia
Updated ansible packages fix security vulnerability
2019-12-06 17:15:42
osv
osv
PYSEC-2020-160
2020-01-02 15:15:00
CVE-2019-14864
2020-01-02 15:15:12
ubuntucve
ubuntucve
CVE-2019-14864
2020-01-02 00:00:00
alpinelinux
alpinelinux
CVE-2019-14864
2020-01-02 15:15:12
openvas
openvas
Mageia: Security Advisory (MGASA-2019-0358)
2022-01-28 00:00:00
openSUSE: Security Advisory for ansible (openSUSE-SU-2020:0513-1)
2020-04-13 00:00:00
Debian: Security Advisory (DSA-4950-1)
2021-08-08 00:00:00
debiancve
debiancve
CVE-2019-14864
2020-01-02 15:15:12
photon
photon
Moderate Photon OS Security Update - PHSA-2020-0058
2020-02-15 00:00:00
Moderate Photon OS Security Update - PHSA-2020-3.0-0058
2020-02-15 00:00:00
suse
suse
Security update for ansible (moderate)
2020-04-13 00:00:00
Security update for ansible (moderate)
2020-04-16 00:00:00
debian
debian
[SECURITY] [DSA 4950-1] ansible security update
2021-08-07 09:26:39