9 matches found
FreeBSD : ansible -- local symlink exploits (a6a9f9d5-205c-11e5-a4a5-002590263bf5)
MITRE reports : runner/connectionplugins/ssh.py in Ansible before 1.2.3, when using ControlPersist, allows local users to redirect a ssh session via a symlink attack on a socket file with a predictable name in /tmp/. lib/ansible/playbook/init.py in Ansible 1.2.x before 1.2.3, when playbook does n...
Fedora Update for ansible FEDORA-2014-8904
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for ansible FEDORA-2014-5375
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
UBUNTU-CVE-2013-4260
lib/ansible/playbook/init.py in Ansible 1.2.x before 1.2.3, when playbook does not run due to an error, allows local users to overwrite arbitrary files via a symlink attack on a retry file with a predictable name in /var/tmp/ansible/...
CVE-2013-4260
CVE-2013-4260 affects Ansible 1.2.x prior to 1.2.3. The vulnerability resides in lib/ansible/playbook/init .py, where, if a playbook run fails, a local user can exploit a symlink attack on a retry file with a predictable name in /var/tmp/ansible/ to overwrite arbitrary files. The issue is rooted ...
Fedora Update for ansible FEDORA-2013-15169
Check for the Version of ansible OpenVAS Vulnerability Test Fedora Update for ansible FEDORA-2013-15169 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora 19 : ansible-1.2.3-2.fc19 (2013-15169)
Fixes CVE-2013-4260 and CVE-2013-4259 See: https://groups.google.com/forum/!topic/ansible-project/UVDYW0HGcNg for more information. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically...
Fedora 18 : ansible-1.2.3-2.fc18 (2013-15181)
Fixes CVE-2013-4260 and CVE-2013-4259 See https://groups.google.com/forum/!topic/ansible-project/UVDYW0HGcNg for more information. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically...
Fedora Update for ansible FEDORA-2013-15181
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...