13 matches found
EUVD-2020-0017
Malware in sbrugna...
EUVD-2018-0009
Malware in sbrugna...
Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS : Ansible vulnerabilities (USN-7330-1)
The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7330-1 advisory. It was discovered that Ansible did not properly verify certain fields of X.509 certificates. An attacker could possib...
USN-7330-1: Ansible vulnerabilities
It was discovered that Ansible did not properly verify certain fields of X.509 certificates. An attacker could possibly use this issue to spoof SSL servers if they were able to intercept network communications. This issue only affected Ubuntu 14.04 LTS. CVE-2015-3908 Martin Carpenter discovered...
USN-6846-2: Ansible regression
USN-6846-1 fixed vulnerabilities in ansible. The update introduced a regression in ansible. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that Ansible incorrectly handled certain inputs when using towercallback parameter. If a user...
Debian dla-3963 : ansible - security update
The remote Debian 11 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3963 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3963-1 [email protected]...
RHEL 7 : ansible (RHSA-2019:0590)
The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2019:0590 advisory. Ansible is a simple model-driven configuration management, multi-node deployment, and remote-task execution system. Ansible works over SSH a...
SUSE-SU-2024:0196-1 Security Beta update for SUSE Manager Client Tools and Salt
This update fixes the following issues: ansible: - Update to version 2.9.27 jscSLE-23631 jscSLE-24133 bsc1187725 CVE-2021-3620 ansible-connection module discloses sensitive info in traceback error message in 2.9.27 bsc1188061 CVE-2021-3583 Template Injection through yaml multi-line strings with...
SUSE-SU-2022:3178-1 Important security update for SUSE Manager Client Tools
This update fixes the following issues: ansible: - Update to version 2.9.27 jscSLE-23631, jscSLE-24133 CVE-2021-3620 ansible-connection module discloses sensitive info in traceback error message in 2.9.27 bsc1187725 CVE-2021-3583 Template Injection through yaml multi-line strings with ansible fac...
Vulnerabilities fixed in Ansible
Vulnerabilities have been fixed in Ansible. The vulnerabilities potentially enable an authenticated malicious person to perform attacks that result in the following categories of damage: Remote code execution User Rights Access to sensitive data Access to system data Increased user privileges -=...
Vulnerabilities fixed in Ansible
Vulnerabilities have been fixed in Ansible. The vulnerabilities allow a remote malicious party to obtain sensitive to obtain data and system information. RedHat categorizes these vulnerabilities according to the CVSSv3 method with a highest score of 5. -= Red Hat =- Red Hat has made updates...
RHEL 7 : Ansible (RHSA-2019:3202)
The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2019:3202 advisory. Ansible is a simple model-driven configuration management, multi-node deployment, and remote-task execution system. Ansible works over SSH a...
Ubuntu 16.04 LTS / 18.04 LTS : Ansible vulnerabilities (USN-4072-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4072-1 advisory. It was discovered that Ansible failed to properly handle sensitive information. A local attacker could use those vulnerabilities to extract...