2 matches found
RHEL 9 : Red Hat OpenStack Platform 17.1 (openstack-ansible-core) (RHSA-2025:3371)
The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:3371 advisory. An ansible-core rebuild for OpenStack based on python 3.9. Security Fixes: Jinja sandbox breakout through attr filter selecting format method...
Medium: ansible-core
Issue Overview: The upstream bug report describes this issue as follows: A flaw was found in Ansible, where a user's controller is vulnerable to template injection when internal templating operations may errantly remove the unsafe designation from template data. CVE-2023-5764 Affected Packages:...