9 matches found
SUSE SLES15: POS_Image-Graphical7 / POS_Image-JeOS7 / ansible / ansible-doc / etc (SUSE-SU-2024:1509-1)
The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1509-1 advisory. POSImage-Graphical7 was updated to version 0.1.1710765237.46af599: - Version 0.1.1710765237.46af599 Moved image services to...
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM / 22.04 ESM : Ansible vulnerabilities (USN-5315-1)
The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM / 22.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5315-1 advisory. It was discovered that Ansible did not properly manage directory permissions when running playbooks with an...
Ubuntu: Security Advisory (USN-5315-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-10744 affecting package ansible 2.9.9-1
CVE-2020-10744 affecting package ansible 2.9.9-1. An upgraded version of the package is available that resolves this issue...
Security Bulletin: Security vulnerabilities in Ansible affect IBM Cloud Pak for Multicloud Management Hybrid GRC
Summary Security Bulletin: Security vulnerabilities in Ansible affect IBM Cloud Pak for Multicloud Management Hybrid GRC. Vulnerability Details CVEID: CVE-2020-14365 DESCRIPTION: Red Hat Ansible Engine could allow a local authenticated attacker to execute arbitrary code on the system, caused by a...
FreeBSD : Ansible -- Insecure Temporary File (50ec3a01-ad77-11eb-8528-8c164582fbac)
NVD reports : An incomplete fix was found for the fix of the flaw CVE-2020-1733 ansible: insecure temporary directory when running becomeuser from become directive. The provided fix is insufficient to prevent the race condition on systems using ACLs and FUSE filesystems.. %NASLMINLEVEL 70300 C...
UBUNTU-CVE-2020-10744
An incomplete fix was found for the fix of the flaw CVE-2020-1733 ansible: insecure temporary directory when running becomeuser from become directive. The provided fix is insufficient to prevent the race condition on systems using ACLs and FUSE filesystems. Ansible Engine 2.7.18, 2.8.12, and 2.9....
CVE-2020-10744
CVE-2020-10744 concerns a race condition in Ansible where an insecure temporary directory is created during become_user, enabling potential takeover of the become user. Connected documents confirm affected versions (Ansible Engine 2.7.18, 2.8.12, 2.9.9; Ansible Tower 3.4.5/3.5.6/3.6.4) and descri...
CVE-2020-10744
An incomplete fix was found for the fix of the flaw CVE-2020-1733, Ansible: insecure temporary directory when running becomeuser from the become directive. The provided fix is insufficient to prevent the race condition on systems using ACLs and FUSE filesystems. Mitigation Currently, there is no...