Lucene search
K

10 matches found

Debian
Debian
added 2019/09/16 12:23 p.m.39 views

[SECURITY] [DLA 1923-1] ansible security update

Package : ansible Version : 1.7.2+dfsg-2+deb8u2 CVE ID : CVE-2015-3908 CVE-2015-6240 CVE-2018-10875 CVE-2019-10156 Debian Bug : 930065 Several vulnerabilities were discovered in Ansible, a configuration management, deployment, and task execution system. CVE-2015-3908 A potential man-in-the-middle...

7.8CVSS7.3AI score0.01759EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/10/15 12:0 a.m.27 views

Mageia: Security Advisory (MGASA-2015-0292)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.4AI score0.00933EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/08/31 12:0 a.m.33 views

openSUSE Security Update : ansible (openSUSE-2015-557)

Fix CVE-2015-3908 to remove tabs and use spaces instead. This broke python parsing and in consequence Ansible. bnc 941863 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2015-557. The...

4.3CVSS8AI score0.00933EPSS
Exploits0References2
CVE
CVE
added 2015/08/12 2:0 p.m.136 views

CVE-2015-3908

CVE-2015-3908 affects Ansible before 1.9.2, where TLS certificate hostname verification against CN/subjectAltName was not performed, enabling MITM with arbitrary valid certificates. Public disclosures and vendor advisories (e.g., Ubuntu USN-7330-1, Debian DLA-1923-1, openSUSE/SUSE advisories, and...

4.3CVSS7.2AI score0.00933EPSS
Exploits0References5Affected Software1
Mageia
Mageia
added 2015/07/28 9:1 p.m.43 views

Updated ansible package fixes security vulnerability

Update to 1.9.2. Fixes CVE-2015-3908 hostname and cert matching in some modules and plugins and another not yet issued CVE on chroot/jail/zone connection plugins as well as a number of bugfixes...

4.3CVSS7.5AI score0.00933EPSS
Exploits0References1
OSV
OSV
added 2015/07/28 9:1 p.m.8 views

MGASA-2015-0292 Updated ansible package fixes security vulnerability

Update to 1.9.2. Fixes CVE-2015-3908 hostname and cert matching in some modules and plugins and another not yet issued CVE on chroot/jail/zone connection plugins as well as a number of bugfixes...

4.3CVSS7.7AI score0.00933EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/07/27 12:0 a.m.39 views

openSUSE Security Update : ansible (openSUSE-2015-508)

ansible was updated to fix one security issue. This security issue was fixed : - CVE-2015-3908: Fixed improper TLS Certificate Validation bsc938161. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security...

4.3CVSS8AI score0.00933EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/07/07 12:0 a.m.27 views

Fedora Update for ansible FEDORA-2015-10797

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.4AI score0.00933EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/07/06 12:0 a.m.34 views

Fedora 22 : ansible-1.9.2-1.fc22 (2015-10797)

Update to 1.9.2. Fixes CVE-2015-3908 hostname and cert matching in some modules and plugins and another not yet issued CVE on chroot/jail/zone connection plugins as well as a number of bugfixes. Note that Tenable Network Security has extracted the preceding description block directly from the...

4.3CVSS8AI score0.00933EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/07/06 12:0 a.m.29 views

Fedora 21 : ansible-1.9.2-1.fc21 (2015-10807)

Update to 1.9.2. Fixes CVE-2015-3908 hostname and cert matching in some modules and plugins and another not yet issued CVE on chroot/jail/zone connection plugins as well as a number of bugfixes. Note that Tenable Network Security has extracted the preceding description block directly from the...

4.3CVSS8AI score0.00933EPSS
Exploits0References1
Rows per page
Query Builder