10 matches found
[SECURITY] [DLA 1923-1] ansible security update
Package : ansible Version : 1.7.2+dfsg-2+deb8u2 CVE ID : CVE-2015-3908 CVE-2015-6240 CVE-2018-10875 CVE-2019-10156 Debian Bug : 930065 Several vulnerabilities were discovered in Ansible, a configuration management, deployment, and task execution system. CVE-2015-3908 A potential man-in-the-middle...
Mageia: Security Advisory (MGASA-2015-0292)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : ansible (openSUSE-2015-557)
Fix CVE-2015-3908 to remove tabs and use spaces instead. This broke python parsing and in consequence Ansible. bnc 941863 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2015-557. The...
CVE-2015-3908
CVE-2015-3908 affects Ansible before 1.9.2, where TLS certificate hostname verification against CN/subjectAltName was not performed, enabling MITM with arbitrary valid certificates. Public disclosures and vendor advisories (e.g., Ubuntu USN-7330-1, Debian DLA-1923-1, openSUSE/SUSE advisories, and...
Updated ansible package fixes security vulnerability
Update to 1.9.2. Fixes CVE-2015-3908 hostname and cert matching in some modules and plugins and another not yet issued CVE on chroot/jail/zone connection plugins as well as a number of bugfixes...
MGASA-2015-0292 Updated ansible package fixes security vulnerability
Update to 1.9.2. Fixes CVE-2015-3908 hostname and cert matching in some modules and plugins and another not yet issued CVE on chroot/jail/zone connection plugins as well as a number of bugfixes...
openSUSE Security Update : ansible (openSUSE-2015-508)
ansible was updated to fix one security issue. This security issue was fixed : - CVE-2015-3908: Fixed improper TLS Certificate Validation bsc938161. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security...
Fedora Update for ansible FEDORA-2015-10797
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 22 : ansible-1.9.2-1.fc22 (2015-10797)
Update to 1.9.2. Fixes CVE-2015-3908 hostname and cert matching in some modules and plugins and another not yet issued CVE on chroot/jail/zone connection plugins as well as a number of bugfixes. Note that Tenable Network Security has extracted the preceding description block directly from the...
Fedora 21 : ansible-1.9.2-1.fc21 (2015-10807)
Update to 1.9.2. Fixes CVE-2015-3908 hostname and cert matching in some modules and plugins and another not yet issued CVE on chroot/jail/zone connection plugins as well as a number of bugfixes. Note that Tenable Network Security has extracted the preceding description block directly from the...