4 matches found
[SECURITY] [DLA 1923-1] ansible security update
Package : ansible Version : 1.7.2+dfsg-2+deb8u2 CVE ID : CVE-2015-3908 CVE-2015-6240 CVE-2018-10875 CVE-2019-10156 Debian Bug : 930065 Several vulnerabilities were discovered in Ansible, a configuration management, deployment, and task execution system. CVE-2015-3908 A potential man-in-the-middle...
CVE-2015-6240
The chroot, jail, and zone connection plugins in ansible before 1.9.2 allow local users to escape a restricted environment via a symlink attack...
CVE-2015-6240
CVE-2015-6240 concerns Ansible, where the chroot, jail, and zone connection plugins allow a local attacker to escape a restricted environment via a symlink attack. Affected software is Ansible versions older than 1.9.2, as described in multiple sources (including GHSA and Debian/Ubuntu advisories...
CVE-2015-6240
The chroot, jail, and zone connection plugins in ansible before 1.9.2 allow local users to escape a restricted environment via a symlink attack...