Linux Distros Unpatched Vulnerability : CVE-2016-9587

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ansible before versions 2.1.4, 2.2.1 is vulnerable to an improper input validation in Ansible's handling of data sent from client systems. An attacker with...

SUSE SLES15 / openSUSE 15 Security Update : SUSE Manager Client Tools (SUSE-SU-2024:1509-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1509-1 advisory. - A flaw was found in Ansible before version 2.2.0. The aptkey module does not properly verify key fingerprints, allowing remote...

CVE-2016-9587

An input validation vulnerability was found in Ansible's handling of data sent from client systems. An attacker with control over a client system being managed by Ansible and the ability to send facts back to the Ansible server could use this flaw to execute arbitrary code on the Ansible server...

RHEL 7 : ansible (RHSA-2017:1685)

An update for ansible is now available for RHEV Engine version 4.1. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

CVE-2016-9587

Ansible before versions 2.1.4, 2.2.1 is vulnerable to an improper input validation in Ansible's handling of data sent from client systems. An attacker with control over a client system being managed by Ansible and the ability to send facts back to the Ansible server could use this flaw to execute...

CVE-2016-9587

Ansible before versions 2.1.4, 2.2.1 is vulnerable to an improper input validation in Ansible's handling of data sent from client systems. An attacker with control over a client system being managed by Ansible and the ability to send facts back to the Ansible server could use this flaw to execute...

CVE-2016-9587

CVE-2016-9587 affects Ansible up to versions 2.1.4 and 2.2.1. The issue is improper input validation in handling data from client systems, allowing an attacker who controls a managed client and can send facts back to the server to execute arbitrary code on the Ansible server with server privilege...

SUSE-SU-2017:3029-1 Security update for ansible and monasca-installer

This update for ansible provides version 2.2.3.0 and fixes the following security issues: - CVE-2017-7481: Data for lookup plugins used as variables was not being marked as 'unsafe' and could lead to unintentional disclosure of information. bsc1038785 - CVE-2016-9587: Prevent compromised host to...

Important: Red Hat Security Advisory: ansible and openshift-ansible security and bug fix update

An update for ansible and openshift-ansible is now available for Red Hat OpenShift Container Platform 3.2, Red Hat OpenShift Container Platform 3.3, and Red Hat OpenShift Container Platform 3.4. Red Hat Product Security has rated this update as having a security impact of Important. A Common...

Fedora 25 : ansible (2017-cb88734094)

Update to ansible 2.2.1. Fixes several CVEs as well as a number of other bugfixes. See: https://github.com/ansible/ansible/blob/stable-2.2/CHANGELOG.md for full changes. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website...

Fedora 24 : ansible (2017-418398ce60)

Update to ansible 2.2.1. Fixes several CVEs as well as a number of other bugfixes. See: https://github.com/ansible/ansible/blob/stable-2.2/CHANGELOG.md for full changes. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website...

Fedora Update for ansible FEDORA-2017-cb88734094

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

FreeBSD : Ansible -- Command execution on Ansible controller from host (a93c3287-d8fd-11e6-be5c-001fbc0f280f)

Computest reports : Computest found and exploited several issues that allow a compromised host to execute commands on the Ansible controller and thus gain access to other hosts controlled by that controller. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

Ansible 2.1.4 / 2.2.1 Command Execution

Computest security advisory CT-2017-0109 Summary: Command execution on Ansible controller from host Affected software: Ansible CVE: CVE-2016-9587 Reference URL: https://www.computest.nl/advisories/ CT-2017-0109Ansible.txt Affected versions: 2.1.4, 2.2.1 Credit: Undisclosed at Computest...

Ansible 2.1.4 / 2.2.1 - Command Execution Vulnerability

Exploit for linux platform in category remote exploits Computest security advisory CT-2017-0109 Summary: Command execution on Ansible controller from host Affected software: Ansible CVE: CVE-2016-9587 Reference URL: https://www.computest.nl/advisories/ CT-2017-0109Ansible.txt Affected versions:...

Ansible 2.1.42.2.1 - Command Execution

Ansible 2.1.42.2.1 - Command Execution Computest security advisory CT-2017-0109 Summary: Command execution on Ansible controller from host Affected software: Ansible CVE: CVE-2016-9587 Reference URL: https://www.computest.nl/advisories/ CT-2017-0109Ansible.txt Affected versions: 2.1.4, 2.2.1...

Ansible 2.1.4/2.2.1 - Command Execution

Computest security advisory CT-2017-0109 Summary: Command execution on Ansible controller from host Affected software: Ansible CVE: CVE-2016-9587 Reference URL: https://www.computest.nl/advisories/ CT-2017-0109Ansible.txt Affected versions: 2.1.4, 2.2.1 Credit: Undisclosed at Computest...