15 matches found
Debian dla-3695 : ansible - security update
The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-3695 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3695-2 [email protected] https://www.debian.org/lts/security/...
Amazon Linux 2 : ansible (ALASANSIBLE2-2023-003)
The version of ansible installed on the remote host is prior to 2.9.20-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2ANSIBLE2-2023-003 advisory. A flaw was found in several ansible modules, where parameters containing credentials, such as secrets, were being logged in...
SUSE SLES15: ansible / ansible-doc / ansible-test / dracut-saltboot / etc (SUSE-SU-2022:3178-1)
The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3178-1 advisory. ansible: - Update to version 2.9.27 jscSLE-23631, jscSLE-24133 CVE-2021-3620 ansible-connection module discloses...
openSUSE: Security Advisory for Important (SUSE-SU-2022:3178-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE: Security Advisory (SUSE-SU-2022:3178-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2021-0420)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated ansible packages fix security vulnerability
A flaw was found in several ansible modules, where parameters containing credentials, such as secrets, were being logged in plain-text on managed nodes, as well as being made visible on the controller node when run in verbose mode. These parameters were not protected by the nolog feature. An...
Important: Red Hat Security Advisory: Red Hat Virtualization Host security and bug fix update [ovirt-4.4.7]
An update for imgbased, redhat-release-virtualization-host, and redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System...
SUSE-SU-2021:2121-1 Security update for ansible
This update for ansible fixes the following issues: - Update to 2.9.22: - CVE-2021-3447: multiple modules expose secured values bsc1183684 - CVE-2021-20228: basic.py nolog with fallback option bsc1181935 - CVE-2021-20191: multiple collections exposes secured values bsc1181119 - CVE-2021-20180:...
Moderate: Red Hat Security Advisory: Ansible security update (2.9.20)
An update for ansible is now available for Ansible Engine 2.9 Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE lin...
Moderate: Red Hat Security Advisory: Ansible security update (2.9.20)
An update for ansible is now available for Ansible Engine 2 Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links...
RHEL 7 / 8 : Ansible security update (2.9.20) (Moderate) (RHSA-2021:1343)
The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:1343 advisory. Ansible is a simple model-driven configuration management, multi-node deployment, and remote-task execution system. Ansible works over SSH and do...
RHEL 7 / 8 : Ansible security update (2.9.20) (Moderate) (RHSA-2021:1342)
The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:1342 advisory. Ansible is a simple model-driven configuration management, multi-node deployment, and remote-task execution system. Ansible works over SSH and do...
Moderate: Red Hat Security Advisory: Red Hat Ansible Automation Platform Operator 1.2 security update
Red Hat Ansible Automation Platform Resource Operator 1.2 technical preview images that fix several security issues. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity ratin...
CVE-2021-3447
CVE-2021-3447 describes a vulnerability in several ansible modules where credentials and secrets logged in plain text on managed nodes or controller when verbose mode is used, not protected by no_log. Affected: Red Hat Ansible Automation Platform <1.2.2; Ansible Tower