20 matches found
Astra Linux - уязвимость в ansible
A flaw was discovered in the solariszone module from the Ansible Community modules. When setting the name of a zone on the Solaris host, the zone name is checked by listing the process using the ‘ps’ command on the remote machine. An attacker could exploit this flaw by creating a fake zone name a...
CLSA-2026-1777614493 ansible: Fix of CVE-2019-14904
CVE-2019-14904: validate solariszone name to prevent command injection...
CLSA-2026-1777489309 ansible: Fix of CVE-2019-14904
CVE-2019-14904: validate solariszone name to prevent command injection...
ansible: Fix of CVE-2019-14904
CVE-2019-14904: validate solariszone name to prevent command injection...
CVE-2024-20999
Vulnerability in the Oracle Solaris product of Oracle Systems component: Zones. The supported version that is affected is 11. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle Solaris executes to compromise Oracle Solaris. While the...
ALPINE-CVE-2019-14904
A flaw was found in the solariszone module from the Ansible Community modules. When setting the name for the zone on the Solaris host, the zone name is checked by listing the process with the 'ps' bare command on the remote machine. An attacker could take advantage of this flaw by crafting the na...
DEBIAN-CVE-2019-14904
A flaw was found in the solariszone module from the Ansible Community modules. When setting the name for the zone on the Solaris host, the zone name is checked by listing the process with the 'ps' bare command on the remote machine. An attacker could take advantage of this flaw by crafting the na...
PYSEC-2020-161
A flaw was found in the solariszone module from the Ansible Community modules. When setting the name for the zone on the Solaris host, the zone name is checked by listing the process with the 'ps' bare command on the remote machine. An attacker could take advantage of this flaw by crafting the na...
PYSEC-2020-180
A flaw was found in the solariszone module from the Ansible Community modules. When setting the name for the zone on the Solaris host, the zone name is checked by listing the process with the 'ps' bare command on the remote machine. An attacker could take advantage of this flaw by crafting the na...
PYSEC-2020-161
A flaw was found in the solariszone module from the Ansible Community modules. When setting the name for the zone on the Solaris host, the zone name is checked by listing the process with the 'ps' bare command on the remote machine. An attacker could take advantage of this flaw by crafting the na...
UBUNTU-CVE-2019-14904
A flaw was found in the solariszone module from the Ansible Community modules. When setting the name for the zone on the Solaris host, the zone name is checked by listing the process with the 'ps' bare command on the remote machine. An attacker could take advantage of this flaw by crafting the na...
openSUSE Security Update : ansible (openSUSE-2020-513)
This update for ansible to version 2.9.6 fixes the following issues : Security issues fixed : - CVE-2019-14904: Fixed a vulnerability in solariszone module via crafted solaris zone boo1157968. - CVE-2019-14905: Fixed an issue where malicious code could craft filename in nxosfilecopy module...
openSUSE: Security Advisory for ansible (openSUSE-SU-2020:0513-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
System Center 2012 Operations Manager SP1 Update Rollup 5
System Center 2012 Operations Manager SP1 Update Rollup 5 Introduction This article describes the issues that are fixed in Update Rollup 5 for Microsoft System Center 2012 Operations Manager Service Pack 1 SP1. Additionally, this article contains the installation instructions for Update Rollup 5...
MGASA-2020-0060 Updated ansible package fixes security vulnerabilities
A flaw was found in the solariszone module from the Ansible Community modules. When setting the name for the zone on the Solaris host, the zone name is checked by listing the process with the 'ps' bare command on the remote machine. An attacker could take advantage of this flaw by crafting the na...
Ansible: vulnerability in solaris_zone module via crafted solaris zone
A flaw was found in the solariszone module from the Ansible Community modules. When setting the name for the zone on the Solaris host, the zone name is checked by listing the process with the 'ps' bare command on the remote machine. An attacker could take advantage of this flaw by crafting the na...
Ansible: vulnerability in solaris_zone module via crafted solaris zone
A flaw was found in the solariszone module from the Ansible Community modules. When setting the name for the zone on the Solaris host, the zone name is checked by listing the process with the 'ps' bare command on the remote machine. An attacker could take advantage of this flaw by crafting the na...
Ansible: vulnerability in solaris_zone module via crafted solaris zone
A flaw was found in the solariszone module from the Ansible Community modules. When setting the name for the zone on the Solaris host, the zone name is checked by listing the process with the 'ps' bare command on the remote machine. An attacker could take advantage of this flaw by crafting the na...
Ansible: vulnerability in solaris_zone module via crafted solaris zone
A flaw was found in the solariszone module from the Ansible Community modules. When setting the name for the zone on the Solaris host, the zone name is checked by listing the process with the 'ps' bare command on the remote machine. An attacker could take advantage of this flaw by crafting the na...
Ansible solaris_zone module OS command injection vulnerability
Ansible is a computer system configuration manager from the American company Ansible. The product can be used to publish, manage, and organize computer systems. solariszone is one of the modules used to manage Solaris zones. There is an operating system command injection vulnerability in Ansible'...