Ansible Sandbox Escape via Symlink Attack

The chroot, jail, and zone connection plugins in ansible before 1.9.2 allow local users to escape a restricted environment via a symlink attack...

Ansible chroot, jail and zone connection plugin backlink vulnerability

Ansible is a computer system configuration manager that can be used to publish, manage, and orchestrate computer systems. chroot, jail, and zone connection are among the plug-ins. chroot is a root directory modification plug-in; jail is a process or application restriction plug-in; and zone...

Code injection

The chroot, jail, and zone connection plugins in ansible before 1.9.2 allow local users to escape a restricted environment via a symlink attack...

CVE-2015-6240

CVE-2015-6240 concerns Ansible, where the chroot, jail, and zone connection plugins allow a local attacker to escape a restricted environment via a symlink attack. Affected software is Ansible versions older than 1.9.2, as described in multiple sources (including GHSA and Debian/Ubuntu advisories...