FEDORA-EPEL-2020-5af12f8767 — security update for ansible

stable

ansible-2.9.7-1.el8

FEDORA-EPEL-2020-5af12f8767 created by kevin 2 years ago for Fedora EPEL 8

Update to bugfix and security update 2.9.7. See https://github.com/ansible/ansible/blob/stable-2.9/changelogs/CHANGELOG-v2.9.rst for detailed changes.

Update to upstream 2.9.6 and fix for 2 CVES: CVE-2020-1737, CVE-2020-1739

This update has been submitted for testing by kevin.

2 years ago

This update's test gating status has been changed to 'waiting'.

2 years ago

This update has obsoleted ansible-2.9.6-1.el8, and has inherited its bugs and notes.

2 years ago

This update's test gating status has been changed to 'ignored'.

2 years ago

This update has been pushed to testing.

2 years ago

mperina commented & provided feedback 2 years ago

karma

Works for me

mperina commented & provided feedback 2 years ago

karma

Works for me

mnecas commented & provided feedback 2 years ago

karma

LGTM

mnecas commented & provided feedback 2 years ago

karma

LGTM

This update can be pushed to stable now if the maintainer wishes

2 years ago

sbonazzo provided feedback 2 years ago

karma

BZ#1810373 ansible-2.9.6 is available

BZ#1825070 ansible-2.9.7 is available

This update has been submitted for stable by bodhi.

2 years ago

sbonazzo commented & provided feedback 2 years ago

karma

Works for me

BZ#1810373 ansible-2.9.6 is available

BZ#1825070 ansible-2.9.7 is available

This update has been submitted for stable by bodhi.

2 years ago

sbonazzo commented & provided feedback 2 years ago

karma

Works for me

BZ#1810373 ansible-2.9.6 is available

BZ#1825070 ansible-2.9.7 is available

This update has been submitted for stable by bodhi.

2 years ago

sbonazzo commented & provided feedback 2 years ago

karma

Works for me

BZ#1810373 ansible-2.9.6 is available

BZ#1825070 ansible-2.9.7 is available

sbonazzo commented & provided feedback 2 years ago

karma

Works for me

BZ#1810373 ansible-2.9.6 is available

BZ#1825070 ansible-2.9.7 is available

This update has been pushed to stable.

2 years ago

Please login to add feedback.

Metadata

Type

security

Severity

medium

Karma

Signed

Content Type

RPM

Test Gating

ignored

Builds

ansible-2.9.7-1.el8

Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

14 days

Dates

submitted

2 years ago

in testing

2 years ago

in stable

2 years ago

BZ#1805319 CVE-2020-1740 ansible: secrets readable after ansible-vault edit [epel-all]

BZ#1805322 CVE-2020-1739 ansible: svn module leaks password when specified as a parameter [epel-all]

BZ#1805326 CVE-2020-1738 ansible: module package can be selected by the ansible facts [epel-all]

BZ#1805329 CVE-2020-1737 ansible: Extract-Zip function in win_unzip module does not check extracted path [epel-all]

BZ#1805332 CVE-2020-1736 ansible: atomic_move primitive sets permissive permissions [epel-all]

BZ#1805336 CVE-2020-1735 ansible: path injection on dest parameter in fetch module [epel-all]

BZ#1805339 CVE-2020-1734 ansible: shell enabled by default in a pipe lookup plugin subprocess [epel-all]

BZ#1805342 CVE-2020-1733 ansible: insecure temporary directory when running become_user from become directive [epel-all]

BZ#1808472 CVE-2020-1746 ansible: Information disclosure issue in ldap_attr and ldap_entry modules [epel-all]

BZ#1810373 ansible-2.9.6 is available

BZ#1811933 CVE-2020-1753 ansible: kubectl connection plugin leaks sensitive information [epel-all]

BZ#1816311 CVE-2020-10684 ansible: code injection when using ansible_facts as a subkey [epel-all]

BZ#1816312 CVE-2020-10685 ansible: modules which use files encrypted with vault are not properly cleaned up [epel-all]

BZ#1817979 CVE-2020-10691 ansible: archive traversal vulnerability in ansible-galaxy collection install [epel-all]

BZ#1825070 ansible-2.9.7 is available

ansible-2.9.7-1.el8

Automated Test Results

ignored