FEDORA-EPEL-2020-5af12f8767 created by kevin 6 months ago for Fedora EPEL 8
stable

Update to bugfix and security update 2.9.7. See https://github.com/ansible/ansible/blob/stable-2.9/changelogs/CHANGELOG-v2.9.rst for detailed changes.


Update to upstream 2.9.6 and fix for 2 CVES: CVE-2020-1737, CVE-2020-1739

This update has been submitted for testing by kevin.

6 months ago

This update's test gating status has been changed to 'waiting'.

6 months ago

This update has obsoleted ansible-2.9.6-1.el8, and has inherited its bugs and notes.

6 months ago

This update's test gating status has been changed to 'ignored'.

6 months ago

This update has been pushed to testing.

6 months ago
User Icon mperina commented & provided feedback 6 months ago
karma

Works for me

User Icon mperina commented & provided feedback 6 months ago
karma

Works for me

User Icon mnecas commented & provided feedback 6 months ago
karma

LGTM

User Icon mnecas commented & provided feedback 6 months ago
karma

LGTM

This update can be pushed to stable now if the maintainer wishes

6 months ago
User Icon sbonazzo provided feedback 6 months ago
karma
BZ#1810373 ansible-2.9.6 is available
BZ#1825070 ansible-2.9.7 is available

This update has been submitted for stable by bodhi.

6 months ago
User Icon sbonazzo commented & provided feedback 6 months ago
karma

Works for me

BZ#1810373 ansible-2.9.6 is available
BZ#1825070 ansible-2.9.7 is available

This update has been submitted for stable by bodhi.

6 months ago
User Icon sbonazzo commented & provided feedback 6 months ago
karma

Works for me

BZ#1810373 ansible-2.9.6 is available
BZ#1825070 ansible-2.9.7 is available

This update has been submitted for stable by bodhi.

6 months ago
User Icon sbonazzo commented & provided feedback 6 months ago
karma

Works for me

BZ#1810373 ansible-2.9.6 is available
BZ#1825070 ansible-2.9.7 is available
User Icon sbonazzo commented & provided feedback 6 months ago
karma

Works for me

BZ#1810373 ansible-2.9.6 is available
BZ#1825070 ansible-2.9.7 is available

This update has been pushed to stable.

6 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
3
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
14 days
Dates
submitted
6 months ago
in testing
6 months ago
in stable
6 months ago
BZ#1805319 CVE-2020-1740 ansible: secrets readable after ansible-vault edit [epel-all]
0
0
BZ#1805322 CVE-2020-1739 ansible: svn module leaks password when specified as a parameter [epel-all]
0
0
BZ#1805326 CVE-2020-1738 ansible: module package can be selected by the ansible facts [epel-all]
0
0
BZ#1805329 CVE-2020-1737 ansible: Extract-Zip function in win_unzip module does not check extracted path [epel-all]
0
0
BZ#1805332 CVE-2020-1736 ansible: atomic_move primitive sets permissive permissions [epel-all]
0
0
BZ#1805336 CVE-2020-1735 ansible: path injection on dest parameter in fetch module [epel-all]
0
0
BZ#1805339 CVE-2020-1734 ansible: shell enabled by default in a pipe lookup plugin subprocess [epel-all]
0
0
BZ#1805342 CVE-2020-1733 ansible: insecure temporary directory when running become_user from become directive [epel-all]
0
0
BZ#1808472 CVE-2020-1746 ansible: Information disclosure issue in ldap_attr and ldap_entry modules [epel-all]
0
0
BZ#1810373 ansible-2.9.6 is available
0
1
BZ#1811933 CVE-2020-1753 ansible: kubectl connection plugin leaks sensitive information [epel-all]
0
0
BZ#1816311 CVE-2020-10684 ansible: code injection when using ansible_facts as a subkey [epel-all]
0
0
BZ#1816312 CVE-2020-10685 ansible: modules which use files encrypted with vault are not properly cleaned up [epel-all]
0
0
BZ#1817979 CVE-2020-10691 ansible: archive traversal vulnerability in ansible-galaxy collection install [epel-all]
0
0
BZ#1825070 ansible-2.9.7 is available
0
1

Automated Test Results