Oval Definition:	oval:org.opensuse.security:def:60595
Revision Date: 2020-12-01 Version: 1 Title: Security update for ansible (Moderate) Description: This update for ansible fixes the following issues: Ansible was updated to ansible 2.4.6.0. The full release notes can be found on: https://github.com/ansible/ansible/blob/stable-2.4/CHANGELOG.md Security issues fixed: - CVE-2018-10875: ansible.cfg is read from the current working directory which can be altered to make it point to a plugin or a module path under the control of an attacker, thus allowing the attacker to execute arbitrary code. (bsc#1099808) - CVE-2018-10874: It was found that inventory variables are loaded from current working directory when running ad-hoc command which are under attacker's control, allowing to run arbitrary code as a result. (bsc#1099805) - CVE-2018-10855: Ansible did not honor the no_log task flag for failed tasks. When the no_log flag has been used to protect sensitive data passed to a task from being logged, and that task does not run successfully, Ansible will expose sensitive data in log files and on the terminal of the user running Ansible. (bsc#1097775) Family: unix Class: patch Status: Reference(s): 1021364 1026649 1026650 1085967 1097775 1099805 1099808 1106061 1108813 1111151 1113969 1114612 1120531 1123161 1125674 1127034 1128977 1130972 1133860 1134399 1135335 1135365 1137584 1139358 1139826 1140652 1140903 1140945 1141181 1141401 1141402 1141452 1141453 1141454 1142023 1142254 1142857 1143045 1143048 1143189 1143191 1143333 1144257 1144273 1144288 1144920 1145920 1145922 1153108 1155094 1156317 1156321 1157770 1160968 1162224 1162367 1162825 1165894 1169511 1171352 1172277 1172524 1173659 1173942 1174247 1174633 1174635 1174638 1174955 1176756 1177155 1177158 1177872 CVE-2016-10165 CVE-2017-6318 CVE-2018-1000805 CVE-2018-10855 CVE-2018-10874 CVE-2018-10875 CVE-2018-11759 CVE-2018-16435 CVE-2018-16468 CVE-2018-20855 CVE-2018-20855 CVE-2018-20856 CVE-2018-20856 CVE-2018-8048 CVE-2019-10207 CVE-2019-10207 CVE-2019-10220 CVE-2019-1125 CVE-2019-1125 CVE-2019-11810 CVE-2019-11810 CVE-2019-13272 CVE-2019-13631 CVE-2019-13631 CVE-2019-13648 CVE-2019-13648 CVE-2019-14283 CVE-2019-14283 CVE-2019-14284 CVE-2019-14284 CVE-2019-15117 CVE-2019-15117 CVE-2019-15118 CVE-2019-15118 CVE-2019-15239 CVE-2019-16746 CVE-2019-18348 CVE-2019-2949 CVE-2019-3819 CVE-2019-3819 CVE-2019-9674 CVE-2020-11668 CVE-2020-12861 CVE-2020-12862 CVE-2020-12863 CVE-2020-12864 CVE-2020-12865 CVE-2020-12866 CVE-2020-12867 CVE-2020-14331 CVE-2020-14345 CVE-2020-14346 CVE-2020-14347 CVE-2020-14355 CVE-2020-15683 CVE-2020-15708 CVE-2020-15969 CVE-2020-25637 CVE-2020-2654 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 CVE-2020-8492 SUSE-SU-2018:3545-1 SUSE-SU-2018:4130-1 SUSE-SU-2019:0394-1 SUSE-SU-2019:0396-1 SUSE-SU-2019:2263-1 SUSE-SU-2019:3230-1 SUSE-SU-2020:0854-1 SUSE-SU-2020:1685-1 SUSE-SU-2020:2331-1 SUSE-SU-2020:3095-1 SUSE-SU-2020:3125-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-LTSS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information kernel-debug-4.12.14-lp150.12.7 is installed OR kernel-debug-base-4.12.14-lp150.12.7 is installed OR kernel-debug-devel-4.12.14-lp150.12.7 is installed OR kernel-default-4.12.14-lp150.12.7 is installed OR kernel-default-base-4.12.14-lp150.12.7 is installed OR kernel-default-devel-4.12.14-lp150.12.7 is installed OR kernel-devel-4.12.14-lp150.12.7 is installed OR kernel-docs-4.12.14-lp150.12.7 is installed OR kernel-docs-html-4.12.14-lp150.12.7 is installed OR kernel-kvmsmall-4.12.14-lp150.12.7 is installed OR kernel-kvmsmall-base-4.12.14-lp150.12.7 is installed OR kernel-kvmsmall-devel-4.12.14-lp150.12.7 is installed OR kernel-macros-4.12.14-lp150.12.7 is installed OR kernel-obs-build-4.12.14-lp150.12.7 is installed OR kernel-obs-qa-4.12.14-lp150.12.7 is installed OR kernel-source-4.12.14-lp150.12.7 is installed OR kernel-source-vanilla-4.12.14-lp150.12.7 is installed OR kernel-syms-4.12.14-lp150.12.7 is installed OR kernel-vanilla-4.12.14-lp150.12.7 is installed OR kernel-vanilla-base-4.12.14-lp150.12.7 is installed OR kernel-vanilla-devel-4.12.14-lp150.12.7 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information evince-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-devel-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-lang-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-plugin-comicsdocument-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-plugin-djvudocument-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-plugin-dvidocument-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-plugin-pdfdocument-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-plugin-psdocument-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-plugin-tiffdocument-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR evince-plugin-xpsdocument-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR libevdocument3-4-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR libevview3-3-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR nautilus-evince-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR typelib-1_0-EvinceDocument-3_0-3.26.0+20180128.1bd86963-lp151.4.3 is installed OR typelib-1_0-EvinceView-3_0-3.26.0+20180128.1bd86963-lp151.4.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information lcms2-2.7-9.7 is installed OR liblcms2-2-2.7-9.7 is installed OR liblcms2-2-32bit-2.7-9.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kernel-default-4.4.180-94.103 is installed OR kernel-default-base-4.4.180-94.103 is installed OR kernel-default-devel-4.4.180-94.103 is installed OR kernel-devel-4.4.180-94.103 is installed OR kernel-macros-4.4.180-94.103 is installed OR kernel-source-4.4.180-94.103 is installed OR kernel-syms-4.4.180-94.103 is installed OR kgraft-patch-4_4_180-94_103-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_28-1-4.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_103-default-4-2 is installed OR kgraft-patch-SLE12-SP3_Update_28-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND atftp-0.7.0-160.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information xen-4.11.4_04-2.30 is installed OR xen-doc-html-4.11.4_04-2.30 is installed OR xen-libs-4.11.4_04-2.30 is installed OR xen-libs-32bit-4.11.4_04-2.30 is installed OR xen-tools-4.11.4_04-2.30 is installed OR xen-tools-domU-4.11.4_04-2.30 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND ansible-2.4.6.0-3.3 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information grub2-2.02-12.39 is installed OR grub2-i386-pc-2.02-12.39 is installed OR grub2-snapper-plugin-2.02-12.39 is installed OR grub2-systemd-sleep-plugin-2.02-12.39 is installed OR grub2-x86_64-efi-2.02-12.39 is installed OR grub2-x86_64-xen-2.02-12.39 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-loofah-2.0.2-3.5 is installed OR rubygem-loofah-2.0.2-3.5 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND golang-github-prometheus-node_exporter-0.18.1-1.6 is installed
BACK