Oval Definition:oval:org.opensuse.security:def:60855
Revision Date:2020-12-01Version:1
Title:Security update for ansible (Moderate)
Description:

This update for ansible fixes the following issues:

Ansible was updated to ansible 2.4.6.0.

The full release notes can be found on:

https://github.com/ansible/ansible/blob/stable-2.4/CHANGELOG.md

Security issues fixed:

- CVE-2018-10875: ansible.cfg is read from the current working directory which can be altered to make it point to a plugin or a module path under the control of an attacker, thus allowing the attacker to execute arbitrary code. (bsc#1099808) - CVE-2018-10874: It was found that inventory variables are loaded from current working directory when running ad-hoc command which are under attacker's control, allowing to run arbitrary code as a result. (bsc#1099805) - CVE-2018-10855: Ansible did not honor the no_log task flag for failed tasks. When the no_log flag has been used to protect sensitive data passed to a task from being logged, and that task does not run successfully, Ansible will expose sensitive data in log files and on the terminal of the user running Ansible. (bsc#1097775)
Family:unixClass:patch
Status:Reference(s):1013992
1013993
1064455
1068685
1080074
1085967
1090766
1097410
1097775
1099805
1099808
1106061
1109663
1109847
1113969
1123161
1125674
1127034
1128977
1130972
1133860
1134395
1134399
1135335
1135365
1135603
1135715
1137584
1138459
1139358
1139826
1139959
1140122
1140575
1140577
1140652
1140903
1140945
1141181
1141401
1141402
1141452
1141453
1141454
1141853
1142023
1142254
1142857
1143045
1143048
1143189
1143191
1143333
1144257
1144273
1144288
1144920
1145920
1145922
1148931
1150003
1150250
1157888
1158003
1158004
1158005
1158006
1158007
1158763
1161181
1167152
1168140
1168142
1169392
1172205
1173274
1174922
1174923
910683
914442
950110
950111
CVE-2014-9636
CVE-2014-9913
CVE-2015-7696
CVE-2015-7697
CVE-2016-9844
CVE-2017-16853
CVE-2018-0495
CVE-2018-1000035
CVE-2018-1000802
CVE-2018-10855
CVE-2018-10874
CVE-2018-10875
CVE-2018-14647
CVE-2018-16468
CVE-2018-20836
CVE-2018-20852
CVE-2018-20855
CVE-2018-20856
CVE-2018-7191
CVE-2018-8048
CVE-2019-10160
CVE-2019-10207
CVE-2019-10638
CVE-2019-10639
CVE-2019-1125
CVE-2019-1125
CVE-2019-11810
CVE-2019-13012
CVE-2019-13631
CVE-2019-13648
CVE-2019-14283
CVE-2019-14284
CVE-2019-15117
CVE-2019-15118
CVE-2019-1547
CVE-2019-1563
CVE-2019-18900
CVE-2019-19577
CVE-2019-19578
CVE-2019-19579
CVE-2019-19580
CVE-2019-19581
CVE-2019-19583
CVE-2019-3819
CVE-2019-8595
CVE-2019-8607
CVE-2019-8615
CVE-2019-8644
CVE-2019-8649
CVE-2019-8658
CVE-2019-8666
CVE-2019-8669
CVE-2019-8671
CVE-2019-8672
CVE-2019-8673
CVE-2019-8676
CVE-2019-8677
CVE-2019-8678
CVE-2019-8679
CVE-2019-8680
CVE-2019-8681
CVE-2019-8683
CVE-2019-8684
CVE-2019-8686
CVE-2019-8687
CVE-2019-8688
CVE-2019-8689
CVE-2019-8690
CVE-2020-0543
CVE-2020-11739
CVE-2020-11740
CVE-2020-11741
CVE-2020-11742
CVE-2020-12673
CVE-2020-12674
CVE-2020-14422
CVE-2020-7211
SUSE-SU-2017:3234-1
SUSE-SU-2018:2978-1
SUSE-SU-2018:4130-1
SUSE-SU-2019:0394-1
SUSE-SU-2019:2263-1
SUSE-SU-2019:2345-2
SUSE-SU-2019:2413-1
SUSE-SU-2020:0079-2
SUSE-SU-2020:1630-1
SUSE-SU-2020:2157-1
SUSE-SU-2020:2274-1
Platform(s):openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-LTSS
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • python3-virtualbox-6.0.10-lp151.2.6 is installed
  • OR virtualbox-6.0.10-lp151.2.6 is installed
  • OR virtualbox-devel-6.0.10-lp151.2.6 is installed
  • OR virtualbox-guest-desktop-icons-6.0.10-lp151.2.6 is installed
  • OR virtualbox-guest-kmp-default-6.0.10_k4.12.14_lp151.28.10-lp151.2.6 is installed
  • OR virtualbox-guest-source-6.0.10-lp151.2.6 is installed
  • OR virtualbox-guest-tools-6.0.10-lp151.2.6 is installed
  • OR virtualbox-guest-x11-6.0.10-lp151.2.6 is installed
  • OR virtualbox-host-kmp-default-6.0.10_k4.12.14_lp151.28.10-lp151.2.6 is installed
  • OR virtualbox-host-source-6.0.10-lp151.2.6 is installed
  • OR virtualbox-qt-6.0.10-lp151.2.6 is installed
  • OR virtualbox-vnc-6.0.10-lp151.2.6 is installed
  • OR virtualbox-websrv-6.0.10-lp151.2.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libsaml8-2.5.5-3.3 is installed
  • OR opensaml-2.5.5-3.3 is installed
  • OR opensaml-bin-2.5.5-3.3 is installed
  • OR opensaml-schemas-2.5.5-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed
  • OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed
  • OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed
  • OR webkit2gtk3-2.24.4-2.47 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • libpython2_7-1_0-2.7.13-28.31 is installed
  • OR libpython2_7-1_0-32bit-2.7.13-28.31 is installed
  • OR python-2.7.13-28.31 is installed
  • OR python-32bit-2.7.13-28.31 is installed
  • OR python-base-2.7.13-28.31 is installed
  • OR python-base-32bit-2.7.13-28.31 is installed
  • OR python-curses-2.7.13-28.31 is installed
  • OR python-demo-2.7.13-28.31 is installed
  • OR python-devel-2.7.13-28.31 is installed
  • OR python-doc-2.7.13-28.31 is installed
  • OR python-doc-pdf-2.7.13-28.31 is installed
  • OR python-gdbm-2.7.13-28.31 is installed
  • OR python-idle-2.7.13-28.31 is installed
  • OR python-tk-2.7.13-28.31 is installed
  • OR python-xml-2.7.13-28.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libopenssl-devel-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed
  • OR openssl-1.0.2j-60.55 is installed
  • OR openssl-doc-1.0.2j-60.55 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libgcrypt-1.6.1-16.62 is installed
  • OR libgcrypt20-1.6.1-16.62 is installed
  • OR libgcrypt20-32bit-1.6.1-16.62 is installed
  • OR libgcrypt20-hmac-1.6.1-16.62 is installed
  • OR libgcrypt20-hmac-32bit-1.6.1-16.62 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND apache2-mod_nss-1.0.14-19.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-LTSS is installed
  • AND Package Information
  • kernel-default-4.12.14-95.60 is installed
  • OR kernel-default-base-4.12.14-95.60 is installed
  • OR kernel-default-devel-4.12.14-95.60 is installed
  • OR kernel-default-man-4.12.14-95.60 is installed
  • OR kernel-devel-4.12.14-95.60 is installed
  • OR kernel-macros-4.12.14-95.60 is installed
  • OR kernel-source-4.12.14-95.60 is installed
  • OR kernel-syms-4.12.14-95.60 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND Package Information
  • apache2-2.4.23-29.63 is installed
  • OR apache2-doc-2.4.23-29.63 is installed
  • OR apache2-example-pages-2.4.23-29.63 is installed
  • OR apache2-prefork-2.4.23-29.63 is installed
  • OR apache2-utils-2.4.23-29.63 is installed
  • OR apache2-worker-2.4.23-29.63 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND ansible-2.4.6.0-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • ruby2.1-rubygem-haml-4.0.6-3.3 is installed
  • OR rubygem-haml-4.0.6-3.3 is installed
    • BACK