ansible-core-2.14.14-1.el9.ML.1
エラータID: AXSA:2024-8083:01
リリース日:
2024/05/31 Friday - 20:06
題名:
ansible-core-2.14.14-1.el9.ML.1
影響のあるチャネル:
MIRACLE LINUX 9 for x86_64
Severity:
Moderate
Description:
以下項目について対処しました。
[Security Fix]
- ansible-core には、特定の構成下において ANSIBLE_NO_LOG
設定が正しく反映されない問題があるため、ローカルの攻撃者に
より、特定のタスクの実行を介して、情報の漏洩を可能とする
脆弱性が存在します。(CVE-2024-0690)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2024-0690
An information disclosure flaw was found in ansible-core due to a failure to respect the ANSIBLE_NO_LOG configuration in some scenarios. Information is still included in the output in certain tasks, such as loop items. Depending on the task, this issue may include sensitive information, such as decrypted secret values.
An information disclosure flaw was found in ansible-core due to a failure to respect the ANSIBLE_NO_LOG configuration in some scenarios. Information is still included in the output in certain tasks, such as loop items. Depending on the task, this issue may include sensitive information, such as decrypted secret values.
追加情報:
N/A
ダウンロード:
SRPMS
- ansible-core-2.14.14-1.el9.ML.1.src.rpm
MD5: 49e2addf8894c7306cca4343d191e0d1
SHA-256: 5b2ba2f14de7ca1ff617c7ec56591a00e5abc7f861aaa39c0adc098fd0497e89
Size: 11.28 MB
Asianux Server 9 for x86_64
- ansible-core-2.14.14-1.el9.ML.1.x86_64.rpm
MD5: a7a53334dbf6110aba53f8691ebef480
SHA-256: 96a3f9b139aed53451c1b2e6964a1a07cade735e43420e9eca16c1d6f8844f3f
Size: 2.20 MB - ansible-test-2.14.14-1.el9.ML.1.x86_64.rpm
MD5: c8ed39d3ea0d9574f64340ab042a7bb8
SHA-256: 010488a37793810c616aa1105489cf7d5fe0080fb3e513c420b793b9d6d76b87
Size: 684.44 kB
English