ansible-core-2.16.3-2.el8.ML.1
エラータID: AXSA:2024-8343:02
リリース日:
2024/06/18 Tuesday - 16:12
題名:
ansible-core-2.16.3-2.el8.ML.1
影響のあるチャネル:
Asianux Server 8 for x86_64
Severity:
Moderate
Description:
以下項目について対処しました。
[Security Fix]
- ansible-core には、特定の構成下において ANSIBLE_NO_LOG
設定が正しく反映されない問題があるため、ローカルの攻撃者に
より、特定のタスクの実行を介して、情報の漏洩を可能とする
脆弱性が存在します。(CVE-2024-0690)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2024-0690
An information disclosure flaw was found in ansible-core due to a failure to respect the ANSIBLE_NO_LOG configuration in some scenarios. Information is still included in the output in certain tasks, such as loop items. Depending on the task, this issue may include sensitive information, such as decrypted secret values.
An information disclosure flaw was found in ansible-core due to a failure to respect the ANSIBLE_NO_LOG configuration in some scenarios. Information is still included in the output in certain tasks, such as loop items. Depending on the task, this issue may include sensitive information, such as decrypted secret values.
追加情報:
N/A
ダウンロード:
SRPMS
- ansible-core-2.16.3-2.el8.ML.1.src.rpm
MD5: 8f8b800e27f99af08f8704f0fc037ddd
SHA-256: 8d8457abcb620a2c5e8f2ef59fd409d3f630dae2f84b3e320f1879cbdf807d18
Size: 8.30 MB
Asianux Server 8 for x86_64
- ansible-core-2.16.3-2.el8.ML.1.x86_64.rpm
MD5: c61a0eb0fa01d631755d03a9a029fb04
SHA-256: 56411a333c6c3e2167712fc4d378e392e203677bd4ed4735be7a3fd40a677868
Size: 3.64 MB - ansible-test-2.16.3-2.el8.ML.1.x86_64.rpm
MD5: 44902b0e526e2c28365903e1c847886b
SHA-256: eb0e6424b697b8f7cd9534b60d7780b96de795045c17905a1fd1fbba1af8954a
Size: 944.88 kB
English