Information on source package ansible

Available versions

ReleaseVersion
jessie1.7.2+dfsg-2
stretch2.2.1.0-2
buster2.3.2.0+dfsg-1
sid2.3.2.0+dfsg-1

Open issues

BugjessiestretchbustersidDescription
CVE-2017-7481vulnerable (no DSA)vulnerable (no DSA)fixedfixedSecurity issue with lookup return not tainting the jinja2 environment
CVE-2016-8628vulnerable (no DSA)fixedfixedfixed
CVE-2016-8614vulnerable (no DSA)fixedfixedfixed
CVE-2015-6240vulnerable (no DSA)fixedfixedfixedThe chroot, jail, and zone connection plugins in ansible before 1.9.2 ...
CVE-2015-3908vulnerable (no DSA)fixedfixedfixedAnsible before 1.9.2 does not verify that the server hostname matches ...

Open unimportant issues

BugjessiestretchbustersidDescription
CVE-2017-7473vulnerablevulnerablevulnerablevulnerableAnsible versions 2.2.3 and earlier are vulnerable to an information ...

Resolved issues

BugDescription
CVE-2017-7466Incomplete fix for CVE-2016-9587
CVE-2016-9587Compromised remote hosts can lead to running commands on the Ansible controller
CVE-2016-8647in some circumstances the mysql_user module may fail to correctly change a password
CVE-2016-3096The create_script function in the lxc_container module in Ansible ...
CVE-2014-4967
CVE-2014-4966
CVE-2014-4678incomplete fix for CVE-2014-4657
CVE-2014-4660
CVE-2014-4659
CVE-2014-4658
CVE-2014-4657
CVE-2014-3498The user module in ansible before 1.6.6 allows remote authenticated ...
CVE-2013-4260lib/ansible/playbook/__init__.py in Ansible 1.2.x before 1.2.3, when ...
CVE-2013-4259runner/connection_plugins/ssh.py in Ansible before 1.2.3, when using ...
CVE-2013-2233not caching SSH host keys

Search for package or bug name: Reporting problems