Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Mageia 7 Security Advisory: MGASA-2020-0217 Critical Ansible Issues

mageia
Calendar Grey May 24, 2020
Dist Mageia Esm H88
Enhanced Ansible distributions resolve multiple security flaws in Fedora, safeguarding user confidentiality and ensuring system reliability.
Updated ansible package fixes security vulnerabilities: A race condition flaw was found in Ansible Engine when running a playbook with an unprivileged become user

Summary

Updated ansible package fixes security vulnerabilities:
A race condition flaw was found in Ansible Engine when running a playbook with an unprivileged become user. When Ansible needs to run a module with become user, the temporary directory is created in /var/tmp. This directory is created with "umask 77 && mkdir -p

"; this operation does not fail if the directory already exists and is owned by another user. An attacker could take advantage to gain control of the become user as the target directory can be retrieved by iterating '/proc//cmdline' (CVE-2020-1733).
A flaw was found in the Ansible Engine when the fetch module is used. An attacker could intercept the module, inject a new path, and then choose a new destination path on the controller node (CVE-2020-1735).
A flaw was found in the Ansible Engine when using the Extract-Zip function from the win_unzip module as the extracted file(s) are not checked if they belong to the destination folder. An attacker could take advantage of t...

Read the Full Advisory

References

- https://bugs.mageia.org/show_bug.cgi?id=26349

- https://github.com/ansible/ansible/blob/v2.7.17/changelogs/CHANGELOG-v2.7.rst

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/FWDK3QUVBULS3Q3PQTGEKUQYPSNOU5M3/

- https://access.redhat.com/errata/RHSA-2020:1544

- https://access.redhat.com/errata/RHSA-2020:2142

- https://www.cve.org/CVERecord?id=CVE-2020-1733

- https://www.cve.org/CVERecord?id=CVE-2020-1735

- https://www.cve.org/CVERecord?id=CVE-2020-1737

- https://www.cve.org/CVERecord?id=CVE-2020-1739

- https://www.cve.org/CVERecord?id=CVE-2020-1740

- https://www.cve.org/CVERecord?id=CVE-2020-1746

- https://www.cve.org/CVERecord?id=CVE-2020-1753

- https://www.cve.org/CVERecord?id=CVE-2020-10684

- https://www.cve.org/CVERecord?id=CVE-2020-10684

Topics%20covered

Topics Covered

security advisory race condition code injection data confidentiality ansible mageia system availability

Resolution

SRPMS

- 7/core/ansible-2.7.18-1.mga7

Severity
critical
Lowest
Low
Medium
High
Critical

Publication date: 24 May 2020
URL: https://advisories.mageia.org/MGASA-2020-0217.html
Type: security
CVE: CVE-2020-1733, CVE-2020-1735, CVE-2020-1737, CVE-2020-1739, CVE-2020-1740, CVE-2020-1746, CVE-2020-1753, CVE-2020-10684, CVE-2020-10684

Topics%20covered

Topics Covered

security advisory race condition code injection data confidentiality ansible mageia system availability

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here