Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 428
Alerts This Week
Warning Icon 1 428

openSUSE: 2019:1635-1 Moderate: Ansible Fixes and Updates

opensuse
Calendar Grey June 27, 2019
Dist Opensuse Esm H88
openSUSE Security Patch resolves urgent issues related to ansible flaws, as detailed in announcement ID: openSUSE-SU-2020:1847-2
An update that fixes four vulnerabilities is now available.

Description

This update for ansible fixes the following issues:

Ansible was updated to version 2.8.1:

Full changelog is at /usr/share/doc/packages/ansible/changelogs/

- Bugfixes

- ACI - DO not encode query_string

- ACI modules - Fix non-signature authentication

- Add missing directory provided via ``--playbook-dir`` to adjacent

collection loading

- Fix "Interface not found" errors when using eos_l2_interface with

nonexistant interfaces configured

- Fix cannot get credential when `source_auth` set to `credential_file`.

- Fix netconf_config backup string issue

- Fix privilege escalation support for the docker connection plugin when

credentials need to be supplied (e.g. sudo with password).

- Fix vyos cli prompt inspection

- Fixed loading namespaced documentation fragments from collections.

- Fixing bug came up after running cnos_vrf module against coverity.

- Properly handle data importer failures on PVC...

Read the Full Advisory

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- SUSE Package Hub for SUSE Linux Enterprise 12:

zypper in -t patch openSUSE-2019-1635=1

Package List

- SUSE Package Hub for SUSE Linux Enterprise 12 (noarch):

ansible-2.8.1-12.1

References

https://www.suse.com/security/cve/CVE-2018-16837.html

https://www.suse.com/security/cve/CVE-2018-16859.html

https://www.suse.com/security/cve/CVE-2018-16876.html

https://www.suse.com/security/cve/CVE-2019-3828.html

https://bugzilla.suse.com/1109957

https://bugzilla.suse.com/1112959

https://bugzilla.suse.com/1118896

https://bugzilla.suse.com/1126503

--

Announcement ID: openSUSE-SU-2019:1635-1
Rating: moderate
Affected Products: SUSE Package Hub for SUSE Linux Enterprise 12

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.