Linux Security
    Linux Security
    Linux Security

    RedHat: RHSA-2020-4254:01 Moderate: security update - Red Hat Ansible Tower

    Date
    78
    Posted By
    Red Hat Ansible Tower 3.7 runner release (CVE-2019-18874) 2. Description: * Updated python-psutil version to 5.6.6 inside ansible-runner container (CVE-2019-18874)
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA256
    
    =====================================================================
                       Red Hat Security Advisory
    
    Synopsis:          Moderate: security update - Red Hat Ansible Tower 3.7 runner release (CVE-2019-18874)
    Advisory ID:       RHSA-2020:4254-01
    Product:           Red Hat Ansible Tower
    Advisory URL:      https://access.redhat.com/errata/RHSA-2020:4254
    Issue date:        2020-10-14
    CVE Names:         CVE-2017-12652 CVE-2018-20843 CVE-2019-5094 
                       CVE-2019-5188 CVE-2019-5482 CVE-2019-11719 
                       CVE-2019-11727 CVE-2019-11756 CVE-2019-12450 
                       CVE-2019-12749 CVE-2019-14822 CVE-2019-14866 
                       CVE-2019-14973 CVE-2019-15903 CVE-2019-16935 
                       CVE-2019-17006 CVE-2019-17023 CVE-2019-17498 
                       CVE-2019-17546 CVE-2019-18874 CVE-2019-19126 
                       CVE-2019-19956 CVE-2019-20386 CVE-2019-20388 
                       CVE-2020-5313 CVE-2020-6829 CVE-2020-7595 
                       CVE-2020-12243 CVE-2020-12400 CVE-2020-12401 
                       CVE-2020-12402 CVE-2020-12403 CVE-2020-14365 
    =====================================================================
    
    1. Summary:
    
    Red Hat Ansible Tower 3.7 runner release (CVE-2019-18874)
    
    2. Description:
    
    * Updated python-psutil version to 5.6.6 inside ansible-runner container
    (CVE-2019-18874)
    
    3. Solution:
    
    For information on upgrading Ansible Tower, reference the Ansible Tower
    Upgrade and Migration Guide:
    https://docs.ansible.com/ansible-tower/latest/html/upgrade-migration-guide/
    index.html
    
    4. Bugs fixed (https://bugzilla.redhat.com/):
    
    1772014 - CVE-2019-18874 python-psutil: double free because of refcount mishandling
    
    5. References:
    
    https://access.redhat.com/security/cve/CVE-2017-12652
    https://access.redhat.com/security/cve/CVE-2018-20843
    https://access.redhat.com/security/cve/CVE-2019-5094
    https://access.redhat.com/security/cve/CVE-2019-5188
    https://access.redhat.com/security/cve/CVE-2019-5482
    https://access.redhat.com/security/cve/CVE-2019-11719
    https://access.redhat.com/security/cve/CVE-2019-11727
    https://access.redhat.com/security/cve/CVE-2019-11756
    https://access.redhat.com/security/cve/CVE-2019-12450
    https://access.redhat.com/security/cve/CVE-2019-12749
    https://access.redhat.com/security/cve/CVE-2019-14822
    https://access.redhat.com/security/cve/CVE-2019-14866
    https://access.redhat.com/security/cve/CVE-2019-14973
    https://access.redhat.com/security/cve/CVE-2019-15903
    https://access.redhat.com/security/cve/CVE-2019-16935
    https://access.redhat.com/security/cve/CVE-2019-17006
    https://access.redhat.com/security/cve/CVE-2019-17023
    https://access.redhat.com/security/cve/CVE-2019-17498
    https://access.redhat.com/security/cve/CVE-2019-17546
    https://access.redhat.com/security/cve/CVE-2019-18874
    https://access.redhat.com/security/cve/CVE-2019-19126
    https://access.redhat.com/security/cve/CVE-2019-19956
    https://access.redhat.com/security/cve/CVE-2019-20386
    https://access.redhat.com/security/cve/CVE-2019-20388
    https://access.redhat.com/security/cve/CVE-2020-5313
    https://access.redhat.com/security/cve/CVE-2020-6829
    https://access.redhat.com/security/cve/CVE-2020-7595
    https://access.redhat.com/security/cve/CVE-2020-12243
    https://access.redhat.com/security/cve/CVE-2020-12400
    https://access.redhat.com/security/cve/CVE-2020-12401
    https://access.redhat.com/security/cve/CVE-2020-12402
    https://access.redhat.com/security/cve/CVE-2020-12403
    https://access.redhat.com/security/cve/CVE-2020-14365
    https://access.redhat.com/security/updates/classification/#moderate
    
    6. Contact:
    
    The Red Hat security contact is . More contact
    details at https://access.redhat.com/security/team/contact/
    
    Copyright 2020 Red Hat, Inc.
    -----BEGIN PGP SIGNATURE-----
    Version: GnuPG v1
    
    iQIVAwUBX4b3jtzjgjWX9erEAQjRtA/+NuWhg8wJyyX3K9r+pNveW/nQ5035IIJ0
    T9qelqFlkxoGgUQE2bL+a58naneN4iyfnadC/eFL/39AJRF5jfiuctGZngY5Tyva
    2aboBMg6P+zHW30YPBJrXiPAVyD46+N5/xGqaiY6G1w2NseBGrCmojfi4towIy+6
    HOlaQE6vrb3DGnT4Yda14qqjvZm0mrZKii7+wQWYLkQYYbbEiTQ9LlNl9u4Gor9K
    SO4C1l1Y+H1DUMYOlr7liImnIVhIB7jMrZYAbQCSyOTYRw62S2Zu1LJ+6IVzyOlx
    6SU2xNT0d22iW0cMpcdzAAdwBhZqshxSp39MBdoVkvQyIemUsxfIp1V93u4n8mPB
    qHnEV27f1D1UeTIxiyMvDIaJPAdt2ptYMmR9QT31fxNZBwjGoNNqF2CtqlHQ2zpU
    CnMsxTZAGnGyINE80Gye/kXixIoMilVQ9UPuMEX4UgIh+hY36HwmwkbqeRciB3L7
    UoZt++XFPFStHrv7VI/69tjwkQ660Y81CQC8j3ny/AL1U4Fkgn8x2FoaqaRBlr+C
    OLn1IWZTvcwvJhHV6N1CIsK3kkwNmpIvTbxFY16jB9JPHkvJd8PA/JjG9ODgPzHq
    jh+M6jbrYBw4d43eiBIwAVR8gLG0Fa57eX5uEGHUtTiVeF26xE+QvHhH58nYuCce
    k2HRS+OVADU=
    =MG4c
    -----END PGP SIGNATURE-----
    
    --
    RHSA-announce mailing list
    This email address is being protected from spambots. You need JavaScript enabled to view it.
    https://www.redhat.com/mailman/listinfo/rhsa-announce
    

    Advisories

    LinuxSecurity Poll

    Which statement best describes how you feel about the recent Linux 5.9 release?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 2 answer(s).
    /main-polls/40-what-change-are-you-most-excited-about-in-linux-5-9?task=poll.vote&format=json
    40
    radio
    [{"id":"140","title":"Not a game-changer for me.","votes":"1","type":"x","order":"1","pct":16.67,"resources":[]},{"id":"141","title":"I'm happy with the performance improvements it offers.","votes":"5","type":"x","order":"2","pct":83.33,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350


    VIEW MORE POLLS

    bottom 200

    Please enable / Bitte aktiviere JavaScript!
    Veuillez activer / Por favor activa el Javascript![ ? ]

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.