Описание
The chroot, jail, and zone connection plugins in ansible before 1.9.2 allow local users to escape a restricted environment via a symlink attack.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat OpenShift Enterprise 3 | ansible | Not affected | ||
| Red Hat OpenStack Platform 10 (Newton) | ansible | Not affected | ||
| Red Hat Quickstart Cloud Installer 1 | ansible | Not affected | ||
| Red Hat Storage 3.0 | ansible | Not affected | ||
| Red Hat Storage Console 2 | ansible | Not affected |
Показывать по
10
Дополнительная информация
Статус:
Important
https://bugzilla.redhat.com/show_bug.cgi?id=1243468ansible: multiple issues fixed in 1.9.2
7.6 High
CVSS2
Связанные уязвимости
CVSS3: 7.8
ubuntu
больше 8 лет назад
The chroot, jail, and zone connection plugins in ansible before 1.9.2 allow local users to escape a restricted environment via a symlink attack.
CVSS3: 7.8
nvd
больше 8 лет назад
The chroot, jail, and zone connection plugins in ansible before 1.9.2 allow local users to escape a restricted environment via a symlink attack.
CVSS3: 7.8
debian
больше 8 лет назад
The chroot, jail, and zone connection plugins in ansible before 1.9.2 ...
7.6 High
CVSS2