FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

ansible -- information disclosure flaw

Affected packages
ansible <= 2.2.3

Details

VuXML ID 478d4102-2319-4026-b3b2-a57c48f159ac
Discovery 2017-07-21
Entry 2017-09-25

ansible developers report:

Ansible versions 2.2.3 and earlier are vulnerable to an information disclosure flaw due to the interaction of call back plugins and the no_log directive where the information may not be sanitized properly.

[source]

References

CVE Name CVE-2017-7473
URL https://github.com/ansible/ansible/issues/22505

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.