What is the severity of RHBA-2021:3472?

The severity of RHBA-2021:3472 is classified as moderate.

What issues does RHBA-2021:3472 address?

RHBA-2021:3472 addresses performance improvements for inventory processing and data privacy concerns related to sensitive data.

How do I fix RHBA-2021:3472?

To fix RHBA-2021:3472, apply the relevant updates provided in the advisory from Red Hat.

Are any specific software versions affected by RHBA-2021:3472?

RHBA-2021:3472 affects specific versions of Red Hat software; refer to the advisory for detailed information.

Is user data at risk with RHBA-2021:3472?

Yes, this vulnerability was addressed to mitigate the risk of PII or sensitive data being sent to analytics.

Vulnerability/
RHBA-2021:3472

8/9/2021

RHBA-2021:3472: Red Hat Ansible Tower 3.8.4-1 - Container

First published: Wed Sep 08 2021(Updated: )

<li> Running inventories of ~60k hosts no longer takes a very long time for events to show up</li> <li> Removed ``artifact_data`` from data sent to analytics as part of ``playbook_on_stats``, since ``artifact_data`` can contain PII or sensitive data</li> <li> Regular users are no longer experiencing longer load times than a superuser when clicking to edit a job template</li> <li> Updated password validation support to allow modifying password complexity requirements using some Django configurations</li> <li> Fixed AWS inventory tags filtering to support the ``OR`` condition</li> <li> Updated Ansible version to 2.9.25</li> <li> Updated Django version to 2.2.20</li> <li> Fixed Tower's NGINX Instance vulnerability (CVE-2021-23017)</li>

Affected Software	Affected Version	How to fix
Red Hat Ansible
Ansible
Django

Never miss a vulnerability like this again

Reference Links

https://access.redhat.com/errata/RHBA-2021:3472 (Advisory)

Frequently Asked Questions

What is the severity of RHBA-2021:3472?
The severity of RHBA-2021:3472 is classified as moderate.
What issues does RHBA-2021:3472 address?
RHBA-2021:3472 addresses performance improvements for inventory processing and data privacy concerns related to sensitive data.
How do I fix RHBA-2021:3472?
To fix RHBA-2021:3472, apply the relevant updates provided in the advisory from Red Hat.
Are any specific software versions affected by RHBA-2021:3472?
RHBA-2021:3472 affects specific versions of Red Hat software; refer to the advisory for detailed information.
Is user data at risk with RHBA-2021:3472?
Yes, this vulnerability was addressed to mitigate the risk of PII or sensitive data being sent to analytics.

collector/redhat-errata
anchor-id/RHBA-2021:3472
agent/severity
agent/type
agent/event
agent/first-publish-date
agent/last-modified-date
agent/remedy
agent/title
agent/references
agent/description
agent/softwarecombine
agent/tags
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/red hat
canonical/red hat ansible
vendor/ansible
canonical/ansible
vendor/django
canonical/django

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.