- Vulnerability/
- RHSA-2021:1343
RHSA-2021:1343: Moderate: Ansible security update (2.9.20)
First published: Thu Apr 22 2021(Updated: )
Ansible is a simple model-driven configuration management, multi-node<br>deployment, and remote-task execution system. Ansible works over SSH and<br>does not require any software or daemons to be installed on remote nodes.<br>Extension modules can be written in any language and are transferred to<br>managed machines automatically.<br>The following packages have been upgraded to a newer upstream version:<br>ansible (2.9.20)<br>Bug Fix(es):<br><li> CVE-2021-3447 ansible: multiple modules expose secured values</li> See:<br><a href="https://github.com/ansible/ansible/blob/v2.9.20/changelogs/CHANGELOG-v2.9.rst" target="_blank">https://github.com/ansible/ansible/blob/v2.9.20/changelogs/CHANGELOG-v2.9.rst</a> for details on bug fixes in this release.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/ansible | <2.9.20-1.el8ae | 2.9.20-1.el8ae |
| redhat/ansible | <2.9.20-1.el8ae | 2.9.20-1.el8ae |
| redhat/ansible-test | <2.9.20-1.el8ae | 2.9.20-1.el8ae |
| redhat/ansible | <2.9.20-1.el7ae | 2.9.20-1.el7ae |
| redhat/ansible | <2.9.20-1.el7ae | 2.9.20-1.el7ae |
| redhat/ansible-test | <2.9.20-1.el7ae | 2.9.20-1.el7ae |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/remedy
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/title
- agent/type
- collector/redhat-errata
- source/Red Hat
- anchor-id/RHSA-2021:1343
- agent/software-canonical-lookup
- package-manager/redhat