Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2013-2233 CVE-2013-4259

Source

Debian Bug report logs - #714822
ansible: CVE-2013-2233

Package: ansible; Maintainer for ansible is Harlan Lieberman-Berg <hlieberman@debian.org>; Source for ansible is src:ansible (PTS, buildd, popcon).

Reported by: Moritz Muehlenhoff <jmm@inutil.org>

Date: Wed, 3 Jul 2013 07:00:02 UTC

Severity: grave

Tags: security

Fixed in version ansible/1.3.4+dfsg-1

Done: Michael Vogt <mvo@debian.org>

Bug is archived. No further changes may be made.

Toggle useless messages

View this report as an mbox folder, status mbox, maintainer mbox

Report forwarded to debian-bugs-dist@lists.debian.org, team@security.debian.org, secure-testing-team@lists.alioth.debian.org, Janos Guljas <janos@debian.org>:
Bug#714822; Package ansible. (Wed, 03 Jul 2013 07:00:06 GMT) (full text, mbox, link).

Acknowledgement sent to Moritz Muehlenhoff <jmm@inutil.org>:
New Bug report received and forwarded. Copy sent to team@security.debian.org, secure-testing-team@lists.alioth.debian.org, Janos Guljas <janos@debian.org>. (Wed, 03 Jul 2013 07:00:06 GMT) (full text, mbox, link).

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

Package: ansible
Severity: grave
Tags: security

Hi,
this was assigned CVE-2013-2233:
https://github.com/ansible/ansible/issues/857

Cheers,
        Moritz

Information forwarded to debian-bugs-dist@lists.debian.org, Janos Guljas <janos@debian.org>:
Bug#714822; Package ansible. (Sat, 10 Aug 2013 09:57:04 GMT) (full text, mbox, link).

Acknowledgement sent to Salvatore Bonaccorso <carnil@debian.org>:
Extra info received and forwarded to list. Copy sent to Janos Guljas <janos@debian.org>. (Sat, 10 Aug 2013 09:57:04 GMT) (full text, mbox, link).

Message #10 received at 714822@bugs.debian.org (full text, mbox, reply):

On Wed, Jul 03, 2013 at 08:53:34AM +0200, Moritz Muehlenhoff wrote:
> Package: ansible
> Severity: grave
> Tags: security
> 
> Hi,
> this was assigned CVE-2013-2233:
> https://github.com/ansible/ansible/issues/857

Upstream new version 1.2.1 should address this issue. Janos, can you
package the new version?

Regards,
Salvatore

Reply sent to Michael Vogt <mvo@debian.org>:
You have taken responsibility. (Fri, 01 Nov 2013 09:21:05 GMT) (full text, mbox, link).

Notification sent to Moritz Muehlenhoff <jmm@inutil.org>:
Bug acknowledged by developer. (Fri, 01 Nov 2013 09:21:05 GMT) (full text, mbox, link).

Message #15 received at 714822-close@bugs.debian.org (full text, mbox, reply):

Source: ansible
Source-Version: 1.3.4+dfsg-1

We believe that the bug you reported is fixed in the latest version of
ansible, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 714822@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Michael Vogt <mvo@debian.org> (supplier of updated ansible package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Fri, 01 Nov 2013 09:40:59 +0100
Source: ansible
Binary: ansible ansible-fireball ansible-node-fireball ansible-doc
Architecture: source all
Version: 1.3.4+dfsg-1
Distribution: unstable
Urgency: low
Maintainer: Janos Guljas <janos@debian.org>
Changed-By: Michael Vogt <mvo@debian.org>
Description: 
 ansible    - Configuration management, deployment, and task execution system
 ansible-doc - Ansible documentation and examples
 ansible-fireball - Ansible fireball transport support
 ansible-node-fireball - Ansible fireball transport support for nodes
Closes: 714822 717777 721766
Changes: 
 ansible (1.3.4+dfsg-1) unstable; urgency=low
 .
   [ Harlan Lieberman-Berg ]
   * New upstream release (Closes: #717777).
     Fixes CVE-2013-2233 (Closes: #714822).
     Fixes CVE-2013-4259 (Closes: #721766).
   * Drop fix-ansible-cfg patch.
   * Change docsite generation to not expect docs as part of a wordpress install.
   * Add trivial patch to fix lintian error with rpm-key script.
   * Add patch header information to fix-html-makefile.
 .
   [ Michael Vogt ]
   * add myself to uploader
   * build/ship the module manpages for ansible in the ansible package
Checksums-Sha1: 
 466a710c5d930e2422dc1cbc1add59cdec684cbe 1423 ansible_1.3.4+dfsg-1.dsc
 c906aa9399b04f83f79809ebb5ee037ab4379d1e 848702 ansible_1.3.4+dfsg.orig.tar.gz
 43675329ead9e082b1b1277586e1b55c65ffb96b 93463 ansible_1.3.4+dfsg-1.debian.tar.gz
 c99ca7fcc0bbf4bc8e50876cbd1173d62eaf44f8 429850 ansible_1.3.4+dfsg-1_all.deb
 2e020dbd363f4d8c6b503888104bf776d843871a 24220 ansible-fireball_1.3.4+dfsg-1_all.deb
 3b4b72f15fe944f6a69697809ae21ad717071044 24190 ansible-node-fireball_1.3.4+dfsg-1_all.deb
 1902070ff6e84fccc8480a371dbabe37e35acef3 295736 ansible-doc_1.3.4+dfsg-1_all.deb
Checksums-Sha256: 
 706d1756000bb18b7835f4a565d6e0ff87271338cf83db0c0b31bd6a7b98ed1e 1423 ansible_1.3.4+dfsg-1.dsc
 03116b952a37211411afd3d7c77e8b1a663967fcb27d2b468fb55609951638ef 848702 ansible_1.3.4+dfsg.orig.tar.gz
 76c644d6d0086208177c20498f1f12f6d22a135b4906d318c0e61bcabb0db1a6 93463 ansible_1.3.4+dfsg-1.debian.tar.gz
 43f82763cbef7e423850689f5a5739a33b06137f07a915f6d85c72b0ee54db61 429850 ansible_1.3.4+dfsg-1_all.deb
 7e9737ad1297cb0915ec3cb4eb60e9887852e8a3a92ba92211350db7a920db5c 24220 ansible-fireball_1.3.4+dfsg-1_all.deb
 f177c3c94538cd4136e3225e873971d212bcc9413940d8c95e2b24e0df19e433 24190 ansible-node-fireball_1.3.4+dfsg-1_all.deb
 31cf05d76d70dd2cb60c67fbdb0138671c89a5d7ddfc11cee6bd533433159356 295736 ansible-doc_1.3.4+dfsg-1_all.deb
Files: 
 2ff26c8bf35050beb1fc3c0ff231cb1a 1423 admin optional ansible_1.3.4+dfsg-1.dsc
 25b7aab78e103faba65fea0fb8cd643d 848702 admin optional ansible_1.3.4+dfsg.orig.tar.gz
 05e8ed18e532decd9d179aa25d6d0e2c 93463 admin optional ansible_1.3.4+dfsg-1.debian.tar.gz
 8039fc3a18850ee7ac40db0a54966285 429850 admin optional ansible_1.3.4+dfsg-1_all.deb
 280b867deb6a41e6bebd45fc96f8a292 24220 admin optional ansible-fireball_1.3.4+dfsg-1_all.deb
 d87c1765c1f1b62777ca260e2a97d99f 24190 admin optional ansible-node-fireball_1.3.4+dfsg-1_all.deb
 8d76a0144d6c34c96980c0ae12e2604e 295736 doc optional ansible-doc_1.3.4+dfsg-1_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.15 (GNU/Linux)

iEYEARECAAYFAlJza1QACgkQliSD4VZixzRvcgCfW9/QAy4DGniwxZl5xCkRmPl/
7OEAoIipmJO9+wX2GwttpBOelm2giS20
=j5UO
-----END PGP SIGNATURE-----

Bug archived. Request was from Debbugs Internal Request <owner@bugs.debian.org> to internal_control@bugs.debian.org. (Tue, 10 Dec 2013 07:26:31 GMT) (full text, mbox, link).

Send a report that this bug log contains spam.

Debian bug tracking system administrator <owner@bugs.debian.org>. Last modified: Wed Jun 19 14:41:56 2019; Machine Name: buxtehude

Debian Bug tracking system

Debbugs is free software and licensed under the terms of the GNU Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

ansible: CVE-2013-2233

Debian Bug report logs - #714822
ansible: CVE-2013-2233

Vulmon Search

About

Products

Connect

ansible: CVE-2013-2233

Debian Bug report logs - #714822 ansible: CVE-2013-2233

Vulmon Search

About

Products

Connect

Debian Bug report logs - #714822
ansible: CVE-2013-2233