Back to bug 1956464
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Tapas Jena | 2021-05-03 18:18:01 UTC | CC | security-response-team | |
| Guilherme de Almeida Suckevicz | 2021-05-03 18:35:58 UTC | Summary | EMBARGOED ansible: async_file sensitive information disclosure | EMBARGOED CVE-2021-3532 ansible: async_file sensitive information disclosure |
| Alias | CVE-2021-3532 | |||
| Guilherme de Almeida Suckevicz | 2021-05-03 18:36:23 UTC | Blocks | 1956478 | |
| Tapas Jena | 2021-05-10 16:50:20 UTC | CC | asherlan, dylan | |
| Tapas Jena | 2021-05-10 16:53:12 UTC | Group | security, qe_staff | |
| CC | a.badger, dbecker, jjoyce, jschluet, kevin, lhh, lpeer, maxim, mburns, patrick, sclewis, slinaber | |||
| Summary | EMBARGOED CVE-2021-3532 ansible: async_file sensitive information disclosure | CVE-2021-3532 ansible: async_file sensitive information disclosure | ||
| Tapas Jena | 2021-05-10 16:55:10 UTC | Depends On | 1959074, 1959079, 1959076, 1959075, 1959077 | |
| Tapas Jena | 2021-05-10 16:57:01 UTC | Depends On | 1959081, 1959083, 1959082 | |
| Tapas Jena | 2021-05-10 16:57:31 UTC | Depends On | 1959084, 1959086, 1959085 | |
| Gianluca Gabrielli | 2021-05-13 13:53:23 UTC | CC | tuxmealux+redhatbz | |
| Matěj Cepl | 2021-05-27 06:40:53 UTC | CC | mcepl | |
| Red Hat Bugzilla | 2021-06-22 00:26:15 UTC | CC | dbecker | |
| Red Hat Bugzilla | 2021-11-02 15:42:22 UTC | CC | dassa.asaf | |
| CC | razkiss98 | |||
| CC | razkiss98 | |||
| CC | notting | |||
| Red Hat Bugzilla | 2021-12-15 11:50:44 UTC | CC | cmeyers | |
| Red Hat Bugzilla | 2021-12-20 17:33:24 UTC | CC | sdoran | |
| Red Hat Bugzilla | 2022-04-23 04:26:01 UTC | CC | chousekn | |
| Jason Guiditta | 2022-05-10 17:24:11 UTC | CC | jguiditt | |
| Doc Type | --- | If docs needed, set a value | ||
| RaTasha Tillery-Smith | 2022-05-11 13:44:37 UTC | Doc Text | A flaw was found in Ansible where the secret information present in async_files are getting disclosed when the user changes the jobdir to a world readable directory. Any secret information in an async status file will be readable by a malicious user on that system. | A flaw was found in Ansible. Confidential information is disclosed in async_files when the user changes the jobdir to a world-readable directory. Any confidential information in an async status file will be readable by a malicious user on that system. |
| Red Hat Bugzilla | 2023-07-07 08:34:53 UTC | CC | security-response-team | |
| Assignee | security-response-team | nobody |
Back to bug 1956464