CVE-2013-2233
7.4HIGHAnsible before 1.2.1 makes it easier for remote attackers to conduct man-in-the-middle attacks by leveraging failure to cache SSH host keys.
Publicado: 5/4/2018Actualizado: 11/21/2024
Descripción
Ansible before 1.2.1 makes it easier for remote attackers to conduct man-in-the-middle attacks by leveraging failure to cache SSH host keys.
Análisis IAImpulsado por IA
Productos Afectados
redhatansible
Referencias
- http://www.openwall.com/lists/oss-security/2013/07/01/2Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2013/07/02/6Mailing ListThird Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=980821Issue Tracking
- https://github.com/ansible/ansible/issues/857Issue TrackingThird Party Advisory
- https://www.ansible.com/securityVendor Advisory
- http://www.openwall.com/lists/oss-security/2013/07/01/2Mailing ListThird Party Advisory
- http://www.openwall.com/lists/oss-security/2013/07/02/6Mailing ListThird Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=980821Issue Tracking
- https://github.com/ansible/ansible/issues/857Issue TrackingThird Party Advisory
- https://www.ansible.com/securityVendor Advisory