[Git][security-tracker-team/security-tracker][master] Add CVE-2020-10709/ansible-awx, itp'ed

Salvatore Bonaccorso carnil at debian.org
Fri Apr 17 22:01:40 BST 2020



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d605f5c9 by Salvatore Bonaccorso at 2020-04-17T23:00:08+02:00
Add CVE-2020-10709/ansible-awx, itp'ed

As AWX is the upstream project of Ansible Tower from Red Hat it might be
possible that actually all of the current NFUs for Apache Tower would
need to be reassigned/associated with ansible-awx as well.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3410,6 +3410,9 @@ CVE-2020-10710
 	RESERVED
 CVE-2020-10709
 	RESERVED
+	- ansible-awx <itp> (bug #908763)
+	NOTE: https://github.com/ansible/awx/issues/6630
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1824033
 CVE-2020-10708 [race condition in kernel/audit.c may allow low privilege users trigger kernel panic]
 	RESERVED
 	- linux <undetermined>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d605f5c9ede339e1673e693ae974c3385f26ac6e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d605f5c9ede339e1673e693ae974c3385f26ac6e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200417/50cb80e9/attachment.html>


More information about the debian-security-tracker-commits mailing list