[Git][security-tracker-team/security-tracker][master] Add CVE-2020-10685/ansible

Salvatore Bonaccorso carnil at debian.org
Tue Mar 24 06:43:00 GMT 2020



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
48b6b021 by Salvatore Bonaccorso at 2020-03-24T07:42:04+01:00
Add CVE-2020-10685/ansible

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -603,8 +603,10 @@ CVE-2020-10687
 	RESERVED
 CVE-2020-10686
 	RESERVED
-CVE-2020-10685
+CVE-2020-10685 [modules which use files encrypted with vault are not properly cleaned up]
 	RESERVED
+	- ansible <unfixed>
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1814627
 CVE-2020-10684 [code injection when using ansible_facts as a subkey]
 	RESERVED
 	- ansible <unfixed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48b6b021e2570d8f5bf88e0a9357e2d78e364f3a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48b6b021e2570d8f5bf88e0a9357e2d78e364f3a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200324/c99a22a3/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list