Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2017-7481

Ansible before versions 2.3.1.0 and 2.4.0.0 fails to properly mark lookup-plugin results as unsafe. If an attacker could control the results of lookup() calls, they could inject Unicode strings to be parsed by the jinja2 templating system, resulting in code execution. By default, the jinja2 templating language is now marked as 'unsafe' and is not evaluated.

Related bugs and status

CVE-2017-7481 (Candidate) is related to these bugs:

Bug #1699539: Ansible prior 2.2.3 is vulnerable with CVE-2017-7466, CVE-2017-7473, CVE-2017-7481

Summary				In	Importance	Status
	1699539	Ansible prior 2.2.3 is vulnerable with CVE-2017-7466, CVE-2017-7473, CVE-2017-7481		OpenStack-Ansible	Undecided	Invalid

See the

CVE page on Mitre.org for more details.

References

CONFIRM: https://bugzilla.redha...
CONFIRM: https://github.com/ans...
REDHAT: RHSA-2017:1244
REDHAT: RHSA-2017:1334
REDHAT: RHSA-2017:1476
REDHAT: RHSA-2017:1499
REDHAT: RHSA-2017:1599
REDHAT: RHSA-2017:2524
BID: 98492
UBUNTU: USN-4072-1
MLIST: [debian-lts-announce] ...