Security
Headlines
HeadlinesLatestCVEs

Headline

RHBA-2021:3472: Red Hat Bug Fix Advisory: Red Hat Ansible Tower 3.8.4-1 - Container

Red Hat Ansible Tower 3.8.4-1 - Container* Running inventories of ~60k hosts no longer takes a very long time for events to show up

  • Removed artifact_data from data sent to analytics as part of playbook_on_stats, since artifact_data can contain PII or sensitive data
  • Regular users are no longer experiencing longer load times than a superuser when clicking to edit a job template
  • Updated password validation support to allow modifying password complexity requirements using some Django configurations
  • Fixed AWS inventory tags filtering to support the OR condition
  • Updated Ansible version to 2.9.25
  • Updated Django version to 2.2.20
  • Fixed Tower’s NGINX Instance vulnerability (CVE-2021-23017) Related CVEs:
  • CVE-2021-23017: nginx: Off-by-one in ngx_resolver_copy() when labels are followed by a pointer to a root domain name
  • CVE-2021-31535: libX11: missing request length checks
  • CVE-2021-32027: postgresql: Buffer overrun from integer overflow in array subscripting calculations
  • CVE-2021-32028: postgresql: Memory disclosure in INSERT … ON CONFLICT … DO UPDATE
Red Hat Security Data
Open in Source
#sql#vulnerability#red_hat

Red Hat Security Data: Latest News

RHSA-2023:5627: Red Hat Security Advisory: kernel security, bug fix, and enhancement update
Red Hat Security Data