VulnerableCode Package Details - pkg:alpm/archlinux/ansible@2.2.0.0-1

Search for packages

Package details: pkg:alpm/archlinux/ansible@2.2.0.0-1

Essentials
History (3)

purl	pkg:alpm/archlinux/ansible@2.2.0.0-1

Next non-vulnerable version	2.2.1.0rc5-3
Latest non-vulnerable version	2.10.7-1
Risk	10.0

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-scu2-mz1c-aaan Aliases: CVE-2016-9587 GHSA-m956-frf4-m2wr PYSEC-2018-39	Ansible before versions 2.1.4, 2.2.1 is vulnerable to an improper input validation in Ansible's handling of data sent from client systems. An attacker with control over a client system being managed by Ansible and the ability to send facts back to the Ansible server could use this flaw to execute arbitrary code on the Ansible server using the Ansible server privileges.	2.2.1.0rc5-3 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:46:16.098971+00:00	Arch Linux Importer	Affected by	VCID-scu2-mz1c-aaan	https://security.archlinux.org/AVG-137	36.0.0
2024-09-18T02:01:27.227229+00:00	Arch Linux Importer	Affected by	VCID-scu2-mz1c-aaan	https://security.archlinux.org/AVG-137	34.0.1
2024-01-03T22:27:36.934250+00:00	Arch Linux Importer	Affected by	VCID-scu2-mz1c-aaan	https://security.archlinux.org/AVG-137	34.0.0rc1