RHSA-2018:1075

Vulnerability from csaf_redhat - Published: 2018-04-10 09:51 - Updated: 2025-11-21 18:04
Summary
Red Hat Security Advisory: Ansible in the Extras channel - deprecation notice

Notes

Topic
Ansible and its dependencies have been deprecated in the Red Hat Enterprise Linux 7 Extras channel.
Details
Ansible and its dependencies will no longer be updated through the Extras channel. Instead, the Red Hat Ansible Engine product has been made available to Red Hat Enterprise Linux subscriptions and will provide access to the official Ansible Engine channel. Customers who have previously installed Ansible and its dependencies from the Extras channel are advised to enable and update from the Ansible Engine channel, or uninstall the packages as future errata will not be provided from the Extras channel. Ansible was previously provided in Extras (for AMD64 and Intel 64 architectures, and IBM POWER, little endian) as a runtime dependency of, and limited in support to, the Red Hat Enterprise Linux (RHEL) System Roles. Ansible Engine is available today for AMD64 and Intel 64 architectures, with IBM POWER, little endian availability coming soon. Note that Ansible in the Extras channel was not a part of the Red Hat Enterprise Linux FIPS validation process. The following packages have been deprecated from the Extras channel: * ansible * ansible-doc * libtomcrypt * libtommath * libtommath-devel * python2-crypto * python2-jmespath * python-httplib2 * python-paramiko * python-paramiko-doc * python-passlib * sshpass (BZ#1533106) Additional information and guidance are provided in the Knowledgebase article "Ansible deprecated in the Extras channel" linked from the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
To clipboard 

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Low"
    },
    "category": "csaf_informational_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Ansible and its dependencies have been deprecated in the Red Hat Enterprise Linux 7 Extras channel.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Ansible and its dependencies will no longer be updated through the Extras channel. Instead, the Red Hat Ansible Engine product has been made available to Red Hat Enterprise Linux subscriptions and will provide access to the official Ansible Engine channel. Customers who have previously installed Ansible and its dependencies from the Extras channel are advised to enable and update from the Ansible Engine channel, or uninstall the packages as future errata will not be provided from the Extras channel.\n\nAnsible was previously provided in Extras (for AMD64 and Intel 64 architectures, and IBM POWER, little endian) as a runtime dependency of, and limited in support to, the Red Hat Enterprise Linux (RHEL) System Roles. Ansible Engine is available today for AMD64 and Intel 64 architectures, with IBM POWER, little endian availability coming soon.\n\nNote that Ansible in the Extras channel was not a part of the Red Hat Enterprise Linux FIPS validation process.\n\nThe following packages have been deprecated from the Extras channel:\n\n* ansible\n* ansible-doc\n* libtomcrypt\n* libtommath\n* libtommath-devel\n* python2-crypto\n* python2-jmespath\n* python-httplib2\n* python-paramiko\n* python-paramiko-doc\n* python-passlib\n* sshpass\n\n(BZ#1533106)\n\nAdditional information and guidance are provided in the Knowledgebase article \"Ansible deprecated in the Extras channel\" linked from the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2018:1075",
        "url": "https://access.redhat.com/errata/RHSA-2018:1075"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#low",
        "url": "https://access.redhat.com/security/updates/classification/#low"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/articles/3359651",
        "url": "https://access.redhat.com/articles/3359651"
      },
      {
        "category": "external",
        "summary": "1533106",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1533106"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_1075.json"
      }
    ],
    "title": "Red Hat Security Advisory: Ansible in the Extras channel - deprecation notice",
    "tracking": {
      "current_release_date": "2025-11-21T18:04:18+00:00",
      "generator": {
        "date": "2025-11-21T18:04:18+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2018:1075",
      "initial_release_date": "2018-04-10T09:51:50+00:00",
      "revision_history": [
        {
          "date": "2018-04-10T09:51:50+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2018-04-10T09:51:50+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T18:04:18+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux 7 Extras",
                "product": {
                  "name": "Red Hat Enterprise Linux 7 Extras",
                  "product_id": "Red Hat Enterprise Linux 7 Extras",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_extras_other:7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux Extras"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.