ansible/community.general
1
0
Fork 0
mirror of https://github.com/ansible-collections/community.general.git synced 2024-09-14 20:13:21 +02:00
Code Releases Activity

snmp_facts: Hide user sensitive information in console (#1621) (#1623)

Browse source 
**SECURITY** - CVE-2021-20178

Hide user sensitive information like `privkey` and `authkey`
while logging in console.

Signed-off-by: Abhijeet Kasurde <akasurde@redhat.com>
(cherry picked from commit 3560aeb12f)

Co-authored-by: Abhijeet Kasurde <akasurde@redhat.com>
This commit is contained in:
patchback[bot] 2021-01-12 12:08:03 +01:00 committed by GitHub
parent a1429d0266
commit fa2d2d6971
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 4 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
changelogs/fragments/snmp_facts.yml Normal file
View file

@ -0,0 +1,2 @@
security_fixes:
- 'snmp_facts - **CVE-2021-20178** - hide user sensitive information such as ``privkey`` and ``authkey`` from logging into the console (https://github.com/ansible-collections/community.general/pull/1621).'

4
plugins/modules/net_tools/snmp_facts.py
View file

@ -269,8 +269,8 @@ def main():
level=dict(type='str', choices=['authNoPriv', 'authPriv']), level=dict(type='str', choices=['authNoPriv', 'authPriv']),
integrity=dict(type='str', choices=['md5', 'sha']), integrity=dict(type='str', choices=['md5', 'sha']),
privacy=dict(type='str', choices=['aes', 'des']), privacy=dict(type='str', choices=['aes', 'des']),
authkey=dict(type='str'), authkey=dict(type='str', no_log=True),
privkey=dict(type='str'), privkey=dict(type='str', no_log=True),
), ),
required_together=( required_together=(
['username', 'level', 'integrity', 'authkey'], ['username', 'level', 'integrity', 'authkey'],