{"id":"RHSA-2021:0781","summary":"Red Hat Security Advisory: Red Hat Ansible Automation Platform 1.2.2 security and bug fix update","modified":"2026-03-27T10:02:24Z","published":"2024-09-18T04:17:10Z","upstream":["CVE-2020-15366","CVE-2020-7789","CVE-2021-20270","CVE-2021-23980","CVE-2021-27291","CVE-2021-3281"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2021:0781"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1857977"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1906853"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1919969"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1922136"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0781.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-7789"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-7789"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-7789"},{"type":"ARTICLE","url":"https://snyk.io/vuln/SNYK-JS-NODENOTIFIER-1035794"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-15366"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-15366"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-15366"},{"type":"ARTICLE","url":"https://snyk.io/vuln/SNYK-JS-AJV-584908"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-3281"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-3281"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3281"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-20270"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-20270"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-20270"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-23980"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1925252"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-23980"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-23980"},{"type":"ARTICLE","url":"https://github.com/mozilla/bleach/security/advisories/GHSA-vv2x-vrpj-qqpq"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-27291"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1940603"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-27291"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-27291"}],"affected":[{"package":{"name":"automation-hub","ecosystem":"Red Hat:ansible_automation_platform:4.2::el7","purl":"pkg:rpm/redhat/automation-hub"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.2.2-1.el7pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python-bleach","ecosystem":"Red Hat:ansible_automation_platform:4.2::el7","purl":"pkg:rpm/redhat/python-bleach"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.0-1.el7pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python-bleach-allowlist","ecosystem":"Red Hat:ansible_automation_platform:4.2::el7","purl":"pkg:rpm/redhat/python-bleach-allowlist"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.3-1.el7pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python-galaxy-importer","ecosystem":"Red Hat:ansible_automation_platform:4.2::el7","purl":"pkg:rpm/redhat/python-galaxy-importer"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.2.15-1.el7pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python-galaxy-ng","ecosystem":"Red Hat:ansible_automation_platform:4.2::el7","purl":"pkg:rpm/redhat/python-galaxy-ng"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.2.2-1.el7pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python-pulp-ansible","ecosystem":"Red Hat:ansible_automation_platform:4.2::el7","purl":"pkg:rpm/redhat/python-pulp-ansible"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:0.5.6-1.el7pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python3-bleach","ecosystem":"Red Hat:ansible_automation_platform:4.2::el7","purl":"pkg:rpm/redhat/python3-bleach"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.0-1.el7pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python3-bleach-allowlist","ecosystem":"Red Hat:ansible_automation_platform:4.2::el7","purl":"pkg:rpm/redhat/python3-bleach-allowlist"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.3-1.el7pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python3-django","ecosystem":"Red Hat:ansible_automation_platform:4.2::el7","purl":"pkg:rpm/redhat/python3-django"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.2.18-1.el7pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python3-galaxy-importer","ecosystem":"Red Hat:ansible_automation_platform:4.2::el7","purl":"pkg:rpm/redhat/python3-galaxy-importer"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.2.15-1.el7pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python3-galaxy-ng","ecosystem":"Red Hat:ansible_automation_platform:4.2::el7","purl":"pkg:rpm/redhat/python3-galaxy-ng"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.2.2-1.el7pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python3-pulp-ansible","ecosystem":"Red Hat:ansible_automation_platform:4.2::el7","purl":"pkg:rpm/redhat/python3-pulp-ansible"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:0.5.6-1.el7pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"automation-hub","ecosystem":"Red Hat:ansible_automation_platform:4.2::el8","purl":"pkg:rpm/redhat/automation-hub"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.2.2-1.el8pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python-bleach","ecosystem":"Red Hat:ansible_automation_platform:4.2::el8","purl":"pkg:rpm/redhat/python-bleach"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.0-1.el8pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python-bleach-allowlist","ecosystem":"Red Hat:ansible_automation_platform:4.2::el8","purl":"pkg:rpm/redhat/python-bleach-allowlist"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.3-1.el8pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python-galaxy-importer","ecosystem":"Red Hat:ansible_automation_platform:4.2::el8","purl":"pkg:rpm/redhat/python-galaxy-importer"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.2.15-1.el8pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python-galaxy-ng","ecosystem":"Red Hat:ansible_automation_platform:4.2::el8","purl":"pkg:rpm/redhat/python-galaxy-ng"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.2.2-1.el8pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python-pulp-ansible","ecosystem":"Red Hat:ansible_automation_platform:4.2::el8","purl":"pkg:rpm/redhat/python-pulp-ansible"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:0.5.6-1.el8pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python3-bleach","ecosystem":"Red Hat:ansible_automation_platform:4.2::el8","purl":"pkg:rpm/redhat/python3-bleach"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.3.0-1.el8pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python3-bleach-allowlist","ecosystem":"Red Hat:ansible_automation_platform:4.2::el8","purl":"pkg:rpm/redhat/python3-bleach-allowlist"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.3-1.el8pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python3-django","ecosystem":"Red Hat:ansible_automation_platform:4.2::el8","purl":"pkg:rpm/redhat/python3-django"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.2.18-1.el8pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python3-galaxy-importer","ecosystem":"Red Hat:ansible_automation_platform:4.2::el8","purl":"pkg:rpm/redhat/python3-galaxy-importer"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.2.15-1.el8pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python3-galaxy-ng","ecosystem":"Red Hat:ansible_automation_platform:4.2::el8","purl":"pkg:rpm/redhat/python3-galaxy-ng"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.2.2-1.el8pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}},{"package":{"name":"python3-pulp-ansible","ecosystem":"Red Hat:ansible_automation_platform:4.2::el8","purl":"pkg:rpm/redhat/python3-pulp-ansible"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:0.5.6-1.el8pc"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0781.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}