Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update
Red Hat Ansible Automation Platform 2. 5 for RHEL 8 and 9 contains multiple security vulnerabilities including HTTP request/response smuggling, denial of service via algorithmic complexity in XML deserialization, zip bomb attacks, improper handling of highly compressed data, and excessive resource consumption during certificate validation. These issues affect components such as automation-controller, python3. 11-django, python3. 11-urllib3, and receptor. Red Hat has released updates addressing these vulnerabilities in various packages including ansible-core, automation-controller, python3. 11-django, python3. 11-urllib3, and receptor. The advisory rates the security impact as Important and the severity as high. No known exploits in the wild have been reported.
AI Analysis
Technical Summary
This advisory covers multiple vulnerabilities in Red Hat Ansible Automation Platform 2.5 and related components. Key issues include CVE-2025-53643, an HTTP request/response smuggling vulnerability in AIOHTTP within automation-controller; CVE-2025-64460, an algorithmic complexity vulnerability in Django's XML deserializer causing denial of service; CVE-2025-69223, a zip bomb vulnerability in AIOHTTP's HTTP parser auto_decompress feature; CVE-2025-66471, improper handling of highly compressed data in urllib3's streaming API; and CVE-2025-61729, excessive resource consumption in receptor during certificate validation. Red Hat has released updated packages that fix these vulnerabilities, including ansible-core 2.16.15, automation-controller 4.6.25, python3.11-django 4.2.27, python3.11-urllib3 2.6.3, and receptor 1.6.3. The advisory applies to multiple architectures and RHEL 8 and 9 versions of the platform. The vendor rates the update as Important with a high severity level.
Potential Impact
Successful exploitation of these vulnerabilities could lead to denial of service conditions via resource exhaustion or algorithmic complexity attacks, HTTP request/response smuggling potentially allowing manipulation of HTTP traffic, and excessive resource consumption during certificate validation. These impacts could disrupt automation workflows and services managed by the Ansible Automation Platform. No known active exploits have been reported, but the vulnerabilities pose a risk to availability and integrity of automation operations.
Mitigation Recommendations
Red Hat has released official fixes for all listed vulnerabilities in updated packages for Red Hat Ansible Automation Platform 2.5 and related components. Users should apply the updates as provided in the advisory (e.g., ansible-core 2.16.15, automation-controller 4.6.25, python3.11-django 4.2.27, python3.11-urllib3 2.6.3, receptor 1.6.3) to remediate these issues. The vendor advisory is the authoritative source for patch availability and remediation instructions. No additional mitigation steps are indicated beyond applying these updates.
Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update
Description
Red Hat Ansible Automation Platform 2. 5 for RHEL 8 and 9 contains multiple security vulnerabilities including HTTP request/response smuggling, denial of service via algorithmic complexity in XML deserialization, zip bomb attacks, improper handling of highly compressed data, and excessive resource consumption during certificate validation. These issues affect components such as automation-controller, python3. 11-django, python3. 11-urllib3, and receptor. Red Hat has released updates addressing these vulnerabilities in various packages including ansible-core, automation-controller, python3. 11-django, python3. 11-urllib3, and receptor. The advisory rates the security impact as Important and the severity as high. No known exploits in the wild have been reported.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This advisory covers multiple vulnerabilities in Red Hat Ansible Automation Platform 2.5 and related components. Key issues include CVE-2025-53643, an HTTP request/response smuggling vulnerability in AIOHTTP within automation-controller; CVE-2025-64460, an algorithmic complexity vulnerability in Django's XML deserializer causing denial of service; CVE-2025-69223, a zip bomb vulnerability in AIOHTTP's HTTP parser auto_decompress feature; CVE-2025-66471, improper handling of highly compressed data in urllib3's streaming API; and CVE-2025-61729, excessive resource consumption in receptor during certificate validation. Red Hat has released updated packages that fix these vulnerabilities, including ansible-core 2.16.15, automation-controller 4.6.25, python3.11-django 4.2.27, python3.11-urllib3 2.6.3, and receptor 1.6.3. The advisory applies to multiple architectures and RHEL 8 and 9 versions of the platform. The vendor rates the update as Important with a high severity level.
Potential Impact
Successful exploitation of these vulnerabilities could lead to denial of service conditions via resource exhaustion or algorithmic complexity attacks, HTTP request/response smuggling potentially allowing manipulation of HTTP traffic, and excessive resource consumption during certificate validation. These impacts could disrupt automation workflows and services managed by the Ansible Automation Platform. No known active exploits have been reported, but the vulnerabilities pose a risk to availability and integrity of automation operations.
Mitigation Recommendations
Red Hat has released official fixes for all listed vulnerabilities in updated packages for Red Hat Ansible Automation Platform 2.5 and related components. Users should apply the updates as provided in the advisory (e.g., ansible-core 2.16.15, automation-controller 4.6.25, python3.11-django 4.2.27, python3.11-urllib3 2.6.3, receptor 1.6.3) to remediate these issues. The vendor advisory is the authoritative source for patch availability and remediation instructions. No additional mitigation steps are indicated beyond applying these updates.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2026:1506
- Cve Count
- 5
- Additional Cves
- ["CVE-2025-61729","CVE-2025-64460","CVE-2025-66471","CVE-2025-69223"]
- Cvss Version
- null
Threat ID: 6a16096ae29bf47b5062f61b
Added to database: 5/26/2026, 8:58:18 PM
Last enriched: 5/27/2026, 1:35:02 AM
Last updated: 5/27/2026, 4:52:55 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.