| Description: |
This update for ansible provides version 2.2.3.0 and fixes the following security issues:
- CVE-2017-7481: Data for lookup plugins used as variables was not being marked as 'unsafe' and could lead to unintentional disclosure of information. (bsc#1038785) - CVE-2016-9587: Prevent compromised host to execute commands on the controller (bsc#1019021). - CVE-2017-7466: Prevent arbitrary code execution on control nodes.
For more information about the upstream bugs fixed, please see /usr/share/doc/packages/ansible/CHANGELOG.md
Additionally, monasca-installer received several compatibility fixes for ansible.
|