Fedora 24: 2017-c2129c77ca High: Ansible Arbitrary Code Execution

Ansible is a radically simple model-driven configuration management,

multi-node deployment, and remote task execution system. Ansible works

over SSH and does not require any software or daemons to be installed

on remote nodes. Extension modules can be written in any language and

are transferred to managed machines automatically.

Backport fix for https://github.com/ansible/ansible/issues/22572 ---- Many

bugfixes and improvements. See

https://github.com/ansible/ansible/blob/stable-2.3/CHANGELOG.md for full list of

changes. rst and html docs have been split out into a ansible-docs subpackage.

Includes fix for CVE-2017-7466

[ 1 ] Bug #1441355 - CVE-2017-7466 ansible: Arbitrary code execution on control node (incomplete fix for CVE-2016-9587) [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=1441355

su -c 'dnf upgrade ansible' at the command line.

For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org