Fedora 26: cloud-init Security Update
Summary
Cloud-init is a set of init scripts for cloud instances. Cloud instances
need special scripts to run during initialization to retrieve and install
ssh keys and to let the user run various scripts.
Update Information:
This update fixes several issues with systemd service ordering and network configuration. It also backports a fix for a [security issue](https://bugs.launchpad.net/cloud-init/+bug/1638312) in which instances run in EC2 write IAM instance profile credentials to disk. To work around the security issue without updating cloud-init, wait at least six hours between creating a bundle or an EBS snapshot and registering that as a machine image.
Change Log
References
[ 1 ] Bug #1400249 - Wrong systemd unit in cloud-init https://bugzilla.redhat.com/show_bug.cgi?id=1400249 [ 2 ] Bug #1430511 - cloud init doesn't setup ssh keys for access https://bugzilla.redhat.com/show_bug.cgi?id=1430511 [ 3 ] Bug #1428492 - Cloud-init is starting before multi-user.target still https://bugzilla.redhat.com/show_bug.cgi?id=1428492 [ 4 ] Bug #1389530 - sysconfig.py fails to configure network https://bugzilla.redhat.com/show_bug.cgi?id=1389530
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade cloud-init' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html