ansible-core 2.16.14

Fix CVE-2024-11079 (Unsafe Tagging Bypass via hostvars Object in Ansible-Core)

Resolves: RHEL-69763
Resolves: RHEL-66996

Signed-off-by: Dimitri Savineau <dsavinea@redhat.com>

.gitignore

@@ -53,3 +53,5 @@
 /ansible-documentation-2.16.3.tar.gz
 /ansible-documentation-2.16.13.tar.gz
 /ansible_core-2.16.13.tar.gz
+/ansible_core-2.16.14.tar.gz
+/ansible-documentation-2.16.14.tar.gz

ansible-core.spec

@@ -16,7 +16,7 @@
 Name: ansible-core
 Summary: A radically simple IT automation system
 Epoch:   1
-Version: 2.16.13
+Version: 2.16.14
 Release: 1%{?dist}
 Group: Development/Libraries
 # The main license is GPLv3+. Many of the files in lib/ansible/module_utils
@@ -178,6 +178,11 @@ install -Dpm 0644 licenses/* -t %{buildroot}%{_pkglicensedir}
 %{python3_sitelib}/ansible_test
 
 %changelog
+* Mon Dec 02 2024 Dimitri Savineau <dsavinea@redhat.com> - 1:2.16.14-1
+- ansible-core 2.16.14 release (RHEL-69763)
+- Fix CVE-2024-11079 (Unsafe Tagging Bypass via hostvars Object in
+  Ansible-Core) (RHEL-66996)
+
 * Tue Nov 26 2024 Dimitri Savineau <dsavinea@redhat.com> - 1:2.16.13-1
 - ansible-core 2.16.13 release (RHEL-69036)
 - Add back ansible-test subpackage and drop doc subpackage

sources

@@ -1,2 +1,2 @@
-SHA512 (ansible_core-2.16.13.tar.gz) = 54435f9973137461887b5cc542ab92d520236bea3f6fb65cb4c785c2fc322612a6e8c65adb26f5027f8d521149f09d3271cd0d6c0af4d5724f256af15b7dd4c3
-SHA512 (ansible-documentation-2.16.13.tar.gz) = 2fe14706af4def874549b99de3e701ca00afa7cc0c6dc6adb6253872f338f2c54ec2325f3ea6322afcb48342bdb4d680825af50a02169799a6ae55640e9b9167
+SHA512 (ansible_core-2.16.14.tar.gz) = 246875815234112b9c4f7aa31d971f0c0017c9bc4195116741fb5db2e70c6d8feacc29b9882c9b6c4a3186be1d6bea0571be10541d0d8593fb7da3d46f30e2e8
+SHA512 (ansible-documentation-2.16.14.tar.gz) = 6241289f243c582701133d3a3add14456e6bccca796fcaae6f5124df8e13027f59563ef745a81581e73b42a12c4af38f1745760759bb4abd7fc6e489c3d9277f