ansible-core 2.11.6-1

fix CVE-2021-3620, ansible-connection module no longer discloses sensitive info. Resolves: #2004466
2021-10-13 07:40:44 -04:00 · 2021-10-13 07:40:44 -04:00 · 2d9f6c9425
commit 2d9f6c9425
parent 420505bba5
3 changed files with 10 additions and 5 deletions
--- a/.gitignore
+++ b/.gitignore
@ -4,3 +4,4 @@
 /straightplugin-6634ea8e1e89d5bb23804f50e676f196c52c46ed.tar.gz
 /ansible-4cafc937f065468ab9504ac985701c7f9ba24ed0.tar.gz
 /ansible-2fdb9767e93eebf4b25be2661bd7bbf756ea5d2e.tar.gz
+/ansible-5394eae49a3b0c55afe977a3257b6b4c38f9820c.tar.gz
--- a/ansible-core.spec
+++ b/ansible-core.spec
@ -15,7 +15,7 @@
 # ansible-test munges the shebangs itself.
 %global __brp_mangle_shebangs_exclude_from_file %{SOURCE1}

-%global commitId 2fdb9767e93eebf4b25be2661bd7bbf756ea5d2e
+%global commitId 5394eae49a3b0c55afe977a3257b6b4c38f9820c
 %global python39_sitelib /usr/lib/python3.9/site-packages/

 # RHEL and Fedora add -s to the shebang line.  We do *not* use -s -E -S or -I
@ -38,11 +38,11 @@

 Name: ansible-core
 Summary: SSH-based configuration management, deployment, and task execution system
-Version: 2.11.5
+Version: 2.11.6
 %if 0%{?nightly}
 Release: 0.1.%{snap}%{?dist}
 %else
-Release: 3%{?dist}
+Release: 1%{?dist}
 %endif

 Group: Development/Libraries
@ -50,7 +50,7 @@ License: GPLv3+
 %if 0%{?nightly}
 Source0: %{name}-%{version}%{nightly_pretag}.tar.gz
 %else
-Source0: ansible-2fdb9767e93eebf4b25be2661bd7bbf756ea5d2e.tar.gz
+Source0: ansible-5394eae49a3b0c55afe977a3257b6b4c38f9820c.tar.gz
 %endif
 Source1: ansible-test-data-files.txt

@ -211,6 +211,10 @@ cp -p lib/ansible_core.egg-info/PKG-INFO .
 %{python39_sitelib}/ansible_test

 %changelog
+* Tue Oct 12 2021 Christian Adams <chadams@redhat.com> - 2.11.6-1
+- ansible-core 2.11.6-1, fix CVE-2021-3620, ansible-connection module
+  no long discloses sensitive info.
+
 * Wed Oct 06 2021 Yanis Guenane <yguenane@redhat.com> - 2.11.5-3
 - ansible-core 2.11.5-3, add virtual provide for straightplugin

--- a/2
+++ b/2
@ -1,4 +1,4 @@
-SHA512 (ansible-2fdb9767e93eebf4b25be2661bd7bbf756ea5d2e.tar.gz) = 99c5315dec38794e91d782091752a5db41e30456d765184660e4af2ee5175a7fbd0ab7339dfa15ade84be79c6957e276146697abe462a994b97aa6baf291a06f
+SHA512 (ansible-5394eae49a3b0c55afe977a3257b6b4c38f9820c.tar.gz) = ef919cd8fd2834284d3b0e0cb4e4cc11652932d0054852f0d1d0c22a90d2349d99845a7f5b90abda2b53155a76860082c6edabb79045a0e8987abdf79040ebc0
 SHA512 (packaging-ded06cedf6e20680eea0363fac894cb4a09e7831.tar.gz) = ceacb927289775fe901b2169053e3265db1531c8c22dc42329d28c24b64d021a791cf523044420e3a821fbbc251039796f951b21745a4870a8ec53e2eeac76a7
 SHA512 (pyparsing-6a844ee35ca5125490a28dbd6dd2d15b6498e605.tar.gz) = ad95ec904f35dce422e31c6fc5922ca5970757229463e9fc4d1cbb0e798b6b7c1c6f44dcb8aaccec47f106506e78e7482ffc40b21f2122ba9d83e4e27bd57118
 SHA512 (straightplugin-6634ea8e1e89d5bb23804f50e676f196c52c46ed.tar.gz) = 7a3ba87f0de4cd7c7c8dda564d737b1656f8f3a9fa33895a252dec49ed53cbaf7e140d7fa65a68efa959487f4477b079cf9ae8cd251df3b8977053cde8aab7a5