1
0
Fork 1
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-12-25 03:17:13 +00:00
nixpkgs/pkgs
Andreas Rammhold 71cde971c7 ansible_2_8: 2.8.4 -> 2.8.7
This addresses the following security issues:

  * Ansible: Splunk and Sumologic callback plugins leak sensitive data in logs (CVE-2019-14864)
  * CVE-2019-14846 - Several Ansible plugins could disclose aws
    credentials in log files. inventory/aws_ec2.py, inventory/aws_rds.py,
    lookup/aws_account_attribute.py, and lookup/aws_secret.py,
    lookup/aws_ssm.py use the boto3 library from the Ansible process. The
    boto3 library logs credentials at log level DEBUG. If Ansible's
    logging was enabled (by setting LOG_PATH to a value) Ansible would set
    the global log level to DEBUG. This was inherited by boto and would
    then log boto credentials to the file specified by LOG_PATH. This did
    not affect aws ansible modules as those are executed in a separate
    process. This has been fixed by switching to log level INFO
  * Convert CLI provided passwords to text initially, to prevent unsafe
    context being lost when converting from bytes->text during post
    processing of PlayContext. This prevents CLI provided passwords from
    being incorrectly templated (CVE-2019-14856)
  * properly hide parameters marked with no_log in suboptions when
    invalid parameters are passed to the module (CVE-2019-14858)

Changelog: 24220a618a/changelogs/CHANGELOG-v2.8.rst
2019-12-15 21:25:02 +01:00
..
applications Merge pull request #75691 from thefloweringash/chromium-maintainer 2019-12-15 16:44:57 +01:00
build-support Merge branch 'master' into staging-next 2019-12-14 23:09:06 +01:00
common-updater
data mojave-gtk-theme: add wallpapers 2019-12-13 15:33:37 -03:00
desktops cinnamon.xapps: init at 1.6.8 2019-12-14 22:22:14 -05:00
development ansible_2_8: 2.8.4 -> 2.8.7 2019-12-15 21:25:02 +01:00
games quake3e: 2019-09-09 -> 2019-11-29 (#75511) 2019-12-15 02:16:53 -05:00
misc vimPlugins.deoplete-khard: init at 2019-09-02 2019-12-14 12:05:10 +01:00
os-specific Merge branch 'master' into staging-next 2019-12-14 23:09:06 +01:00
servers Merge pull request #75452 from NixOS/staging-next 2019-12-15 16:28:08 +01:00
shells zsh-history: Add tests 2019-12-14 10:58:38 +01:00
stdenv
test
tools ansible_2_7: 2.7.11 -> 2.7.15 2019-12-15 21:24:59 +01:00
top-level treewide: replace kcalcore dependencies with kcalendarcore 2019-12-15 16:13:49 +01:00