[Openstack-security] [Bug 1466216] Re: Upgrade to ansible 1.9.2 when released
Kevin Carter
kevin.carter at rackspace.com
Tue Jul 7 13:51:10 UTC 2015
** Changed in: openstack-ansible/trunk
Status: Fix Committed => Fix Released
** Changed in: openstack-ansible/kilo
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of OpenStack
Security, which is subscribed to OpenStack.
https://bugs.launchpad.net/bugs/1466216
Title:
Upgrade to ansible 1.9.2 when released
Status in Ansible playbooks for deploying OpenStack:
Fix Released
Status in openstack-ansible kilo series:
Fix Released
Status in openstack-ansible trunk series:
Fix Released
Bug description:
Ansible 1.9.2 (unreleased) fixed a CVE-2015-3908 that affected usage
of get_url. The vulnerability is related to allowing an HTTPS
connection to be MITM'd.
To manage notifications about this bug go to:
https://bugs.launchpad.net/openstack-ansible/+bug/1466216/+subscriptions
More information about the Openstack-security
mailing list