[Openstack-security] [Bug 1466216] Re: Upgrade to ansible 1.9.2 when released
Kevin Carter
kevin.carter at rackspace.com
Fri Jun 26 16:52:53 UTC 2015
** Also affects: openstack-ansible/kilo
Importance: Undecided
Status: New
** Also affects: openstack-ansible/trunk
Importance: High
Assignee: Tom Cameron (tom-cameron)
Status: In Progress
** Changed in: openstack-ansible/kilo
Milestone: None => 11.0.4
** Changed in: openstack-ansible/trunk
Milestone: 11.0.4 => None
** Changed in: openstack-ansible/kilo
Assignee: (unassigned) => Tom Cameron (tom-cameron)
** Changed in: openstack-ansible/kilo
Importance: Undecided => High
** Changed in: openstack-ansible/kilo
Status: New => In Progress
--
You received this bug notification because you are a member of OpenStack
Security, which is subscribed to OpenStack.
https://bugs.launchpad.net/bugs/1466216
Title:
Upgrade to ansible 1.9.2 when released
Status in Ansible playbooks for deploying OpenStack:
Fix Committed
Status in openstack-ansible kilo series:
In Progress
Status in openstack-ansible trunk series:
Fix Committed
Bug description:
Ansible 1.9.2 (unreleased) fixed a CVE-2015-3908 that affected usage
of get_url. The vulnerability is related to allowing an HTTPS
connection to be MITM'd.
To manage notifications about this bug go to:
https://bugs.launchpad.net/openstack-ansible/+bug/1466216/+subscriptions
More information about the Openstack-security
mailing list