-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 16 Jul 2024 17:48:12 +0200 Source: ansible Architecture: source Version: 2.10.7+merged+base+2.10.17+dfsg-0+deb11u1 Distribution: bullseye Urgency: medium Maintainer: Debian Python Team Changed-By: Lee Garrett Closes: 1076527 Changes: ansible (2.10.7+merged+base+2.10.17+dfsg-0+deb11u1) bullseye; urgency=medium . * Update to ansible-base 2.10.17 (Closes: #1076527) - fixes CVE-2021-3620 - fixes CVE-2021-3583 * Fix password leak in amazon.aws.ec2_instance module (CVE-2022-3697) * Document workaround for ec2 private key leak (CVE-2023-4237) * ansible-galaxy: Prevent roles from using symlinks to overwrite files outside of the installation directory (CVE-2023-5115) * Ensure templating doesn't remove unsafe designation from template data. Document user-visible changes in NEWS (CVE-2023-5764) * Fix information disclosure due to a failure to respect the ANSIBLE_NO_LOG configuration in some scenarios (CVE-2024-0690) * d/gbp.conf: Update branch config to match bullseye (DEP-14 layout) * Update d/salsa-ci.yml to recommendations * d/gbp.conf: Default to merge-mode=replace * salsa CI updates: - Use bullseye's lintian - Update salsa CI pipeline file to recommended naming * fix lintian warnings: - Update lintian overrides - Remove debian/source/include-binaries * Update autopkgtests - Remove dep to python3-crypto - Add python3-systemd to test deps for more test coverage - Fix vault tests requiring pycrypto - Add integration tests * d/control: Update maintainer and uploader * d/control: Update VCS fields Checksums-Sha1: 97a089bc777367472d58e797d8bd8e22809e6d6f 3493 ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u1.dsc 3d0c7ed8ad104c4df37386823da0b3fa81a7eace 20731960 ansible_2.10.7+merged+base+2.10.17+dfsg.orig.tar.xz e9445dfbf6c0e27419177f84187f7d2466c40aa5 46740 ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u1.debian.tar.xz a778f57022da69da9da6337ec0fc604c9e794bb6 8203 ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u1_amd64.buildinfo Checksums-Sha256: 4133012d68154addccc7b0a7acee012664a894d9be21b1ec7e0d374392b51ea1 3493 ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u1.dsc 0c49275be642143d971ec802ebb192de1e0ad1a7ca07511103ae905f9b67f5b5 20731960 ansible_2.10.7+merged+base+2.10.17+dfsg.orig.tar.xz b714bff66ead378abae9cff05697695406a26cdb4ddb95a7738e49a129f71606 46740 ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u1.debian.tar.xz e2bc5abafcb2a0256a47790ec132b81e54531be85af5a1d51cfe807461afb1f5 8203 ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u1_amd64.buildinfo Files: ea337566db04c4bc52f31b6a1d819bc6 3493 admin optional ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u1.dsc bdf0596a969c2416fc71784f0dc16e04 20731960 admin optional ansible_2.10.7+merged+base+2.10.17+dfsg.orig.tar.xz aa0d24e26535834bae0f881c5c71aa64 46740 admin optional ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u1.debian.tar.xz c45fc242853bda300f9ceda5387f1571 8203 admin optional ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u1_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQQzBAEBCgAdFiEE2EfGJRCpwv8kLOAs1gShxII+4PgFAma/SBQACgkQ1gShxII+ 4PivAR/9FmGaHC5kQK4+Y25roIAS2g+fYrUBYiP5UMosC3GsAyxj94h5yhlfwCll rENUTV23h8ukfk3aI2lTGg4EApjC93DWMHfVZjDx0HUuil+ng4Vzh/f+YZzHJAV7 0hQtkPjtiIyYMpsr70qdGzORgN9lBwi6eRDJppcKaLa7dygwiq5bzgIj9RDqh+6L Oxh0emDXcs/Up3YpeK4nwjCct3i02NEXKFWdEBHUH7SIt3XZAEhFaYHh0e7taMeD QZSILI/pgOMDg1+cDdT4gctzEkcU3lX3j0KAyJQO6hgthKNM6V5GLtlqS46n8k0A mdZXWi8YOhTZrRFG7+/YPJuWpf8TLAwfDbeLiyOaPj8+ircKVGhNtyc47xqMUu3/ rq3QyuYBYAU5bMqROb9NlvebC5UdylylCZSB2zt3oJDl3lzZaU2LvGjK5eIHBNAZ KXtiH/Sa9wPpeXKWRMAZ06n/mWzeX8VmeiTeBlz8J2fMQfw+mvPyhi7gRhtouW1v npBmfqvS/O9ir8l7SW/2iSCq/FzPe4a/LCtOyuGbiDrfFScbgFaJkRtfUWgHsqW6 NkFOG0XVJ8UxpOwdpi1/kCQ5M3c9eEgZfHQUtwuiqZgQc7D2QC3KaVHF8vHOrGHf MJRtK/eiKQ6PV4U66H6XgPzKlF5spko5t/qt/YxrtIk/BxgNCxi/3InnvbHMTxJb qTCT33q+V21kCGwW9TNxzMQcc6XqkeFXZeFuM4SQgWs7N2+fCvqhKNtTzwgb/F3Q o3XT1scDKYe4H3V6OxMzN70EUNYPl8cjkHKREUxVh8f6CH1+c+Dhfsoho1B6y4Hk IQ4n895g/KYTMMLl6leHcJZgZFREqMRl7v+h0dIWrQmXifTuXZr4KAc02e1/u0Qd Kx/eEjvPDAeTBr90PDXboin+IoCscIjhTCcI13F337aJXLWzqfOjwGlACbp6Jl3m uVRHdHYzPTpTYEySY/xEmUe7rLwN4KlF1+3nafUqQMXgTMPW02HJOyq/NAEfrv0t HBD5HMIBg2wK8UqcEjhhCHkOOEd+wHppAMU3vOUdOJU+EwdUUkYvecfRIi0R+RNq K0tkco6Bi4H2FYTVBn1F2q3VGmrrFSwW44o9ScQYDq6pH6N092F5JVfM/saNRmMa Gbh1QS5RfSvNeHE1h+dgH51fEtm5nWPeIzGytHuCwfq81jYl/+DWlRU/v/kmPOkG HC8bBLTUpqtKPstGmIIDp84SquNwZ1R4Ny/43E6qOh2SSc8MEvkjYxVvSzZ3/M9p WE0qDbRAz8rz47KiUsJLvZSLUC242XbMh/KiBEEmECAOGglcK1IWhpsARJprKqUa 2UTVeM79j0Xku2IHPZP02hz2rZ9UmQ== =S/5v -----END PGP SIGNATURE-----