Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted ansible 2.10.7+merged+base+2.10.17+dfsg-0+deb11u4 (source) into oldoldstable-security
Date: Tue, 17 Mar 2026 23:10:24 +0000
Signed by: Lee Garrett <lgarrett@rocketjump.eu>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 14 Mar 2026 18:42:09 +0100
Source: ansible
Architecture: source
Version: 2.10.7+merged+base+2.10.17+dfsg-0+deb11u4
Distribution: bullseye-security
Urgency: high
Maintainer: Debian Python Team <team+python@tracker.debian.org>
Changed-By: Lee Garrett <debian@rocketjump.eu>
Changes:
 ansible (2.10.7+merged+base+2.10.17+dfsg-0+deb11u4) bullseye-security; urgency=high
 .
   * Upload by the LTS Security Team.
   * Fix CVE-2024-11079:
     This vulnerability allows attackers to bypass unsafe content protections
     using the hostvars object to reference and execute templated content. This
     issue can lead to arbitrary code execution if remote data or module outputs
     are improperly templated within playbooks. Many thanks to Jochen Sprickerhof
     for providing the fix for the ANSIBLE_JINJA2_NATIVE=false test case!
   * Remove parts of filter_urls/groupby_filter integration tests: These tests
     run against jinja2 versions that are not shipped in bullseye and as such are
     irrelevant when they fail.
Checksums-Sha1:
 9ba2de3c6c21b4d9cad4f75b5beb47a0b72365e7 3509 ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u4.dsc
 f4078239c2a7ac2784dae54b86caf9736c6ff6b8 56388 ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u4.debian.tar.xz
 97d3e173055e4ba2a9423acb7e194c794f72adf5 7750 ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u4_amd64.buildinfo
Checksums-Sha256:
 c9aa213228a835dbe95060389d85d177c8f9407192b4dd8dfcb502e03b19ab11 3509 ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u4.dsc
 ed93a006c13cb50712ff8cff757c643745270a75a9a2b93bf8d59a524920fd7c 56388 ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u4.debian.tar.xz
 c44d794e87921ebe911d94eabb82e7479efd092a45911ec2e0b4a7489dc7e4fd 7750 ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u4_amd64.buildinfo
Files:
 786aae0890fef8a11e424ff9d82ce212 3509 admin optional ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u4.dsc
 d7231f1f4dc4240be58623a771cc1663 56388 admin optional ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u4.debian.tar.xz
 af113d94864219f46ec3e156d815bbde 7750 admin optional ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u4_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=DoMF
-----END PGP SIGNATURE-----
News for package ansible
