Debian Package Tracker

general

source: ansible (main)
version: 2.7.1+dfsg-2
maintainer: Harlan Lieberman-Berg [DMD]
uploaders: Lee Garrett [DMD] – Michael Vogt [DMD]
arch: all
std-ver: 4.1.1
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-bpo: 1.7.2+dfsg-2~bpo70+1
oldstable: 1.7.2+dfsg-2
old-sec: 1.7.2+dfsg-2+deb8u1
old-bpo: 2.2.1.0-2~bpo8+1
stable: 2.2.1.0-2
stable-bpo: 2.6.3+dfsg-1~bpo9+1
testing: 2.7.1+dfsg-2
unstable: 2.7.1+dfsg-2

versioned links

1.7.2+dfsg-2~bpo70+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.7.2+dfsg-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.7.2+dfsg-2+deb8u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.2.1.0-2~bpo8+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.2.1.0-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.6.3+dfsg-1~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.7.1+dfsg-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

ansible

action needed

A new upstream version is available: 2.7.2 high

A new upstream version 2.7.2 is available, you should consider packaging it.

Created: 2018-11-17 Last update: 2018-11-18 12:39

4 security issues in stretch high

There are 4 open security issues in stretch.

3 important issues:

CVE-2018-10855: Ansible 2.5 prior to 2.5.5, and 2.4 prior to 2.4.5, do not honor the no_log task flag for failed tasks. When the no_log flag has been used to protect sensitive data passed to a task from being logged, and that task does not run successfully, Ansible will expose sensitive data in log files and on the terminal of the user running Ansible.
CVE-2018-16837: Ansible "User" module leaks any data which is passed on as a parameter to ssh-keygen. This could lean in undesirable situations such as passphrases credentials passed as a parameter for the ssh-keygen executable. Showing those credentials in clear text form for every user which have access just to the process list.
CVE-2018-10875: A flaw was found in ansible. ansible.cfg is read from the current working directory which can be altered to make it point to a plugin or a module path under the control of an attacker, thus allowing the attacker to execute arbitrary code.

1 issue skipped by the security teams:

CVE-2017-7481: Ansible before versions 2.3.1.0 and 2.4.0.0 fails to properly mark lookup-plugin results as unsafe. If an attacker could control the results of lookup() calls, they could inject Unicode strings to be parsed by the jinja2 templating system, resulting in code execution. By default, the jinja2 templating language is now marked as 'unsafe' and is not evaluated.

Please fix them.

Created: 2017-04-22 Last update: 2018-11-18 07:08

lintian reports 3 errors and 7 warnings high

Lintian reports 3 errors and 7 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2018-04-08 Last update: 2018-07-13 02:05

3 bugs tagged patch in the BTS normal

The BTS contains patches fixing 3 bugs, consider including or untagging them.

Created: 2018-10-01 Last update: 2018-11-18 16:43

Depends on packages which need a new maintainer normal

The packages that ansible depends on which need a new maintainer are:

cowsay (#910035)
- Suggests: cowsay

Created: 2018-10-16 Last update: 2018-11-18 15:58

Fails to build during reproducibility testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2018-11-06 Last update: 2018-11-18 12:43

201 new commits since last upload, time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit 0c98c0723315133a2b058b4bbfc06f014a2ba026
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Tue Nov 13 11:04:18 2018 +0100

    Update changelog

commit d86897bf6a92a631b76b2e86e479839a113227f9
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Tue Nov 13 11:02:18 2018 +0100

    Add build-deps to python-packaging
    
    Otherwise it will fail with:
    
    make docs
    make[2]: Entering directory '/home/randall/Coding/Debian/ansible'
    Traceback (most recent call last):
      File "packaging/release/versionhelper/version_helper.py", line 9, in <module>
        from packaging.version import Version, VERSION_PATTERN
    ImportError: No module named packaging.version
    Makefile:40: *** "version_helper failed".  Stop.
    make[2]: Leaving directory '/home/randall/Coding/Debian/ansible'
    debian/rules:10: recipe for target 'override_dh_installdocs' failed
    make[1]: *** [override_dh_installdocs] Error 2
    make[1]: Leaving directory '/home/randall/Coding/Debian/ansible'
    debian/rules:4: recipe for target 'binary' failed
    make: *** [binary] Error 2
    dpkg-buildpackage: error: fakeroot debian/rules binary gave error exit status 2
    debuild: fatal error at line 1116:
    dpkg-buildpackage -rfakeroot -us -uc -i -I failed

commit a0eaae05764a7f5a528963a89e5734139ad747e0
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Mon Oct 29 19:49:51 2018 +0100

    Keep unit test files on dh_clean
    
    When dh_clean is run, it removes files matching *~, which includes this file
    that is used for unit tests. So override the default and exempt this file from
    deletion.

commit aa170dfb0c64b9637808751db32c8263845ac853
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sun Oct 28 16:09:19 2018 +0100

    Update changelog

commit e1b9433eb26ae694e9dc4d46483ef7db5a62ee1b
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sun Oct 28 16:06:39 2018 +0100

    Add documentation to build Debian packages
    
    This contains three sections:
    - Building from "deb-src" source package
    - Building from Debianized git repo (first checkout)
    - Building from Debianized git repo (subsequent releases)
    
    This fixes #911027.

commit 2a1de65d2fbf7ca907107fc0e70f4a18b9875c13
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sun Oct 28 14:59:10 2018 +0100

    Build man pages via rst2man
    
    Although we build-depended on asciidoc, we never used it to build the man pages.
    So make sure we build them now with rst2man.

commit fbcd7fbc230d2dd7d7d5843bde4d5a8152c69f3c
Merge: 78be9150 b3198d83
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sun Oct 28 13:59:49 2018 +0100

    Updated version 2.7.1+dfsg from 'upstream/2.7.1+dfsg'
    
    with Debian dir 48cf4e82df226bd27822d924c4bea6fd92b7dd46

commit 78be91507d986166a5bd3e6f1be6982c6e89edfd
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sun Oct 28 13:54:07 2018 +0100

    Move from asciidoc to docutils
    
    Fixes: #894188

commit 9acb2925d2ca6e952ce807363a185cad435911e4
Author: Ondřej Nový <onovy@debian.org>
Date:   Mon Oct 1 10:34:40 2018 +0200

    d/copyright: Use https protocol in Format field

commit 4049f0e226dc3309035c36ff9fe70aae2ea56f62
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sat Sep 29 15:25:01 2018 +0200

    Update changelog

commit 7cc967d4bb784e6980136d6fbe1f318b84476a87
Merge: 048fe41b c5c33c49
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sat Sep 29 15:22:49 2018 +0200

    Updated version 2.6.5+dfsg from 'upstream/2.6.5+dfsg'
    
    with Debian dir ef0112409f212925c64eb430f9d18fa4173f3cf7

commit 048fe41b10197097e69467fcada49ab7647e7048
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sun Sep 9 20:08:21 2018 +0200

    Update changelog

commit 8a56fe5a751876fcdba2947f10b92da5bd9b8704
Merge: fbd632f7 61080929
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sun Sep 9 20:05:30 2018 +0200

    Updated version 2.6.4+dfsg from 'upstream/2.6.4+dfsg'
    
    with Debian dir 35a63bc953260446be89957eab1c3cdd48281eb6

commit fbd632f773b49b3527e1540d232e74d082672561
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Mon Aug 27 21:08:58 2018 +0200

    Update changelog

commit b9a54488ce993985ff545428840ca79881b7e859
Merge: 24bffd66 3a29fd68
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Mon Aug 20 15:51:36 2018 +0200

    Updated version 2.6.3+dfsg from 'upstream/2.6.3+dfsg'
    
    with Debian dir 75d925b224c2716fc89750a969408e42144af5d3

commit 24bffd66420a2b8cf868ec17feaa0f9de7248c70
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Wed Jul 11 23:53:53 2018 +0200

    Update changelog

commit 45f4cf5f818912a940ffa0d4cde8e59f37f7bc39
Merge: 077177dc 9728c388
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Wed Jul 11 23:24:18 2018 +0200

    Updated version 2.6.1+dfsg from 'upstream/2.6.1+dfsg'
    
    with Debian dir aa97e0ccb953bb6f268191d80597d641c015d907

commit 077177dc932aba55a03e9263d69dfc1f304b7ece
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Fri Jun 15 17:11:33 2018 +0200

    Update changelog

commit f19b66ce2df88d69bd8351a24ca6a9c1394aa9f3
Merge: e2bea722 8042aaeb
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Fri Jun 15 16:27:03 2018 +0200

    Merge tag 'upstream/2.5.5+dfsg'
    
    Upstream version 2.5.5+dfsg

commit e2bea7220bf27f13a93168ac92f0218fa83cca2d
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Fri Jun 15 15:37:44 2018 +0200

    Prepare for packaging ansible-doc
    
    Add debian/...
    * ansible-doc.doc-base, registering the doc with doc-base
    * ansible-doc.docs, telling debhelper where to find the built docs
    * ansible-doc.examples, to tell where the example config is
    * ansible-doc.links to symlink JS libraries we've removed in debian/copyright
    
    Also update debian/control and debian/rules to but leave that code commented out
    for now. The remaining blocker is that the generated docs need patching to not
    load any resources from the WWW (grep for cloudflare.com, googleapis.com,
    googletagmanager.com)

commit 52d8eb82b7ea2e57b561f5ebf9b57c7794cb042e
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sun Jun 3 18:55:13 2018 +0200

    Update changelog

commit 5772bc1b0027001bd3c207197dc74005f2071a9b
Merge: c5b1aa8b 7f703757
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sun Jun 3 01:34:06 2018 +0200

    Merge tag 'upstream/2.5.4+dfsg'
    
    Upstream version 2.5.4+dfsg

commit c5b1aa8bdd28eefae683502baf00c77523961159
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sun Jun 3 01:31:51 2018 +0200

    Re-import documentation
    
    Previously it had been excluded due to minified JS without any source. Just
    exclude those files instead.

commit b29603ce7fb3e89c23efbc2dcd47681bd009ab53
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sat May 19 19:38:14 2018 +0200

    Release 2.5.3+dfsg-2
    
    Patching up the source package to produce ansible-doc will take a while, release
    a new version for now.

commit d2c8749218df9c2f55162a89fa049ddbb2835d6e
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Fri May 18 23:44:38 2018 +0200

    Update changelog

commit 4b4c52e81144ee277b22260df0b5e979eae15d68
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Fri May 18 23:35:06 2018 +0200

    Update VCS fields to point to salsa

commit ca332caeafe5d78c661ead04b98f482acfc84481
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Fri May 18 23:04:18 2018 +0200

    Update changelog

commit 238205fdaf00b6aa904f257717632bc0c8014d39
Merge: 5a199e29 37dc0190
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Fri May 18 22:49:59 2018 +0200

    Merge branch 'master' of salsa.debian.org:debian/ansible

commit 37dc0190bbf4cb99b2d10cd94198d4ff535ceb3f
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Fri May 18 14:39:17 2018 -0400

    Bump d/changelog.

commit 5a199e29c314acd416f92650a86e9ad77879326f
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Fri May 18 13:50:29 2018 +0200

    Update changelog

commit 542389c3372a168c10462e3d98d33d875ec0a88e
Merge: e1efcca8 90f6b770
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Fri May 18 13:49:08 2018 +0200

    Merge tag 'upstream/2.5.3+dfsg'
    
    Upstream version 2.5.3+dfsg

commit b0c929a69d0c648831a168771a57818a91729d36
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Tue May 8 19:51:14 2018 -0400

    Move docs to point to new README.rst

commit e1efcca83d6010fff9a0b3c2ed1a249d2a696961
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sat Apr 28 17:39:37 2018 +0200

    Update changelog

commit 1d02e8889f51ed317e78ac2caa0f6d766e7c164b
Merge: 11aa1200 a855de7d
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Fri Apr 27 15:34:41 2018 +0200

    Merge tag 'upstream/2.5.2+dfsg'
    
    Upstream version 2.5.2+dfsg

commit 11aa1200a7d258e4d20b8bf1272270063d66eeb8
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Thu Apr 19 11:23:01 2018 +0200

    Update changelog

commit 1d6dd8058d34c94e237a09c23419599cf64acafa
Merge: a5b73235 e6dbd105
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Thu Apr 19 11:21:46 2018 +0200

    Merge tag 'upstream/2.5.1+dfsg'
    
    Upstream version 2.5.1+dfsg

commit a5b732354a2bb90a52c1257986f3fd2ba80cb288
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sun Mar 25 14:49:23 2018 +0200

    Update changelog

commit 6e00b4ff3d28029033ef95d3dd5b434649a97b35
Merge: 8d634ca6 811ab91d
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sun Mar 25 14:39:41 2018 +0200

    Merge tag 'upstream/2.5.0+dfsg'
    
    Upstream version 2.5.0+dfsg

commit 8d634ca6a7b847b20e1163e5f2376ad072b45e48
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Thu Feb 1 13:51:56 2018 +0100

    Update changelog

commit b480210fe7ffda963c9816abb1ec6b69df512bff
Merge: af6442c8 0771f797
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Thu Feb 1 13:40:13 2018 +0100

    Merge tag 'upstream/2.4.3.0+dfsg'
    
    Upstream version 2.4.3.0+dfsg

commit af6442c881f36e0cbb40a2e9dd8d2d19dfcf224d
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Wed Dec 6 20:49:01 2017 +0100

    Update changelog

commit 439ea2ae47d145fc1622efff05d3561294004833
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Thu Nov 30 14:14:30 2017 +0100

    Update changelog, bumped to upstream 2.4.2.0

commit 79f0a49b84881f33632ad9e61c9aace88d5152d7
Merge: b255828c c30d3efd
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Thu Nov 30 14:13:14 2017 +0100

    Merge tag 'upstream/2.4.2.0+dfsg'
    
    Upstream version 2.4.2.0+dfsg

commit b255828c251261161ffdff8c3f706e8dfd73a299
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sun Nov 5 21:12:42 2017 +0100

    Update changelog

commit 2a110376d8f8c2c9e9b448af284e88f141eaf76f
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sun Nov 5 18:10:06 2017 +0100

    Add new man pages from 2.4.0.

commit 652418636b5665f7616e8efc64db7291984f0faa
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sun Nov 5 17:53:35 2017 +0100

    Bump Standards-Version to 4.1.1 (no changes needed)

commit a3bfe54a130c636607767d5a2b855a921684e361
Merge: b5bc96c8 06fc4be9
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Fri Nov 3 14:32:39 2017 +0100

    Merge tag 'upstream/2.4.1.0+dfsg'
    
    Upstream version 2.4.1.0+dfsg

commit b5bc96c8e2882d0b1b28f9bf14437750e0c54641
Merge: eb27b13c e2bf8ed8
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Fri Oct 6 16:08:36 2017 -0400

    Merge branch 'master' of git.debian.org:/git/collab-maint/ansible

commit e2bf8ed8233b9ba6ca131566e26e87935bfd625c
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Wed Sep 20 00:56:08 2017 +0200

    Update changelog

commit e29c48d42c7975cecdcf0e8a09d87707638491c0
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Wed Sep 20 00:20:18 2017 +0200

    Remove 0002-fix-jinja-1.9-upgrade.patch
    
    Patch has been applied upstream.

commit 80e04364a9040b90c2761d3aaa237886684768e7
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Wed Sep 20 00:19:25 2017 +0200

    Update changelog

commit 7f785433cdc0a828ec6ba41ebf76e77cfb958897
Merge: e007682f 43b3b9d0
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Tue Sep 19 18:48:55 2017 +0200

    Merge tag 'upstream/2.4.0.0+dfsg'
    
    Upstream version 2.4.0.0+dfsg

commit eb27b13c2d836b56f439a8c6684d68e17a2bc0d1
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Sun Sep 10 21:21:17 2017 -0400

    Bump d/changelog for release.

commit e007682f372871ade415f088cc05f3e9703861f8
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Wed Sep 6 20:18:22 2017 +0200

    Update changelog

commit 83da6a7e737456679a648dfcf7a5abea0bdaf8cb
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Wed Sep 6 02:23:07 2017 +0200

    Update changelog

commit c700354bb832a7caa4f94d82354d372b56e48222
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Wed Sep 6 01:32:52 2017 +0200

    Remove 01-fix-htpasswd.patch
    
    Applied upstream.

commit f1036b01840f9bac6d905c0cd14ad26e3c6c2cbd
Merge: 1b3f9f83 3a514537
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Tue Sep 5 20:28:05 2017 +0200

    Merge tag 'upstream/2.3.2.0+dfsg'
    
    Upstream version 2.3.2.0+dfsg

commit 1b3f9f8379391310e2e7b9fa4410c0ef998fd339
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Sun Aug 27 19:47:05 2017 -0400

    Bump d/changlog for release.

commit c820cdd7b788ddaea792e78b3fd901bce72ca146
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Sun Aug 27 19:39:42 2017 -0400

    Revert python-jinja2 pin

commit 98cbea7150b895ad820b020cf77eda4c7f6b0757
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Sun Aug 27 19:35:23 2017 -0400

    Import patch fixing jinja2 issues (Closes: #870599, #871601)

commit bd25745d0d6ed17406ab881ed1cdc65299de3532
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Mon Aug 7 17:46:51 2017 -0400

    Switch to +dfsg version since we're stripping stuffz

commit f2df8fd5f86449ec159d2d447944ca9c373eec3c
Merge: fce8dab6 87906f88
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Mon Aug 7 17:44:38 2017 -0400

    Merge tag 'upstream/2.3.1.0+dfsg'
    
    Upstream version 2.3.1.0+dfsg

commit fce8dab60fdeda5792aa795e7f47ba97ed710fd8
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Mon Aug 7 17:37:37 2017 -0400

    Fix debian revision number.

commit 84815e5adf5342f6f4f2c8e35e31ba34c362862c
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Mon Aug 7 17:27:12 2017 -0400

    Bump d/changelog for release.

commit 4d347f5b22f144552dd234fed6504d345493711d
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Mon Aug 7 17:25:29 2017 -0400

    Add Files-Extract to remove the docsite
    
    Since we're not building it right now, and it's got embedded copies
    of the Sphinx templates, let's just remove it.  We will need to be
    more careful about just stripping out the embedded copies if we
    start building the docsite in the future.

commit 7b46ae05c96dd69fe946ed09c0cf8ef0f5b39569
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Mon Aug 7 17:13:54 2017 -0400

    Fix incorrect relation.

commit 5177d1b9106bde013d73c5ffa92be903d59d1240
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Mon Aug 7 17:07:13 2017 -0400

    Update changelog
    
    That CVE is fixed by upstream.

commit bc6942836ff33921eb45a03700f8934563e792f5
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Mon Aug 7 15:42:18 2017 -0400

    As 2.3.1.0-1 was never uploaded, recombine the versions

commit e45b6e0a59a7b683aff0d882eb629f1121625fcd
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Mon Aug 7 15:08:51 2017 -0400

    Pull in htpasswd fix from upstream (Closes: #863949)

commit b869bfc70b0b83f1ac0a902b1a2a339aa07d56a7
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Mon Aug 7 14:24:31 2017 -0400

    Add dependency pin on python-jinja2
    
    Though this is technically fixes Debian bug #870599, I don't want to
    close it.  This pin should be removed when the upstream bug is fixed,
    and I don't want to lose track of the bug.

commit 51178adbf0543610819f2098e602828cdb38ed02
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Mon Aug 7 14:17:32 2017 -0400

    Update changelog

commit fd39bcdc719f7f8b4369a6db829cd9155af6f985
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sat Aug 5 21:35:53 2017 -0400

    Remove python-docker from recommends again
    
    Upon closer inspection of the documentation docker-py is needed on the target
    host, not on the controller.

commit 1ae19a81175f32abf8d633bd1368882156208bba
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sat Aug 5 17:44:24 2017 -0400

    Add python-docker to recommends
    
    It is used by the modules docker_container and docker_image.

commit 46813b0e4fabd9802a0576ba04b9887c3a159b1b
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Fri Aug 4 20:50:39 2017 -0400

    Bump Standards-Version to 4.0.0 (no changes needed)

commit c93634683c1e1b5168c714383356eb5e7d07a504
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Fri Aug 4 18:53:03 2017 -0400

    Add python-libcloud to recommends (Closes: #869751)
    
    This is used for the GCE dynamic inventory, and various gce_* modules.

commit e36ec318b3c2aeae16c6b88e9c544df8c368c5f3
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Fri Aug 4 18:48:04 2017 -0400

    Add python-jmespath to recommends (Closes: #859999)

commit 2320be7721bf05be0390d04b8305e11ed52d1b06
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Fri Aug 4 11:21:32 2017 -0400

    Update changelog

commit 605ad14b25d9c1d9ff61bcce92d4129e94032b21
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Fri Aug 4 11:13:04 2017 -0400

    Update patches
    
    Both patches have been applied upstream, so drop them from
    debian/patches/series.

commit c1c39b23335539b137712774084d3409e1c04b26
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Fri Aug 4 10:35:22 2017 -0400

    Add python-cryptography to recommends
    
    python-cryptography is used to speed up vault operations.

commit a96740f09ae3a73adce09121fdc8976c25d04908
Merge: f4e5d6e7 31499519
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Thu Jul 13 14:26:57 2017 +0200

    Merge tag 'upstream/2.3.1.0'
    
    Upstream version 2.3.1.0

commit f4e5d6e7d40c993f1bc960f2d7d77b10bcd08b80
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Wed Apr 12 00:54:44 2017 -0400

    Bump d/changelog.

commit 2397b6d3b56bf08c58ac2bb224388d15b3349e3e
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Wed Apr 12 00:54:36 2017 -0400

    Add patch to fix CVE-2017-7486.

commit 9dbc9f22c2b836255f6015892fd61e3954033420
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sat Jan 21 21:28:14 2017 +0100

    Add Lee Garrett to uploaders

commit 1fea34cda952b11384fbedda5dcab9ff58913f63
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Wed Jan 18 10:11:36 2017 +0100

    Update changelog

commit 7a30e2899cd84e4952e42067ee728acf70db1e61
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Wed Jan 18 10:35:48 2017 +0100

    Remove 4 patches, applied upstream

commit dc3f30255fd5cc1150c1941258b4a262c6861fc0
Merge: ef9d8b5b aec4a91d
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Wed Jan 18 10:00:54 2017 +0100

    Merge tag 'upstream/2.2.1.0'
    
    Upstream version 2.2.1.0

commit ef9d8b5b5fa45e31c549cb592511d7b65915f827
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Sat Jan 14 15:31:01 2017 -0500

    Bump d/changelog for release.

commit 7d7646181ce134acacc460c1280d77a4b45440c8
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Sat Jan 14 15:29:57 2017 -0500

    Cherry-pick patch fixing CVE-2016-8647 (Closes: #844691)

commit 03330c3c3090607e8559f3f2866ac8c66068bbfc
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Sat Jan 14 15:25:06 2017 -0500

    Cherry-pick patch fixing python3 + virtualenv problems. (Closes: #847546)

commit 6f0b6269dc2f8397c16783ca08d8cf6643fa279a
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Sat Jan 14 15:21:43 2017 -0500

    Cherry-pick patch fixing git module error. (Closes: #850935)

commit 3142637288766947f5162d978af59bb632e3750f
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Sat Jan 14 15:17:16 2017 -0500

    Commit to git the changelog line I actually used.

commit 2513b2bd62a7cd5b541dee44fa70820ad04daf08
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Fri Jan 13 21:18:27 2017 -0500

    Bump d/changelog for release.

commit 697f910fa459286b3addf1dd2233decb89bb3fff
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Fri Jan 13 21:17:38 2017 -0500

    Apply additional fixes for CVE-2016-9587 (Closes: #850846)

commit 9a7c58ccc6f7761a23941c455818257b88cc3e43
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Tue Jan 10 20:14:41 2017 -0500

    Cherry-pick patch from upstream to fix CVE-2016-9587 (Closes: #850846)

commit 7992dd64f0bc3073551215fb92b36ed83f65b86d
Author: Harlan Lieberman-Berg <hlieberman@setec.io>
Date:   Fri Dec 30 10:26:48 2016 -0500

    Remove Janos from Uploaders. (Closes: #849732)

commit 10f946871c05c3272b50a885f12fb2c7b81d154f
Author: Evgeni Golov <evgeni@debian.org>
Date:   Sat Dec 3 13:55:23 2016 +0100

    d/control: use HTTPS for the Homepage
    
    this is what the homepage perm-redirects to anyways :)

commit 31be24ee87a681181c0de72faaa250b6962b39d8
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Fri Nov 25 20:55:50 2016 +0100

    Update changelog for release 2.2.0.0-1

commit 34d74257194b84080589df1db6323501bd18045c
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Fri Nov 25 20:49:41 2016 +0100

    Add python-kerberos to Recommends
    
    This is needed for windows machines managed with Active Dictory. See
    http://docs.ansible.com/ansible/intro_windows.html for details.

commit 6386d19f204400ccd0b2290ffe52b82982da68f1
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sat Nov 12 16:33:42 2016 +0100

    Update debian/changelog

commit 32957ef25c54d77055406c5531f7153dd795cde9
Author: Lee Garrett <lgarrett@rocketjump.eu>
Date:   Sat Nov 12 15:34:47 2016 +0100

    Update Recommends to support Windows hosts.

Created: 2017-12-03 Last update: 2018-11-17 21:31

4 ignored security issues in jessie low

There are 4 open security issues in jessie.

4 issues skipped by the security teams:

CVE-2017-7481: Ansible before versions 2.3.1.0 and 2.4.0.0 fails to properly mark lookup-plugin results as unsafe. If an attacker could control the results of lookup() calls, they could inject Unicode strings to be parsed by the jinja2 templating system, resulting in code execution. By default, the jinja2 templating language is now marked as 'unsafe' and is not evaluated.
CVE-2015-3908: Ansible before 1.9.2 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.
CVE-2015-6240: The chroot, jail, and zone connection plugins in ansible before 1.9.2 allow local users to escape a restricted environment via a symlink attack.
CVE-2018-10875: A flaw was found in ansible. ansible.cfg is read from the current working directory which can be altered to make it point to a plugin or a module path under the control of an attacker, thus allowing the attacker to execute arbitrary code.

Please fix them.

Created: 2015-07-14 Last update: 2018-11-18 07:08

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.2.1 instead of 4.1.1).

Created: 2017-08-08 Last update: 2018-11-13 20:11

news

[rss feed]

[2018-11-18] ansible 2.7.1+dfsg-2 MIGRATED to testing (Debian testing watch)
[2018-11-13] Accepted ansible 2.7.1+dfsg-2 (source all) into unstable (Lee Garrett)
[2018-11-12] Accepted ansible 1.7.2+dfsg-2+deb8u1 (source all) into oldstable (Chris Lamb)
[2018-11-03] ansible 2.7.1+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-11-03] ansible 2.7.1+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-10-28] Accepted ansible 2.7.1+dfsg-1 (source all) into unstable (Lee Garrett)
[2018-10-05] ansible 2.6.5+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-09-29] Accepted ansible 2.6.5+dfsg-1 (source all) into unstable (Lee Garrett)
[2018-09-15] ansible 2.6.4+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-09-09] Accepted ansible 2.6.4+dfsg-1 (source all) into unstable (Lee Garrett)
[2018-08-31] Accepted ansible 2.6.3+dfsg-1~bpo9+1 (source all) into stretch-backports (Lee Garrett)
[2018-08-26] ansible 2.6.3+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-08-20] Accepted ansible 2.6.3+dfsg-1 (source all) into unstable (Lee Garrett)
[2018-07-17] ansible 2.6.1+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-07-11] Accepted ansible 2.6.1+dfsg-1 (source all) into unstable (Lee Garrett)
[2018-06-21] ansible 2.5.5+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-06-15] Accepted ansible 2.5.5+dfsg-1 (source all) into unstable (Lee Garrett)
[2018-05-25] ansible 2.5.3+dfsg-2 MIGRATED to testing (Debian testing watch)
[2018-05-19] Accepted ansible 2.5.3+dfsg-2 (source all) into unstable (Lee Garrett)
[2018-05-18] Accepted ansible 2.5.3+dfsg-1 (source all) into unstable (Lee Garrett)
[2018-05-18] ansible 2.5.2+dfsg-2 MIGRATED to testing (Debian testing watch)
[2018-05-18] ansible 2.5.2+dfsg-2 MIGRATED to testing (Debian testing watch)
[2018-05-12] Accepted ansible 2.5.2+dfsg-2 (source) into unstable (Harlan Lieberman-Berg)
[2018-05-10] Accepted ansible 2.5.2+dfsg-1~bpo9+1 (source) into stretch-backports (Harlan Lieberman-Berg)
[2018-05-04] ansible 2.5.2+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-04-28] Accepted ansible 2.5.2+dfsg-1 (source all) into unstable (Lee Garrett)
[2018-04-24] ansible 2.5.1+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-04-19] Accepted ansible 2.5.1+dfsg-1 (source all) into unstable (Lee Garrett)
[2018-03-31] ansible 2.5.0+dfsg-1 MIGRATED to testing (Debian testing watch)
[2018-03-25] Accepted ansible 2.5.0+dfsg-1 (source all) into unstable (Lee Garrett)

bugs [bug history graph]

all: 9
RC: 0
I&N: 8
M&W: 1
F&P: 0
patch: 3

links

homepage
lintian (3, 7)
buildd: logs, clang, reproducibility
popcon
browse source code
edit tags
security tracker
screenshots

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2.6.5+dfsg-1
3 bugs