{"update": {"autokarma": true, "autotime": false, "stable_karma": 3, "stable_days": 0, "unstable_karma": -3, "require_bugs": true, "require_testcases": true, "display_name": "", "notes": "Update to ansible 2.2.1. Fixes several CVEs as well as a number of other bugfixes. \n\nSee: https://github.com/ansible/ansible/blob/stable-2.2/CHANGELOG.md for full changes.\n", "type": "security", "status": "stable", "request": null, "severity": "unspecified", "suggest": "unspecified", "locked": false, "pushed": true, "critpath": false, "critpath_groups": null, "close_bugs": true, "date_submitted": "2017-01-16 23:04:41", "date_modified": "2017-01-18 20:52:04", "date_approved": null, "date_testing": "2017-01-17 20:24:42", "date_stable": "2017-01-25 16:32:45", "alias": "FEDORA-2017-cb88734094", "test_gating_status": null, "from_tag": null, "date_pushed": "2017-01-25 16:32:45", "meets_testing_requirements": false, "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2017-cb88734094", "title": "ansible-2.2.1.0-1.fc25", "version_hash": "57648d0ce777d1451d07eee04f64714b7d143d7d", "release": {"name": "F25", "long_name": "Fedora 25", "version": "25", "id_prefix": "FEDORA", "branch": "f25", "dist_tag": "f25", "stable_tag": "f25-updates", "testing_tag": "f25-updates-testing", "candidate_tag": "f25-updates-candidate", "pending_signing_tag": "f25-signing-pending", "pending_testing_tag": "f25-updates-testing-pending", "pending_stable_tag": "f25-updates-pending", "override_tag": "f25-override", "mail_template": "fedora_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": null, "package_manager": "dnf", "testing_repository": "updates-testing", "released_on": null, "eol": null, "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "kevin", "email": "kevin@scrye.com", "id": 137, "avatar": "https://seccdn.libravatar.org/avatar/05d9feede3ce862bdfd16271134edeba147128c93ae9299fca87f8135ae2b2fd?s=24&d=retro", "openid": "kevin.id.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "security_respons"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "bodhiadmin"}, {"name": "infra-sig"}, {"name": "sysadmin-main"}, {"name": "releng-team"}, {"name": "sysadmin-dba"}, {"name": "sysadmin-jenkins"}, {"name": "freemedia"}, {"name": "gitspin-kickstarts"}, {"name": "wikiadmin"}, {"name": "aws-iam"}, {"name": "wikiedit"}, {"name": "epel-wranglers"}, {"name": "sysadmin-cloud"}, {"name": "sysadmin-backup"}, {"name": "upstream-test"}, {"name": "irc-support-operators"}, {"name": "sysadmin-osbs"}, {"name": "aws-s3"}, {"name": "bzrpython-fedora"}, {"name": "fedora-contributor"}, {"name": "aws"}, {"name": "fi-apprentice"}, {"name": "sysadmin-accounts"}, {"name": "msftazure"}, {"name": "server-wg"}, {"name": "sysadmin-secondary"}, {"name": "fedora-hams"}, {"name": "signers"}, {"name": "sysadmin-devel"}, {"name": "aws-copr"}, {"name": "fedorabugs"}, {"name": "sysadmin-spin"}, {"name": "sysadmin-logs"}, {"name": "sysadmin-tools"}, {"name": "cvsadmin"}, {"name": "sysadmin-releng"}, {"name": "sysadmin-hosted"}, {"name": "sysadmin-openshift"}, {"name": "aws-master"}, {"name": "ipausers"}, {"name": "sysadmin-gallery"}, {"name": "accounts"}, {"name": "sysadmin-veteran"}, {"name": "gitfedbot"}, {"name": "fesco"}, {"name": "sysadmin-survey"}, {"name": "web"}, {"name": "sysadmin-coreos"}, {"name": "cvsfedora"}, {"name": "aws-billing"}, {"name": "aws-s3-readonly"}, {"name": "admins"}, {"name": "epel-cabal"}, {"name": "sysadmin-dns"}, {"name": "signed_fpca"}, {"name": "sysadmin-noc"}, {"name": "sysadmin-qa"}, {"name": "hosted-content"}, {"name": "sysadmin-cvs"}, {"name": "torrentadmin"}, {"name": "gitfedora-web"}, {"name": "sysadmin-darkserver"}, {"name": "gitcsi"}, {"name": "gitformulas"}, {"name": "sysadmin-web"}, {"name": "sysadmin-ask"}, {"name": "communishift"}, {"name": "vendor-support"}, {"name": "sysadmin-calendar"}, {"name": "aws-fedoramirror"}, {"name": "aws-infra"}, {"name": "sysadmin-packages"}, {"name": "sysadmin"}, {"name": "communishift-admins"}, {"name": "mobility-sig"}, {"name": "ibmcloud"}, {"name": "sysadmin-updates"}, {"name": "gitlab-fedora-admin"}, {"name": "docs"}, {"name": "sysadmin-badges"}, {"name": "hetznercloud"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by kevin. ", "timestamp": "2017-01-16 23:04:41", "update_id": 77811, "user_id": 91, "id": 549807, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing.", "timestamp": "2017-01-17 21:51:31", "update_id": 77811, "user_id": 91, "id": 550227, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "All playbooks work well", "timestamp": "2017-01-18 20:05:13", "update_id": 77811, "user_id": 202, "id": 550689, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "dandim", "email": "dan.dim@seznam.cz", "id": 202, "avatar": "https://seccdn.libravatar.org/avatar/f0f96b1ac727426da54b2b24ac6b98a5f075783c24214b710f8893cd9b1ae00e?s=24&d=retro", "openid": "dandim.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}, {"karma": 0, "karma_critpath": 0, "text": "kevin edited this update.", "timestamp": "2017-01-18 20:52:03", "update_id": 77811, "user_id": 91, "id": 550705, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "All works well. Has critical security fix - EPEL7 is out already.", "timestamp": "2017-01-23 14:48:15", "update_id": 77811, "user_id": 3262, "id": 552927, "bug_feedback": [{"karma": 1, "comment_id": 552927, "bug_id": 1412357, "bug": {"bug_id": 1412357, "title": "CVE-2016-9587 Ansible: Compromised remote hosts can lead to running commands on the Ansible controller [epel-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 552927, "bug_id": 1396176, "bug": {"bug_id": 1396176, "title": "CVE-2016-8647 Ansible: in some circumstances the mysql_user module may fail to correctly change a password [epel-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "leoluk", "email": "mail@leoschabel.de", "id": 3262, "avatar": "https://seccdn.libravatar.org/avatar/45a66c530acb64db8fe4e68966f5ffbf6cf39b0c2152433fbba43b71a22d9263?s=24&d=retro", "openid": "leoluk.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes", "timestamp": "2017-01-25 00:00:27", "update_id": 77811, "user_id": 91, "id": 553518, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by kevin. ", "timestamp": "2017-01-25 00:24:27", "update_id": 77811, "user_id": 91, "id": 553566, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable.", "timestamp": "2017-01-25 19:49:01", "update_id": 77811, "user_id": 91, "id": 553838, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "ansible-2.2.1.0-1.fc25", "signed": true, "release_id": 15, "type": "rpm", "epoch": 0}], "bugs": [{"bug_id": 1396176, "title": "CVE-2016-8647 Ansible: in some circumstances the mysql_user module may fail to correctly change a password [epel-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 549956, "bug_id": 1396176, "comment": {"karma": 1, "karma_critpath": 0, "text": "Looks good to me. Tested in https://travis-ci.org/CSC-IT-Center-for-Science/fgci-ansible/jobs/192604321 with installing \"https://kojipkgs.fedoraproject.org//packages/ansible/2.2.1.0/1.el7/noarch/ansible-2.2.1.0-1.el7.noarch.rpm\" on CentOS7", "timestamp": "2017-01-17 08:35:02", "update_id": 77813, "user_id": 3399, "id": 549956, "testcase_feedback": [], "user": {"name": "martbhell", "email": "martbhell+fedora@gmail.com", "id": 3399, "avatar": "https://seccdn.libravatar.org/avatar/9a2089f18a649ab8b0f41960b4df6b511cf504e293123d7a6d257a9e89606e30?s=24&d=retro", "openid": "martbhell.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 549970, "bug_id": 1396176, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works fine with a playbook that's unfortunately not publicly available as of now.", "timestamp": "2017-01-17 10:52:20", "update_id": 77813, "user_id": 1942, "id": 549970, "testcase_feedback": [], "user": {"name": "vpv", "email": "vpvainio@iki.fi", "id": 1942, "avatar": "https://seccdn.libravatar.org/avatar/a71290d60deeb8955704821ecb87e5cbd7b433344d4e3bf95fe17baf66a5e33c?s=24&d=retro", "openid": "vpv.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "l10n"}, {"name": "cvsl10n"}]}}}, {"karma": 0, "comment_id": 550659, "bug_id": 1396176, "comment": {"karma": 0, "karma_critpath": 0, "text": "Works for me", "timestamp": "2017-01-18 18:20:04", "update_id": 77814, "user_id": 1079, "id": 550659, "testcase_feedback": [], "user": {"name": "phips", "email": "mark@probably.co.uk", "id": 1079, "avatar": "https://seccdn.libravatar.org/avatar/a2892832e7e14dd50ff138a1f84848435c07aaa299a8af45b658e76fcf5b3f13?s=24&d=retro", "openid": "phips.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 550660, "bug_id": 1396176, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2017-01-18 18:20:32", "update_id": 77814, "user_id": 1079, "id": 550660, "testcase_feedback": [], "user": {"name": "phips", "email": "mark@probably.co.uk", "id": 1079, "avatar": "https://seccdn.libravatar.org/avatar/a2892832e7e14dd50ff138a1f84848435c07aaa299a8af45b658e76fcf5b3f13?s=24&d=retro", "openid": "phips.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 550663, "bug_id": 1396176, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2017-01-18 18:24:16", "update_id": 77813, "user_id": 1079, "id": 550663, "testcase_feedback": [], "user": {"name": "phips", "email": "mark@probably.co.uk", "id": 1079, "avatar": "https://seccdn.libravatar.org/avatar/a2892832e7e14dd50ff138a1f84848435c07aaa299a8af45b658e76fcf5b3f13?s=24&d=retro", "openid": "phips.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 551250, "bug_id": 1396176, "comment": {"karma": 1, "karma_critpath": 0, "text": "Tested **ansible-2.2.1.0-1.el7.noarch.rpm** on CentOS 7. All our playbooks are private and I haven't tested the CVE in question but there are no general regressions detected. We cover many of the AWS cloud modules and all looks good.", "timestamp": "2017-01-19 16:42:19", "update_id": 77813, "user_id": 3409, "id": 551250, "testcase_feedback": [], "user": {"name": "jamesdmorgan", "email": "james.morgan@made.com", "id": 3409, "avatar": "https://seccdn.libravatar.org/avatar/df120e538e9f26e694424fcdd19b0d1023a1a0d215ee73ca4c828f098f7bf70e?s=24&d=retro", "openid": "jamesdmorgan.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 552906, "bug_id": 1396176, "comment": {"karma": 1, "karma_critpath": 0, "text": " ", "timestamp": "2017-01-23 13:09:00", "update_id": 77814, "user_id": 3354, "id": 552906, "testcase_feedback": [], "user": {"name": "jylenhof", "email": "jean-yves@lenhof.eu.org", "id": 3354, "avatar": "https://seccdn.libravatar.org/avatar/dd11bb7e3098b39f21de9b7fbf5aa98acb16dc61fff13b26c1ad8bd1acb67638?s=24&d=retro", "openid": "jylenhof.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 552927, "bug_id": 1396176, "comment": {"karma": 0, "karma_critpath": 0, "text": "All works well. Has critical security fix - EPEL7 is out already.", "timestamp": "2017-01-23 14:48:15", "update_id": 77811, "user_id": 3262, "id": 552927, "testcase_feedback": [], "user": {"name": "leoluk", "email": "mail@leoschabel.de", "id": 3262, "avatar": "https://seccdn.libravatar.org/avatar/45a66c530acb64db8fe4e68966f5ffbf6cf39b0c2152433fbba43b71a22d9263?s=24&d=retro", "openid": "leoluk.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 556213, "bug_id": 1396176, "comment": {"karma": 1, "karma_critpath": 0, "text": "Working here", "timestamp": "2017-01-31 14:42:17", "update_id": 77814, "user_id": 3284, "id": 556213, "testcase_feedback": [], "user": {"name": "tahvok", "email": "tahvok@gmail.com", "id": 3284, "avatar": "https://seccdn.libravatar.org/avatar/84cc557222d1556f661af940fcb1162f4a8437b425df78bdce66bb1e1592c491?s=24&d=retro", "openid": "tahvok.id.fedoraproject.org", "groups": []}}}]}, {"bug_id": 1412357, "title": "CVE-2016-9587 Ansible: Compromised remote hosts can lead to running commands on the Ansible controller [epel-all]", "security": true, "parent": false, "feedback": [{"karma": 1, "comment_id": 552927, "bug_id": 1412357, "comment": {"karma": 0, "karma_critpath": 0, "text": "All works well. Has critical security fix - EPEL7 is out already.", "timestamp": "2017-01-23 14:48:15", "update_id": 77811, "user_id": 3262, "id": 552927, "testcase_feedback": [], "user": {"name": "leoluk", "email": "mail@leoschabel.de", "id": 3262, "avatar": "https://seccdn.libravatar.org/avatar/45a66c530acb64db8fe4e68966f5ffbf6cf39b0c2152433fbba43b71a22d9263?s=24&d=retro", "openid": "leoluk.id.fedoraproject.org", "groups": []}}}]}], "updateid": "FEDORA-2017-cb88734094", "karma": 1, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}