-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 14 Mar 2026 18:42:09 +0100 Source: ansible Architecture: source Version: 2.10.7+merged+base+2.10.17+dfsg-0+deb11u4 Distribution: bullseye-security Urgency: high Maintainer: Debian Python Team <[email protected]> Changed-By: Lee Garrett <[email protected]> Changes: ansible (2.10.7+merged+base+2.10.17+dfsg-0+deb11u4) bullseye-security; urgency=high . * Upload by the LTS Security Team. * Fix CVE-2024-11079: This vulnerability allows attackers to bypass unsafe content protections using the hostvars object to reference and execute templated content. This issue can lead to arbitrary code execution if remote data or module outputs are improperly templated within playbooks. Many thanks to Jochen Sprickerhof for providing the fix for the ANSIBLE_JINJA2_NATIVE=false test case! * Remove parts of filter_urls/groupby_filter integration tests: These tests run against jinja2 versions that are not shipped in bullseye and as such are irrelevant when they fail. Checksums-Sha1: 9ba2de3c6c21b4d9cad4f75b5beb47a0b72365e7 3509 ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u4.dsc f4078239c2a7ac2784dae54b86caf9736c6ff6b8 56388 ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u4.debian.tar.xz 97d3e173055e4ba2a9423acb7e194c794f72adf5 7750 ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u4_amd64.buildinfo Checksums-Sha256: c9aa213228a835dbe95060389d85d177c8f9407192b4dd8dfcb502e03b19ab11 3509 ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u4.dsc ed93a006c13cb50712ff8cff757c643745270a75a9a2b93bf8d59a524920fd7c 56388 ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u4.debian.tar.xz c44d794e87921ebe911d94eabb82e7479efd092a45911ec2e0b4a7489dc7e4fd 7750 ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u4_amd64.buildinfo Files: 786aae0890fef8a11e424ff9d82ce212 3509 admin optional ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u4.dsc d7231f1f4dc4240be58623a771cc1663 56388 admin optional ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u4.debian.tar.xz af113d94864219f46ec3e156d815bbde 7750 admin optional ansible_2.10.7+merged+base+2.10.17+dfsg-0+deb11u4_amd64.buildinfo
-----BEGIN PGP SIGNATURE----- iQQzBAEBCgAdFiEE2EfGJRCpwv8kLOAs1gShxII+4PgFAmm5220ACgkQ1gShxII+ 4Pj1YiAAjDfZOP5kD6JJd+IqIkYM6Yi7TFrSMykGZE33HskUi1I47TR5j88qyyMP uDhcmluDqpkCjj+KCA+91yZvWjt66+8Y8WvtNcZkqF2PF72yU1zYOfEK+tU9Yaw9 kB7+y2milbjQDTKSaqKQ81lIu0iAW5KGX7rPLZYP5qhdb9FjvLBw6OFHvnrexQzz mhVtp/pc55ALvXWCbfK9wH2SRvF6E4sa4KSKU50/ghB+i31NsYvVnBqTO5m3MkFV Daky+/NbpmwxRIUbA7DMHqPy8IbKmjAio/xesiqw4RnCV7B11rwkd//hOvJsxOp8 URNV1w2P2SjNWgR5ZuCvc2BOvA6cjPb5mMyAbYM4iwhL+BL+E5arGKq2c1uhUA6u qiWNq+3RMG1Wv0O+GkJWupcZqsKV0Yso/vRdfk5hJb7jdh91D7DZZDZJF8o9Gacv 6CTCu9ROKaQi5Uqy0vcvxjUFkQoNWBbloTBVZTdFCKM5tyTcMBy5wFmOyJifiEwE Nm0hSjv1BN8TRuBsG5seP2MmxNVu5FoZRsA/50BbTL/fMES5ybpq1CQpGH7y/GN2 WF1oaoxhLV8C47dB13ZzAKujW0Ojvri3b0xOmYhetEyh7gZiPPezrRacaz5ggLlA u7fWRXE+fCBwBPekxaYjxsaJLZMSwZXbNW6ttwTKo2oYL5PrPkfgyWYclQqBBwmY iOzqMqti0iNL7AdQ76OpATvw/mTCNmolB/friIKujh5hTzt1gQ0aTubBXUaglPrh 3LpZaojfPiBnUKuK+t8ke3KT9x41dAomI+OEtOBcVPwWw+YgfF9eWQJglZEOy1b+ 4HXIsrH2u4G0ZhpFcsfuaaQkVXE+83mROZjEUoXT3EnCs0ktnndCkpuWBm02BCgs f2/fS0CpmfzfC+QaKDu+3s6bj+QtZ0gX7rRS54/fBrOV+r/2yJUvjT3/Z70nsShf d2vXz6iKccsDoj/4Hq++1oz/BzPMGA59dWNvyLScSm1uhFkS6pt79NgMfgqP6lr+ ruCDQ+GXCjMfCPbCc9y/Kt2UwkCjGcmHm8iGnLSAiCADTCLaVq9nMa5d9iRzYx4U f08mUpZr2n4StH7CwlSQsDcBFeK9x6N4rv8/zLblvvgv6oeFWIYy/HfCzJzdgwnL VQ6arzwr9pJwAe11ATbLtLCt5BRC3aO6xAtPXTRccBX1hrveMc51T/o+XTqhZuAq WPwoJzzZ0tEkryPZroSuyVJJLgPhV75Uff3tKRlmS93/CeMhhZTLU6KQkuqePt4G FQZ0T/NzDmupBEy3SpdU1eaZvyy6wIQexmiftho5TgDo8t26FUufHZ8Ch9OhuQmc k1sQ675PTuuD8nB18rxvLoskI8Lf7w== =DoMF -----END PGP SIGNATURE-----
pgppnQVsMjZzd.pgp
Description: PGP signature
