Dear ElastiCluster users: I have just pushed commit 133f10 to the "master" branch; Ansible 2.2.1+ is now required to fix a possible "command execution on Ansible controller from host" (CVE-2016-9587). Read more details about this vulnerability in Ansible at: https://www.computest.nl/advisories/CT-2017-0109_Ansible.txt
Note that versioning constraints are only checked when `setup.py install` is run; just pulling the new code from GitHub will *not* upgrade Ansible to a safe version. Follow the complete ElastiCluster installation procedure to upgrade: http://elasticluster.readthedocs.io/en/latest/install.html#installing-development-code-from-github Ciao, R -- Riccardo Murri, Schwerzenbacherstrasse 2, CH-8606 Nänikon, Switzerland -- You received this message because you are subscribed to the Google Groups "elasticluster" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
