wbrawner/ansible
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
ansible/changelogs/fragments/fix_safe_eval.yml
Brian Coca 04e94274fb safe_eval fix (#57188) 
* just dont pass locals

 - also fix globals
 - added tests

* fixed tests

(cherry picked from commit b9b0b23015)
2019-06-20 18:22:29 -07:00

2 lines
215 B
YAML
Raw Blame History

bugfixes:
- Handle improper variable substitution that was happening in safe_eval, it was always meant to just do 'type enforcement' and have Jinja2 deal with all variable interpolation. Also see CVE-2019-10156
Reference in a new issue View git blame Copy permalink