Add jenkins_plugin CVE fix to the changelog

7 years ago · 999404121f
parent 0d61acc730
commit 999404121f
1 changed files with 3 additions and 0 deletions
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@ -7,6 +7,9 @@ Ansible Changes By Release

 ### Bugfixes

+* Security fix for CVE-2017-7550 the jenkins_plugin module was logging the jenkins
+  server password if the url_password was passed via the params field:
+  https://github.com/ansible/ansible/pull/30875
 * Update openssl\* module documentation to show openssl-0.16 is the minimum version
 * Fix openssl_certificate's csr handling
 * Python-3 fixes