From 999404121ffa4dfb500a7734c68b2ee2ddb415aa Mon Sep 17 00:00:00 2001
From: Toshio Kuratomi <a.badger@gmail.com>
Date: Tue, 26 Sep 2017 11:24:31 -0700
Subject: [PATCH] Add jenkins_plugin CVE fix to the changelog

---
 CHANGELOG.md | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index d75d010ec2e..56bbb9094f4 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -7,6 +7,9 @@ Ansible Changes By Release
 
 ### Bugfixes
 
+* Security fix for CVE-2017-7550 the jenkins_plugin module was logging the jenkins
+  server password if the url_password was passed via the params field:
+  https://github.com/ansible/ansible/pull/30875
 * Update openssl\* module documentation to show openssl-0.16 is the minimum version
 * Fix openssl_certificate's csr handling
 * Python-3 fixes