Updating CHANGELOG for 2.1.6 final release

8 years ago · e06e9b40b7
parent a54a4fb78a
commit e06e9b40b7
1 changed files with 8 additions and 0 deletions
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@ -1,6 +1,14 @@
 Ansible Changes By Release
 ==========================

+## 2.1.6 "The Song Remains the Same" - 06-01-2017
+
+* Security fix for CVE-2017-7481 - data for lookup plugins used as variables was not being correctly marked as "unsafe".
+
+## 2.1.5 "The Song Remains the Same" - 03-27-2017
+
+* Security continued fix for CVE-2016-9587 - Handle some additional corner cases in the way conditionals are parsed and evaluated.
+
 ## 2.1.4 "The Song Remains the Same" - 01-16-2017

 * Security fix for CVE-2016-9587 - An attacker with control over a client system being managed by Ansible and the ability to send facts back to the Ansible server could use this flaw to execute arbitrary code on the Ansible server as the user and group Ansible is running as.