ansible/changelogs/fragments/subversion_password.yaml

security_fixes:
- >
  **security issue** - The ``subversion`` module provided the password
  via the svn command line option ``--password`` and can be retrieved
  from the host's /proc/<pid>/cmdline file. Update the module to use
  the secure ``--password-from-stdin`` option instead, and add a warning
  in the module and in the documentation if svn version is too old to
  support it.
  (CVE-2020-1739)
add changelog categories, update CVE fragments to use security_fix category (#69968) * use security_fix category in changelogs for CVEs * these fragments do not say CVE but are security fixes Co-authored-by: Alicia Cozine <acozine@users.noreply.github.com> 2020-06-11 19:24:01 +02:00			`security_fixes:`
subversion module - provide password securely when possible or warn (#67829) * subversion module - provide password securely with svn command line option --password-from-stdin when possible, and provide a warning otherwise. * Update lib/ansible/modules/source_control/subversion.py. * Add a test. Co-authored-by: Sam Doran <sdoran@redhat.com> 2020-04-13 16:21:10 +02:00			`- >`
			security issue - The ``subversion`` module provided the password
			via the svn command line option ``--password`` and can be retrieved
			`from the host's /proc/<pid>/cmdline file. Update the module to use`
			the secure ``--password-from-stdin`` option instead, and add a warning
			`in the module and in the documentation if svn version is too old to`
			`support it.`
			`(CVE-2020-1739)`