Synopsis
Critical: Red Hat Ansible Tower 3.3.1-2 Release - Container Image
Type/Severity
Security Advisory: Critical
Topic
Security Advisory
Description
Red Hat Ansible Tower 3.3.1 is now available and contains the following bug fixes:
- Fixed event callback error when in-line vaulted variables are used with ``include_vars``
- Fixed HSTS and X-Frame-Options to properly be set in nginx configuration
- Fixed isolated node setup to no longer fail when ``ansible_host`` is used
- Fixed selection of custom virtual environments in job template creation
- Fixed websockets for job details to properly work
- Fixed the ``/api/v2/authtoken`` compatibility shim
- Fixed page size selection on the jobs screen
- Fixed instances in an instance group to properly be disabled in the user interface
- Fixed the job template selection in workflow creation to properly render
- Fixed ``member_attr`` to properly set on some LDAP configurations during upgrade, preventing login
- Fixed ``PosixUIDGroupType`` LDAP configurations
- Improved the RAM requirement in the installer preflight check
- Updated Tower to properly report an error when relaunch was used on a set of failed hosts that is too large
- Updated sosreport configuration to gather more python environment, nginx, and supervisor configuration
- Fixed display of extra_vars for scheduled jobs
Solution
The Ansible Tower Upgrade and Migration Guide is available at: https://docs.ansible.com/ansible-tower/latest/html/upgrade-migration-guide/index.html
Affected Products
-
Red Hat Ansible Tower 3.3 x86_64
Fixes
(none)
CVEs
References
Vulmon