CVE-2018-12557

CVE-2018-12557

An issue was discovered in Zuul 3.x before 3.1.0. If nodes become offline during the build, the no_log attribute of a task is ignored. If the unreachable error occurred in a task used with a loop variable (e.g., with_items), the contents of the loop items would be printed in the console. This could lead to accidentally leaking credentials or secrets.

Source: CVE-2018-12557

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다