split PS wrapper and payload (CVE-2018-16859) (#49145)

* prevent scriptblock logging from logging payload contents * added tests to verify no payload contents in PS Operational event log * fix script action to send split-aware wrapper * fix CLIXML error parser (return to -EncodedCommand exposed problems with it) * addresses CVE-2018-16859
author: Matt Davis <nitzmahone@users.noreply.github.com> 2018-11-26 15:33:48 -0800
committer: GitHub <noreply@github.com> 2018-11-26 15:33:48 -0800
commit: 0d746b4198abf84290a093b83cf02b4203d73d9f (patch)
tree: 9cd3f079f8d9419b3944f4b3704871def645486f /changelogs
parent: bbbfa29cbea29786ac484e8b74c80f1a55faff29 (diff)
download: ansible-0d746b4198abf84290a093b83cf02b4203d73d9f.tar.gz
1 files changed, 2 insertions, 0 deletions
diff --git a/changelogs/fragments/ps_sb_logging.yaml b/changelogs/fragments/ps_sb_logging.yaml
new file mode 100644
index 0000000000..78241df449
--- /dev/null
+++ b/changelogs/fragments/ps_sb_logging.yaml
@@ -0,0 +1,2 @@
+bugfixes:
+- Windows - prevent sensitive content from appearing in scriptblock logging (CVE 2018-16859)
author	Matt Davis <nitzmahone@users.noreply.github.com>	2018-11-26 15:33:48 -0800
committer	GitHub <noreply@github.com>	2018-11-26 15:33:48 -0800
commit	0d746b4198abf84290a093b83cf02b4203d73d9f (patch)
tree	9cd3f079f8d9419b3944f4b3704871def645486f /changelogs
parent	bbbfa29cbea29786ac484e8b74c80f1a55faff29 (diff)
download	ansible-0d746b4198abf84290a093b83cf02b4203d73d9f.tar.gz