34fecf9 Backport for CVE-2020-8631 and CVE-2020-8632

Authored and Committed by otubo 3 years ago
    Backport for CVE-2020-8631 and CVE-2020-8632
    
    This commit backports the upstream commits for the CVEs:
    
    - CVE-2020-8632 cloud-init: Too short random password length in
      cc_set_password in config/cc_set_passwords.py
      <https://bugzilla.redhat.com/show_bug.cgi?id=1798729>
      ./cloud-init-19.4-cc_set_password-increase-random-pwlength-from-9-to-2.patch
    
    - CVE-2020-8631 cloud-init: Use of random.choice when generating random
      password
      <https://bugzilla.redhat.com/show_bug.cgi?id=1798732>
      ./cloud-init-19.4-utils-use-SystemRandom-when-generating-random-passwo.patch
    
    Signed-off-by: Eduardo Otubo <otubo@redhat.com>
    
        
file modified
+7 -1