The following list summarizes the additions, changes, and modifications which were made to Ansible Tower 3.6.4.
Added additional metrics to the Prometheus /api/v2/metrics/ endpoint for reporting remaining instance capacity
Fixed Tower to allow users to subscribe to playbook output in organizations they do not have RBAC access to via Tower’s websocket interface (CVE-2020-10698)
Fixed OAuth2 refresh tokens to properly respect custom expiration settings (CVE-2020-10709)
Fixed event hostnames to be recorded for playbooks run on isolated nodes
Fixed a PostgreSQL issue that caused upgrade failures in certain situations
Fixed the search for Source Control credentials in the Tower user interface
Fixed a performance issue to no longer delay the output of project updates for certain users
Fixed the installations to no longer fail with admin passwords that contain certain special characters
Fixed the start time to correctly set for approval notifications
Fixed an inconsistency in gathered inventory analytics
Improved memcached in OpenShift deployments to listen on a more secure domain socket (CVE-2020-10697)
Updated Tower’s single sign-on integration to address several upcoming GitHub API deprecations
Updated the Twisted library to address CVE-2020-10108 and CVE-2020-10109
Updated translations
For older version of the release notes, as well as other reference materials, refer to the Ansible Tower Release Notes.