diff --git a/.files b/.files
index 3b7927c..cfd64fa 100644
Binary files a/.files and b/.files differ
diff --git a/.rev b/.rev
index 3902efb..6210d08 100644
--- a/.rev
+++ b/.rev
@@ -779,4 +779,12 @@ numbers for further reference.
822847
+
+ c3781521eacb2922085bc4878b89f6e9
+ 2.9.12
+
+ dimstar_suse
+ update to 2.9.12 including back-port patch fixing a regression in 2.9.12
+ 826038
+
diff --git a/ansible-2.9.11.tar.gz b/ansible-2.9.11.tar.gz
deleted file mode 120000
index 80c10a0..0000000
--- a/ansible-2.9.11.tar.gz
+++ /dev/null
@@ -1 +0,0 @@
-/ipfs/bafybeiemga4tyw2dmwwjta456riq67apyjbefo7m62yj6rr2ifw2ocboeu
\ No newline at end of file
diff --git a/ansible-2.9.11.tar.gz.sha b/ansible-2.9.11.tar.gz.sha
deleted file mode 100644
index ea5862f..0000000
--- a/ansible-2.9.11.tar.gz.sha
+++ /dev/null
@@ -1 +0,0 @@
-88f9d033ece7fd51eca3abb4f02e13b63c924b97f9705a997d5a711c0cf42ab1 ansible-2.9.11.tar.gz
diff --git a/ansible-2.9.12.tar.gz b/ansible-2.9.12.tar.gz
new file mode 120000
index 0000000..423d39d
--- /dev/null
+++ b/ansible-2.9.12.tar.gz
@@ -0,0 +1 @@
+/ipfs/bafybeify2ogzhu7mkdx5nk3yjp3chlgnk2n36maqu422kme7gprode7ldm
\ No newline at end of file
diff --git a/ansible-2.9.12.tar.gz.sha b/ansible-2.9.12.tar.gz.sha
new file mode 100644
index 0000000..39019ab
--- /dev/null
+++ b/ansible-2.9.12.tar.gz.sha
@@ -0,0 +1 @@
+7e95ddf719190b068fafc7d7c7877c218054cc5da4f6d9d794faf7bc66dab774 ansible-2.9.12.tar.gz
diff --git a/ansible.changes b/ansible.changes
index bd363de..b866b96 100644
--- a/ansible.changes
+++ b/ansible.changes
@@ -1,4 +1,29 @@
-------------------------------------------------------------------
+Wed Aug 12 12:44:52 UTC 2020 - Michael Ströder
+
+- added fix-cron-regression-71207.patch
+
+-------------------------------------------------------------------
+Tue Aug 11 05:09:36 UTC 2020 - Michael Ströder
+
+- update to version 2.9.12 with many bug fixes,
+ most notably the following security fixes:
+ * security issue - copy - Redact the value of the no_log 'content'
+ parameter in the result's invocation.module_args in check mode.
+ Previously when used with check mode and with '-vvv', the module would
+ not censor the content if a change would be made to the destination path.
+ (CVE-2020-14332)
+ * security issue atomic_move - change default permissions when creating
+ temporary files so they are not world readable
+ (https://github.com/ansible/ansible/issues/67794) (CVE-2020-1736)
+ * Fix warning for default permission change when no mode is specified.
+ Follow up to https://github.com/ansible/ansible/issues/67794.
+ (CVE-2020-1736)
+ * Sanitize no_log values from any response keys that might be returned
+ from the uri module (CVE-2020-14330).
+ * reset logging level to INFO due to CVE-2019-14846.
+
+-------------------------------------------------------------------
Tue Jul 21 04:48:11 UTC 2020 - Michael Ströder
- update to version 2.9.11 with many bug fixes
diff --git a/ansible.spec b/ansible.spec
index 42a9061..327d945 100644
--- a/ansible.spec
+++ b/ansible.spec
@@ -220,7 +220,7 @@ Recommends: %{python}-six
Recommends: sshpass
%endif
Name: ansible
-Version: 2.9.11
+Version: 2.9.12
Release: 0
Summary: SSH-based configuration management, deployment, and task execution system
License: GPL-3.0-or-later
@@ -229,6 +229,7 @@ URL: https://ansible.com/
Source: https://releases.ansible.com/ansible/ansible-%{version}.tar.gz
Source1: https://releases.ansible.com/ansible/ansible-%{version}.tar.gz.sha
Source99: ansible-rpmlintrc
+Patch1: fix-cron-regression-71207.patch
BuildArch: noarch
# extented documentation
%if 0%{?with_docs}
@@ -288,6 +289,7 @@ automatically.
%prep
%setup -q -n ansible-%{version}
+%patch1 -p1
for file in .git_keep .travis.yml ; do
find . -name "$file" -delete
diff --git a/fix-cron-regression-71207.patch b/fix-cron-regression-71207.patch
new file mode 100644
index 0000000..71c6694
--- /dev/null
+++ b/fix-cron-regression-71207.patch
@@ -0,0 +1,11 @@
+diff -ur ansible-2.9.12.orig/lib/ansible/modules/system/cron.py ansible-2.9.12/lib/ansible/modules/system/cron.py
+--- ansible-2.9.12.orig/lib/ansible/modules/system/cron.py 2020-08-11 05:22:08.000000000 +0200
++++ ansible-2.9.12/lib/ansible/modules/system/cron.py 2020-08-12 14:42:34.519669206 +0200
+@@ -258,6 +258,7 @@
+ try:
+ f = open(self.b_cron_file, 'rb')
+ self.n_existing = to_native(f.read(), errors='surrogate_or_strict')
++ self.lines = self.n_existing.splitlines()
+ f.close()
+ except IOError:
+ # cron file does not exist