diff --git a/.files b/.files
index 3b7927c..cfd64fa 100644
Binary files a/.files and b/.files differ
diff --git a/.rev b/.rev
index 3902efb..6210d08 100644
--- a/.rev
+++ b/.rev
@@ -779,4 +779,12 @@ numbers for further reference.
     <comment></comment>
     <requestid>822847</requestid>
   </revision>
+  <revision rev="69" vrev="1">
+    <srcmd5>c3781521eacb2922085bc4878b89f6e9</srcmd5>
+    <version>2.9.12</version>
+    <time>1597306641</time>
+    <user>dimstar_suse</user>
+    <comment>update to 2.9.12 including back-port patch fixing a regression in 2.9.12</comment>
+    <requestid>826038</requestid>
+  </revision>
 </revisionlist>
diff --git a/ansible-2.9.11.tar.gz b/ansible-2.9.11.tar.gz
deleted file mode 120000
index 80c10a0..0000000
--- a/ansible-2.9.11.tar.gz
+++ /dev/null
@@ -1 +0,0 @@
-/ipfs/bafybeiemga4tyw2dmwwjta456riq67apyjbefo7m62yj6rr2ifw2ocboeu
\ No newline at end of file
diff --git a/ansible-2.9.11.tar.gz.sha b/ansible-2.9.11.tar.gz.sha
deleted file mode 100644
index ea5862f..0000000
--- a/ansible-2.9.11.tar.gz.sha
+++ /dev/null
@@ -1 +0,0 @@
-88f9d033ece7fd51eca3abb4f02e13b63c924b97f9705a997d5a711c0cf42ab1  ansible-2.9.11.tar.gz
diff --git a/ansible-2.9.12.tar.gz b/ansible-2.9.12.tar.gz
new file mode 120000
index 0000000..423d39d
--- /dev/null
+++ b/ansible-2.9.12.tar.gz
@@ -0,0 +1 @@
+/ipfs/bafybeify2ogzhu7mkdx5nk3yjp3chlgnk2n36maqu422kme7gprode7ldm
\ No newline at end of file
diff --git a/ansible-2.9.12.tar.gz.sha b/ansible-2.9.12.tar.gz.sha
new file mode 100644
index 0000000..39019ab
--- /dev/null
+++ b/ansible-2.9.12.tar.gz.sha
@@ -0,0 +1 @@
+7e95ddf719190b068fafc7d7c7877c218054cc5da4f6d9d794faf7bc66dab774  ansible-2.9.12.tar.gz
diff --git a/ansible.changes b/ansible.changes
index bd363de..b866b96 100644
--- a/ansible.changes
+++ b/ansible.changes
@@ -1,4 +1,29 @@
 -------------------------------------------------------------------
+Wed Aug 12 12:44:52 UTC 2020 - Michael Ströder <michael@stroeder.com>
+
+- added fix-cron-regression-71207.patch
+
+-------------------------------------------------------------------
+Tue Aug 11 05:09:36 UTC 2020 - Michael Ströder <michael@stroeder.com>
+
+- update to version 2.9.12 with many bug fixes,
+  most notably the following security fixes:
+  * security issue - copy - Redact the value of the no_log 'content' 
+    parameter in the result's invocation.module_args in check mode. 
+    Previously when used with check mode and with '-vvv', the module would 
+    not censor the content if a change would be made to the destination path. 
+    (CVE-2020-14332)
+  * security issue atomic_move - change default permissions when creating 
+    temporary files so they are not world readable 
+    (https://github.com/ansible/ansible/issues/67794) (CVE-2020-1736)
+  * Fix warning for default permission change when no mode is specified. 
+    Follow up to https://github.com/ansible/ansible/issues/67794. 
+    (CVE-2020-1736)
+  * Sanitize no_log values from any response keys that might be returned 
+    from the uri module (CVE-2020-14330).
+  * reset logging level to INFO due to CVE-2019-14846.
+
+-------------------------------------------------------------------
 Tue Jul 21 04:48:11 UTC 2020 - Michael Ströder <michael@stroeder.com>
 
 - update to version 2.9.11 with many bug fixes
diff --git a/ansible.spec b/ansible.spec
index 42a9061..327d945 100644
--- a/ansible.spec
+++ b/ansible.spec
@@ -220,7 +220,7 @@ Recommends:     %{python}-six
 Recommends:     sshpass
 %endif
 Name:           ansible
-Version:        2.9.11
+Version:        2.9.12
 Release:        0
 Summary:        SSH-based configuration management, deployment, and task execution system
 License:        GPL-3.0-or-later
@@ -229,6 +229,7 @@ URL:            https://ansible.com/
 Source:         https://releases.ansible.com/ansible/ansible-%{version}.tar.gz
 Source1:        https://releases.ansible.com/ansible/ansible-%{version}.tar.gz.sha
 Source99:       ansible-rpmlintrc
+Patch1:         fix-cron-regression-71207.patch
 BuildArch:      noarch
 # extented documentation
 %if 0%{?with_docs}
@@ -288,6 +289,7 @@ automatically.
 
 %prep
 %setup -q -n ansible-%{version}
+%patch1 -p1
 
 for file in .git_keep .travis.yml ; do
   find . -name "$file" -delete
diff --git a/fix-cron-regression-71207.patch b/fix-cron-regression-71207.patch
new file mode 100644
index 0000000..71c6694
--- /dev/null
+++ b/fix-cron-regression-71207.patch
@@ -0,0 +1,11 @@
+diff -ur ansible-2.9.12.orig/lib/ansible/modules/system/cron.py ansible-2.9.12/lib/ansible/modules/system/cron.py
+--- ansible-2.9.12.orig/lib/ansible/modules/system/cron.py	2020-08-11 05:22:08.000000000 +0200
++++ ansible-2.9.12/lib/ansible/modules/system/cron.py	2020-08-12 14:42:34.519669206 +0200
+@@ -258,6 +258,7 @@
+             try:
+                 f = open(self.b_cron_file, 'rb')
+                 self.n_existing = to_native(f.read(), errors='surrogate_or_strict')
++                self.lines = self.n_existing.splitlines()
+                 f.close()
+             except IOError:
+                 # cron file does not exist