Ypid

**Name of the Vulnerable Software and Affected Versions** Ansible versions prior to 2.2.0 **Description** A flaw was found in the `apt key` module, which does not properly verify key fingerprints. This allows a remote adversary to create an OpenPGP key that matches the short key ID and inject this key instead of the correct key. **Recommendations** For versions prior to 2.2.0, update to version 2.2.0 or later to resolve the issue. As a temporary workaround, consider disabling the `apt key` module until a patch is available. Restrict access to the `apt key` module to minimize the risk of exploitation.