Ubuntu

“puppet” 2.7.11-1ubuntu2.2 source package in The Precise Pangolin

Publishing history

2.7.11-1ubuntu2.2
SUPERSEDED: Precise pocket Updates in component main and section admin
  • Removed from disk on 2013-06-20.
  • Removal requested on 2013-06-19.
  • Superseded on 2013-06-18 by puppet - 2.7.11-1ubuntu2.3
  • Published on 2013-03-12
  • Copied from ubuntu precise in Private PPA for Ubuntu Security Team by Ubuntu Archive Robot
2.7.11-1ubuntu2.2
SUPERSEDED: Precise pocket Security in component main and section admin
  • Removed from disk on 2013-06-20.
  • Removal requested on 2013-06-19.
  • Superseded on 2013-06-18 by puppet - 2.7.11-1ubuntu2.3
  • Published on 2013-03-12
  • Copied from ubuntu precise in Private PPA for Ubuntu Security Team by Marc Deslauriers

Changelog

puppet (2.7.11-1ubuntu2.2) precise-security; urgency=low

  * SECURITY UPDATE: Multiple security issues
    - debian/patches/security-mar-2013.patch: upstream patch to fix
      multiple security issues.
    - CVE-2013-1640 - Remote code execution on master from authenticated clients
    - CVE-2013-1652 - Insufficient input validation
    - CVE-2013-1653 - Remote code execution
    - CVE-2013-1654 - Protocol downgrade
    - CVE-2013-1655 - Unauthenticated remote code execution risk
    - CVE-2013-2275 - Incorrect default report ACL
 -- Marc Deslauriers <email address hidden>   Mon, 11 Mar 2013 12:32:11 -0400