-
puppet (3.2.4-2ubuntu2.3) saucy-security; urgency=low
* SECURITY REGRESSION: Incorrect default file mode (LP: #1267385)
- debian/patches/CVE-2013-4969-regression.patch: fix incorrect file
mode in lib/puppet/type/file.rb, lib/puppet/util.rb,
spec/unit/type/file_spec.rb.
- CVE-2013-4969
-- Marc Deslauriers <email address hidden> Thu, 09 Jan 2014 07:48:28 -0500
-
puppet (3.2.4-2ubuntu2.2) saucy-security; urgency=low
* SECURITY UPDATE: unsafe use of temp files
- debian/patches/CVE-2013-4969-3.3.x-temp-file.patch: Use replace_file
to update a file's contents in lib/puppet/type/file.rb,
lib/puppet/util.rb, updated tests in
spec/integration/type/file_spec.rb, spec/unit/type/file_spec.rb.
- CVE-2013-4969
-- Marc Deslauriers <email address hidden> Mon, 23 Dec 2013 08:11:03 -0500
-
puppet (3.2.4-2ubuntu2.1) saucy; urgency=low
* Add required dependency ruby-hiera, without which puppet does not work
correctly in common cases (LP: #1242363).
* d/tests/parameterised-class: dep8 test for failure case.
-- Robie Basak <email address hidden> Fri, 29 Nov 2013 10:03:09 +0000
-
puppet (3.2.4-2ubuntu2) saucy; urgency=low
* debian/tests/control: invert order of tests, or else puppet-agent runs
after puppetmaster-passenger has already enabled the service.
-- Marc Deslauriers <email address hidden> Tue, 03 Sep 2013 16:39:37 -0400
-
puppet (3.2.4-2ubuntu1) saucy; urgency=low
* debian/control: change dependency back from ruby-augeas to
libaugeas-ruby as that is what's currently in saucy.
-- Marc Deslauriers <email address hidden> Tue, 03 Sep 2013 10:33:17 -0400
-
puppet (3.2.4-2) unstable; urgency=low
* Include patch from upstream to prevent duplicate nagios_ resources
(Closes: #721132)
* Add empty /usr/share/puppet/modules to puppet-common for puppet modules
-- Stig Sandbeck Mathisen <email address hidden> Sun, 01 Sep 2013 13:41:51 +0200
-
puppet (3.2.3-1) unstable; urgency=low
* Import upstream version 3.2.3
* Do not use "dpkg-maintscript-helper" on non-conffiles
(Closes: #713070)
* Bump standards version (no changes)
-- Stig Sandbeck Mathisen <email address hidden> Fri, 02 Aug 2013 23:07:48 +0200
-
puppet (3.2.2-1) unstable; urgency=high
* New upstream version (Closes: #712745, CVE-2013-3567)
- use packaged ruby-safe-yaml instead of the vendored gem
* Support apache 2.4 (Closes: #675409)
* Remove dependency on rails (Closes: #709636)
* Remove build dependency on ruby-rspec
* add dep8 tests
* puppetmaster-passenger.postinst: check if puppet.conf can be parsed on
install.
Thanks to Ubuntu
-- Stig Sandbeck Mathisen <email address hidden> Wed, 19 Jun 2013 11:45:46 +0200
-
puppet (3.1.1-1ubuntu1) saucy; urgency=low
* Merge with Debian; remaining changes:
- debian/puppetmaster-passenger.postinst: Make sure we error if puppet
config print doesn't work
- debian/puppetmaster-passenger.postinst: Ensure upgrades from
<= 2.7.11-1 fixup passenger apache configuration.
- Drop Build-Depends on ruby-rspec (in universe):
+ debian/control: remove ruby-rspec from Build-Depends
puppet (3.1.1-1) experimental; urgency=low
* New upstream release (CVE-2013-1640, CVE-2013-1652, CVE-2013-1653,
CVE-2013-1654, CVE-2013-1655, CVE-2013-2275)
puppet (3.1.0-1) experimental; urgency=low
* New upstream release
* Add no-rubygems patch
-- Matthias Klose <email address hidden> Sat, 04 May 2013 19:56:12 +0200
-
puppet (2.7.18-4ubuntu1) raring; urgency=low
* Merge from Debian unstable. This merges the vim addon fix in 2.7.18-2
(LP: #1163927). Remaining changes:
- debian/puppetmaster-passenger.postinst: Make sure we error if puppet
config print doesn't work
- debian/puppetmaster-passenger.postinst: Ensure upgrades from
<= 2.7.11-1 fixup passenger apache configuration.
- Drop Build-Depends on ruby-rspec (in universe):
+ debian/control: remove ruby-rspec from Build-Depends
+ debian/patches/no-rspec.patch: make Rakefile work anyway if rspec
isn't installed so we can use it in debian/rules.
* Drop upstreamed patches:
- debian/patches/security-mar-2013.patch
-- Robie Basak <email address hidden> Mon, 08 Apr 2013 15:03:25 +0100