[ubuntu/oneiric-security] puppet 2.7.1-1ubuntu3.6 (Accepted)
Tyler Hicks
tyhicks at canonical.com
Wed Apr 11 05:03:55 UTC 2012
puppet (2.7.1-1ubuntu3.6) oneiric-security; urgency=low
* SECURITY UPDATE: Arbitrary file writes via predictable filename usage in
appdmg and pkgdmg providers
- debian/patches/CVE-2012-1906_CVE-2012-1986_to_CVE-2012-1989.patch
- CVE-2012-1906
* SECURITY UPDATE: Arbitrary file reads via Filebucket REST requests
- debian/patches/CVE-2012-1906_CVE-2012-1986_to_CVE-2012-1989.patch
- CVE-2012-1986
* SECURITY UPDATE: Denial of service via Filebucket text/marshall support
- debian/patches/CVE-2012-1906_CVE-2012-1986_to_CVE-2012-1989.patch
- CVE-2012-1987
* SECURITY UPDATE: Arbitrary code execution via Filebucket requests
- debian/patches/CVE-2012-1906_CVE-2012-1986_to_CVE-2012-1989.patch
- CVE-2012-1988
* SECURITY UPDATE: Arbritrary file writes via predictable telnet output log
filename
- debian/patches/CVE-2012-1906_CVE-2012-1986_to_CVE-2012-1989.patch
- CVE-2012-1989
* debian/patches/fix-unpredictable-hash-ordering-tests.patch: Fix testsuite
failures caused by hash randomization in Ruby
Date: Tue, 10 Apr 2012 11:47:14 -0500
Changed-By: Tyler Hicks <tyhicks at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/oneiric/+source/puppet/2.7.1-1ubuntu3.6
-------------- next part --------------
Format: 1.8
Date: Tue, 10 Apr 2012 11:47:14 -0500
Source: puppet
Binary: puppet-common puppet puppetmaster-common puppetmaster puppetmaster-passenger vim-puppet puppet-el puppet-testsuite
Architecture: source
Version: 2.7.1-1ubuntu3.6
Distribution: oneiric-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Tyler Hicks <tyhicks at canonical.com>
Description:
puppet - Centralized configuration management - agent startup and compatib
puppet-common - Centralized configuration management
puppet-el - syntax highlighting for puppet manifests in emacs
puppet-testsuite - Centralized configuration management - test suite
puppetmaster - Centralized configuration management - master startup and compati
puppetmaster-common - Puppet master common scripts
puppetmaster-passenger - Centralised configuration management - master setup to run under
vim-puppet - syntax highlighting for puppet manifests in vim
Changes:
puppet (2.7.1-1ubuntu3.6) oneiric-security; urgency=low
.
* SECURITY UPDATE: Arbitrary file writes via predictable filename usage in
appdmg and pkgdmg providers
- debian/patches/CVE-2012-1906_CVE-2012-1986_to_CVE-2012-1989.patch
- CVE-2012-1906
* SECURITY UPDATE: Arbitrary file reads via Filebucket REST requests
- debian/patches/CVE-2012-1906_CVE-2012-1986_to_CVE-2012-1989.patch
- CVE-2012-1986
* SECURITY UPDATE: Denial of service via Filebucket text/marshall support
- debian/patches/CVE-2012-1906_CVE-2012-1986_to_CVE-2012-1989.patch
- CVE-2012-1987
* SECURITY UPDATE: Arbitrary code execution via Filebucket requests
- debian/patches/CVE-2012-1906_CVE-2012-1986_to_CVE-2012-1989.patch
- CVE-2012-1988
* SECURITY UPDATE: Arbritrary file writes via predictable telnet output log
filename
- debian/patches/CVE-2012-1906_CVE-2012-1986_to_CVE-2012-1989.patch
- CVE-2012-1989
* debian/patches/fix-unpredictable-hash-ordering-tests.patch: Fix testsuite
failures caused by hash randomization in Ruby
Checksums-Sha1:
e139d7d422275c5d8e30cff88d553300a76cf6f7 2299 puppet_2.7.1-1ubuntu3.6.dsc
d19a60e624690e8d78a4f4ff764ddc58e82cb58e 105902 puppet_2.7.1-1ubuntu3.6.debian.tar.gz
Checksums-Sha256:
92eff6cbd9a90a3705ca92d4d6ca89778f59095d5355ad17f551cd47e92084e2 2299 puppet_2.7.1-1ubuntu3.6.dsc
efc78a8a6d8566582f5aefb436844a8293383926c1c8469b5203efd7382333ed 105902 puppet_2.7.1-1ubuntu3.6.debian.tar.gz
Files:
5b25968dbc1ef32b69cb5f1ee625b9b4 2299 admin optional puppet_2.7.1-1ubuntu3.6.dsc
40c1e982643f73dc6f0341ebb2f0f2e9 105902 admin optional puppet_2.7.1-1ubuntu3.6.debian.tar.gz
Original-Maintainer: Puppet Package Maintainers <pkg-puppet-devel at lists.alioth.debian.org>
More information about the Oneiric-changes
mailing list