Revisions of puppet
Stefan Lijewski (lijews)
accepted
request 162847
from
Stefan Lijewski (lijews)
(revision 5)
CVEs: - Fix bnc#809839 VUL-0: puppet: Multiple vulnerabilities in puppet framework versions not vulnerable 2.6.18 2.7.21 3.1.1
Stefan Lijewski (lijews)
accepted
request 130288
from
Stefan Lijewski (lijews)
(revision 4)
CVEs: -Fix bnc#770828 - VUL-0: CVE-2012-3864: puppet: authenticated clients can read arbitrary files via a flaw in puppet master -Fix bnc#770829 - VUL-0: CVE-2012-3865: puppet: arbitrary file delete / Denial of Service on Puppet Master by authenticated clients -Fix bnc#770833 - VUL-1: CVE-2012-3867: puppet: insufficient input validation for agent certificate names -I used the new stable version, 2.6.17, which only receives security fixes. -Removed runlevel 4.
Stefan Lijewski (lijews)
accepted
request 127980
from
Stefan Lijewski (lijews)
(revision 3)
-Fixed bnc#747657 VUL-0: puppet: CVE-2012-1053, CVE-2012-1054: improper privilege dropping, file handling flaws -This was done by updating to the new version in stable branch. -The stable branch receives only security fixes and this update does not provide any new features. -Fixed bnc#755869 VUL-0: CVE-2012-1988: puppet: Filebucket arbitrary code execution -Fixed bnc#755872 CVE-2012-1986 – Arbitrary File Read -Fixed bnc#755870 CVE-2012-1987 – Denial of Service -Fixed bnc#755871 CVE-2012-1989 – Arbitrary File Write - correct ownership of dirs in /var (bnc#739361) (bnc#727024, bnc#727025) CVE-2011-3848 (bnc#721139) - fix logging setting (bnc#683441) - using correct port for puppet in the firewall rules (bnc#694825) - update to 2.6.4 * bugfixes: bnc#667867 Ship auth.conf as part of installing from source - update to 2.6.1 * bugfixes, manpage fixes
Stefan Lijewski (lijews)
committed
(revision 2)
osc copypac from project:openSUSE:Evergreen:11.2:Test package:puppet revision:5
Stefan Lijewski (lijews)
committed
(revision 1)
osc copypac from project:openSUSE:Evergreen:11.2:Test package:puppet revision:4
Displaying all 5 revisions
