Hi Chris,
On 20 August 2013 11:22, Chris Boot wrote:
> The issue was causing reports from squeeze machines (running
> 2.6.2-5+squeeze6/7/8) to be misparsed by the security-patched wheezy
> version of Puppet, causing invalid reports to be stored to disk and sent
> to Dashboard. Applying CVE-2013-3
On 20/08/13 10:22, Chris Boot wrote:
> On 20/08/13 10:02, Raphael Geissert wrote:
>> Hi again,
>>
>> On 31 July 2013 17:43, Chris Boot wrote:
>>> This patch isn't part of 2.7.18-5, which is currently in wheezy. We've
>>> had to roll our own update internally that includes the patch in order
>>> to
On 20/08/13 10:02, Raphael Geissert wrote:
> Hi again,
>
> On 31 July 2013 17:43, Chris Boot wrote:
>> This patch isn't part of 2.7.18-5, which is currently in wheezy. We've
>> had to roll our own update internally that includes the patch in order
>> to correctly process reports from other server
Package: puppet
Severity: grave
Tags: security
Please see http://puppetlabs.com/security/cve/cve-2013-3567/ for more
information.
Cheers,
Moritz
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.deb
4 matches
Mail list logo
