Viewing all changes in revision 40.
- Committer: Package Import Robot
- Date: 2012-07-12 07:56:24 UTC
- Revision ID: package-import@ubuntu.com-20120712075624-4oc29k8wnk3rdcgy
* SECURITY UPDATE: multiple July 2012 security issues
- Backported from upstream patch for 2.6.4.
- CVE-2012-3864: arbitrary file read on master from authenticated
clients
- CVE-2012-3865: arbitrary file delete or denial of service on master
from authenticated clients
- CVE-2012-3867: insufficient input validation for agent cert hostnames
- Backported from upstream patch for 2.6.4.
- CVE-2012-3864: arbitrary file read on master from authenticated
clients
- CVE-2012-3865: arbitrary file delete or denial of service on master
from authenticated clients
- CVE-2012-3867: insufficient input validation for agent cert hostnames
- files added:
- lib/puppet/file_serving/terminus_selector.rb
- files modified:
- debian/changelog
expand all
collapse all
added
removed
