Viewing all changes in revision 52.
- Committer: Package Import Robot
- Date: 2011-09-28 07:55:44 UTC
- Revision ID: package-import@ubuntu.com-20110928075544-41hipl74vw9llqq6
* SECURITY UPDATE: unauthenticated directory traversal allows writing of
arbitrary files as puppet master
- debian/patches/CVE-2011-3848.patch: update lib/puppet/indirector.rb,
lib/puppet/indirector/ssl_file.rb, lib/puppet/indirector/yaml.rb,
spec/unit/indirector/ssl_file.rb and spec/unit/indirector/yaml.rb to
perform proper input validation.
- CVE-2011-3848
- LP: #861182
arbitrary files as puppet master
- debian/patches/CVE-2011-3848.patch: update lib/puppet/indirector.rb,
lib/puppet/indirector/ssl_file.rb, lib/puppet/indirector/yaml.rb,
spec/unit/indirector/ssl_file.rb and spec/unit/indirector/yaml.rb to
perform proper input validation.
- CVE-2011-3848
- LP: #861182
- files added:
- .pc/CVE-2011-3848.patch
- .pc/CVE-2011-3848.patch/lib
- .pc/CVE-2011-3848.patch/lib/puppet
- .pc/CVE-2011-3848.patch/lib/puppet/indirector
- .pc/CVE-2011-3848.patch/spec
- .pc/CVE-2011-3848.patch/spec/unit
- .pc/CVE-2011-3848.patch/spec/unit/indirector
- files modified:
- .pc/applied-patches
expand all
collapse all
added
removed
