← Back to branch summary

~ubuntu-branches/ubuntu/oneiric/puppet/oneiric-updates

~ubuntu-branches/ubuntu/oneiric/puppet/oneiric-updates

Viewing all changes in revision 59.

Committer: Package Import Robot
Author(s): Marc Deslauriers
Date: 2013-03-11 12:49:11 UTC
Revision ID: package-import@ubuntu.com-20130311124911-ftq83iz7v3nsl4sg

Tags: 2.7.1-1ubuntu3.8

* SECURITY UPDATE: Multiple security issues
  - debian/patches/security-mar-2013.patch: upstream patch to fix
    multiple security issues.
  - CVE-2013-1640 - Remote code execution on master from authenticated clients
  - CVE-2013-1652 - Insufficient input validation
  - CVE-2013-1653 - Remote code execution
  - CVE-2013-1654 - Protocol downgrade
  - CVE-2013-1655 - Unauthenticated remote code execution risk
  - CVE-2013-2275 - Incorrect default report ACL

files added:
.pc/security-mar-2013.patch

.pc/security-mar-2013.patch/acceptance

.pc/security-mar-2013.patch/acceptance/tests

.pc/security-mar-2013.patch/acceptance/tests/security

.pc/security-mar-2013.patch/acceptance/tests/security/cve-2013-1640_facter_string.rb

.pc/security-mar-2013.patch/acceptance/tests/security/cve-2013-1652_improper_query_params.rb

.pc/security-mar-2013.patch/acceptance/tests/security/cve-2013-1652_poison_other_node_cache.rb

.pc/security-mar-2013.patch/acceptance/tests/security/cve-2013-1653_puppet_kick.rb

.pc/security-mar-2013.patch/acceptance/tests/security/cve-2013-1654_sslv2_downgrade_agent.rb

.pc/security-mar-2013.patch/acceptance/tests/security/cve-2013-1654_sslv2_downgrade_master.rb

.pc/security-mar-2013.patch/acceptance/tests/security/cve-2013-1655_safe_yaml_deserialization.rb

.pc/security-mar-2013.patch/acceptance/tests/security/cve-2013-2274_all_your_agent_terminii_belong_to_us.rb

.pc/security-mar-2013.patch/acceptance/tests/security/cve-2013-2274_all_your_master_terminii_belong_to_us.rb

.pc/security-mar-2013.patch/acceptance/tests/security/cve-2013-2275_report_acl.rb

.pc/security-mar-2013.patch/conf

.pc/security-mar-2013.patch/conf/auth.conf

.pc/security-mar-2013.patch/lib

.pc/security-mar-2013.patch/lib/puppet

.pc/security-mar-2013.patch/lib/puppet/indirector

.pc/security-mar-2013.patch/lib/puppet/indirector/catalog

.pc/security-mar-2013.patch/lib/puppet/indirector/catalog/compiler.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/certificate_status

.pc/security-mar-2013.patch/lib/puppet/indirector/certificate_status/file.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/errors.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/file_bucket_file

.pc/security-mar-2013.patch/lib/puppet/indirector/file_bucket_file/file.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/file_bucket_file/selector.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/indirection.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/request.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/resource

.pc/security-mar-2013.patch/lib/puppet/indirector/resource/ral.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/resource/validator.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/rest.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/run

.pc/security-mar-2013.patch/lib/puppet/indirector/run/local.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/terminus.rb

.pc/security-mar-2013.patch/lib/puppet/network

.pc/security-mar-2013.patch/lib/puppet/network/formats.rb

.pc/security-mar-2013.patch/lib/puppet/network/handler

.pc/security-mar-2013.patch/lib/puppet/network/handler/master.rb

.pc/security-mar-2013.patch/lib/puppet/network/handler/report.rb

.pc/security-mar-2013.patch/lib/puppet/network/http

.pc/security-mar-2013.patch/lib/puppet/network/http/handler.rb

.pc/security-mar-2013.patch/lib/puppet/network/http/rack

.pc/security-mar-2013.patch/lib/puppet/network/http/rack/rest.rb

.pc/security-mar-2013.patch/lib/puppet/network/http/webrick.rb

.pc/security-mar-2013.patch/lib/puppet/network/http_pool.rb

.pc/security-mar-2013.patch/lib/puppet/network/rest_authconfig.rb

.pc/security-mar-2013.patch/lib/puppet/parser

.pc/security-mar-2013.patch/lib/puppet/parser/collector.rb

.pc/security-mar-2013.patch/lib/puppet/parser/templatewrapper.rb

.pc/security-mar-2013.patch/lib/puppet/util

.pc/security-mar-2013.patch/lib/puppet/util/monkey_patches.rb

.pc/security-mar-2013.patch/spec

.pc/security-mar-2013.patch/spec/integration

.pc/security-mar-2013.patch/spec/integration/indirector

.pc/security-mar-2013.patch/spec/integration/indirector/catalog

.pc/security-mar-2013.patch/spec/integration/indirector/catalog/compiler_spec.rb

.pc/security-mar-2013.patch/spec/integration/indirector/catalog/queue_spec.rb

.pc/security-mar-2013.patch/spec/integration/resource

.pc/security-mar-2013.patch/spec/integration/resource/catalog_spec.rb

.pc/security-mar-2013.patch/spec/unit

.pc/security-mar-2013.patch/spec/unit/indirector

.pc/security-mar-2013.patch/spec/unit/indirector/catalog

.pc/security-mar-2013.patch/spec/unit/indirector/catalog/compiler_spec.rb

.pc/security-mar-2013.patch/spec/unit/indirector/indirection_spec.rb

.pc/security-mar-2013.patch/spec/unit/indirector/request_spec.rb

.pc/security-mar-2013.patch/spec/unit/indirector/terminus_spec.rb

.pc/security-mar-2013.patch/spec/unit/network

.pc/security-mar-2013.patch/spec/unit/network/formats_spec.rb

.pc/security-mar-2013.patch/spec/unit/network/http

.pc/security-mar-2013.patch/spec/unit/network/http/handler_spec.rb

.pc/security-mar-2013.patch/spec/unit/network/http/rack

.pc/security-mar-2013.patch/spec/unit/network/http/rack/rest_spec.rb

.pc/security-mar-2013.patch/spec/unit/network/http/webrick_spec.rb

.pc/security-mar-2013.patch/spec/unit/network/http_pool_spec.rb

.pc/security-mar-2013.patch/spec/unit/network/rest_authconfig_spec.rb

.pc/security-mar-2013.patch/spec/unit/parser

.pc/security-mar-2013.patch/spec/unit/parser/functions

.pc/security-mar-2013.patch/spec/unit/parser/functions/inline_template_spec.rb

.pc/security-mar-2013.patch/spec/unit/parser/functions/template_spec.rb

.pc/security-mar-2013.patch/spec/unit/parser/templatewrapper_spec.rb

.pc/security-mar-2013.patch/spec/unit/ssl

.pc/security-mar-2013.patch/spec/unit/ssl/certificate_request_spec.rb

.pc/security-mar-2013.patch/spec/unit/ssl/host_spec.rb

.pc/security-mar-2013.patch/spec/unit/util

.pc/security-mar-2013.patch/spec/unit/util/monkey_patches_spec.rb

.pc/security-mar-2013.patch/test

.pc/security-mar-2013.patch/test/language

.pc/security-mar-2013.patch/test/language/snippets.rb

acceptance/tests/security

acceptance/tests/security/cve-2013-1640_facter_string.rb

acceptance/tests/security/cve-2013-1652_improper_query_params.rb

acceptance/tests/security/cve-2013-1652_poison_other_node_cache.rb

acceptance/tests/security/cve-2013-1653_puppet_kick.rb

acceptance/tests/security/cve-2013-1654_sslv2_downgrade_agent.rb

acceptance/tests/security/cve-2013-1654_sslv2_downgrade_master.rb

acceptance/tests/security/cve-2013-1655_safe_yaml_deserialization.rb

acceptance/tests/security/cve-2013-2274_all_your_agent_terminii_belong_to_us.rb

acceptance/tests/security/cve-2013-2274_all_your_master_terminii_belong_to_us.rb

acceptance/tests/security/cve-2013-2275_report_acl.rb

debian/patches/security-mar-2013.patch

lib/puppet/indirector/errors.rb

lib/puppet/indirector/resource/validator.rb

files modified:
.pc/applied-patches

conf/auth.conf

debian/changelog

debian/patches/series

lib/puppet/indirector/catalog/compiler.rb

lib/puppet/indirector/certificate_status/file.rb

lib/puppet/indirector/file_bucket_file/file.rb

lib/puppet/indirector/file_bucket_file/selector.rb

lib/puppet/indirector/indirection.rb

lib/puppet/indirector/request.rb

lib/puppet/indirector/resource/ral.rb

lib/puppet/indirector/rest.rb

lib/puppet/indirector/run/local.rb

lib/puppet/indirector/terminus.rb

lib/puppet/network/formats.rb

lib/puppet/network/handler/master.rb

lib/puppet/network/handler/report.rb

lib/puppet/network/http/handler.rb

lib/puppet/network/http/rack/rest.rb

lib/puppet/network/http/webrick.rb

lib/puppet/network/http_pool.rb

lib/puppet/network/rest_authconfig.rb

lib/puppet/parser/collector.rb

lib/puppet/parser/templatewrapper.rb

lib/puppet/util/monkey_patches.rb

spec/integration/indirector/catalog/compiler_spec.rb

spec/integration/indirector/catalog/queue_spec.rb

spec/integration/resource/catalog_spec.rb

spec/unit/indirector/catalog/compiler_spec.rb

spec/unit/indirector/indirection_spec.rb

spec/unit/indirector/request_spec.rb

spec/unit/indirector/terminus_spec.rb

spec/unit/network/formats_spec.rb

spec/unit/network/http/handler_spec.rb

spec/unit/network/http/rack/rest_spec.rb

spec/unit/network/http/webrick_spec.rb

spec/unit/network/http_pool_spec.rb

spec/unit/network/rest_authconfig_spec.rb

spec/unit/parser/functions/inline_template_spec.rb

spec/unit/parser/functions/template_spec.rb

spec/unit/parser/templatewrapper_spec.rb

spec/unit/ssl/certificate_request_spec.rb

spec/unit/ssl/host_spec.rb

spec/unit/util/monkey_patches_spec.rb

test/language/snippets.rb

Show diffs side-by-side

added added

removed removed

.pc/applied-patches

.pc/security-mar-2013.patch/

.pc/security-mar-2013.patch/acceptance/

.pc/security-mar-2013.patch/acceptance/tests/

.pc/security-mar-2013.patch/acceptance/tests/security/

.pc/security-mar-2013.patch/acceptance/tests/security/cve-2013-1640_facter_string.rb

.pc/security-mar-2013.patch/acceptance/tests/security/cve-2013-1652_improper_query_params.rb

.pc/security-mar-2013.patch/acceptance/tests/security/cve-2013-1652_poison_other_node_cache.rb

.pc/security-mar-2013.patch/acceptance/tests/security/cve-2013-1653_puppet_kick.rb

.pc/security-mar-2013.patch/acceptance/tests/security/cve-2013-1654_sslv2_downgrade_agent.rb

.pc/security-mar-2013.patch/acceptance/tests/security/cve-2013-1654_sslv2_downgrade_master.rb

.pc/security-mar-2013.patch/acceptance/tests/security/cve-2013-1655_safe_yaml_deserialization.rb

.pc/security-mar-2013.patch/acceptance/tests/security/cve-2013-2274_all_your_agent_terminii_belong_to_us.rb

.pc/security-mar-2013.patch/acceptance/tests/security/cve-2013-2274_all_your_master_terminii_belong_to_us.rb

.pc/security-mar-2013.patch/acceptance/tests/security/cve-2013-2275_report_acl.rb

.pc/security-mar-2013.patch/conf/

.pc/security-mar-2013.patch/conf/auth.conf

.pc/security-mar-2013.patch/lib/

.pc/security-mar-2013.patch/lib/puppet/

.pc/security-mar-2013.patch/lib/puppet/indirector/

.pc/security-mar-2013.patch/lib/puppet/indirector/catalog/

.pc/security-mar-2013.patch/lib/puppet/indirector/catalog/compiler.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/certificate_status/

.pc/security-mar-2013.patch/lib/puppet/indirector/certificate_status/file.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/errors.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/file_bucket_file/

.pc/security-mar-2013.patch/lib/puppet/indirector/file_bucket_file/file.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/file_bucket_file/selector.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/indirection.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/request.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/resource/

.pc/security-mar-2013.patch/lib/puppet/indirector/resource/ral.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/resource/validator.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/rest.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/run/

.pc/security-mar-2013.patch/lib/puppet/indirector/run/local.rb

.pc/security-mar-2013.patch/lib/puppet/indirector/terminus.rb

.pc/security-mar-2013.patch/lib/puppet/network/

.pc/security-mar-2013.patch/lib/puppet/network/formats.rb

.pc/security-mar-2013.patch/lib/puppet/network/handler/

.pc/security-mar-2013.patch/lib/puppet/network/handler/master.rb

.pc/security-mar-2013.patch/lib/puppet/network/handler/report.rb

.pc/security-mar-2013.patch/lib/puppet/network/http/

.pc/security-mar-2013.patch/lib/puppet/network/http/handler.rb

.pc/security-mar-2013.patch/lib/puppet/network/http/rack/

.pc/security-mar-2013.patch/lib/puppet/network/http/rack/rest.rb

.pc/security-mar-2013.patch/lib/puppet/network/http/webrick.rb

.pc/security-mar-2013.patch/lib/puppet/network/http_pool.rb

.pc/security-mar-2013.patch/lib/puppet/network/rest_authconfig.rb

.pc/security-mar-2013.patch/lib/puppet/parser/

.pc/security-mar-2013.patch/lib/puppet/parser/collector.rb

.pc/security-mar-2013.patch/lib/puppet/parser/templatewrapper.rb

.pc/security-mar-2013.patch/lib/puppet/util/

.pc/security-mar-2013.patch/lib/puppet/util/monkey_patches.rb

.pc/security-mar-2013.patch/spec/

.pc/security-mar-2013.patch/spec/integration/

.pc/security-mar-2013.patch/spec/integration/indirector/

.pc/security-mar-2013.patch/spec/integration/indirector/catalog/

.pc/security-mar-2013.patch/spec/integration/indirector/catalog/compiler_spec.rb

.pc/security-mar-2013.patch/spec/integration/indirector/catalog/queue_spec.rb

.pc/security-mar-2013.patch/spec/integration/resource/

.pc/security-mar-2013.patch/spec/integration/resource/catalog_spec.rb

.pc/security-mar-2013.patch/spec/unit/

.pc/security-mar-2013.patch/spec/unit/indirector/

.pc/security-mar-2013.patch/spec/unit/indirector/catalog/

.pc/security-mar-2013.patch/spec/unit/indirector/catalog/compiler_spec.rb

.pc/security-mar-2013.patch/spec/unit/indirector/indirection_spec.rb

.pc/security-mar-2013.patch/spec/unit/indirector/request_spec.rb

.pc/security-mar-2013.patch/spec/unit/indirector/terminus_spec.rb

.pc/security-mar-2013.patch/spec/unit/network/

.pc/security-mar-2013.patch/spec/unit/network/formats_spec.rb

.pc/security-mar-2013.patch/spec/unit/network/http/

.pc/security-mar-2013.patch/spec/unit/network/http/handler_spec.rb

.pc/security-mar-2013.patch/spec/unit/network/http/rack/

.pc/security-mar-2013.patch/spec/unit/network/http/rack/rest_spec.rb

.pc/security-mar-2013.patch/spec/unit/network/http/webrick_spec.rb

.pc/security-mar-2013.patch/spec/unit/network/http_pool_spec.rb

.pc/security-mar-2013.patch/spec/unit/network/rest_authconfig_spec.rb

.pc/security-mar-2013.patch/spec/unit/parser/

.pc/security-mar-2013.patch/spec/unit/parser/functions/

.pc/security-mar-2013.patch/spec/unit/parser/functions/inline_template_spec.rb

.pc/security-mar-2013.patch/spec/unit/parser/functions/template_spec.rb

.pc/security-mar-2013.patch/spec/unit/parser/templatewrapper_spec.rb

.pc/security-mar-2013.patch/spec/unit/ssl/

.pc/security-mar-2013.patch/spec/unit/ssl/certificate_request_spec.rb

.pc/security-mar-2013.patch/spec/unit/ssl/host_spec.rb

.pc/security-mar-2013.patch/spec/unit/util/

.pc/security-mar-2013.patch/spec/unit/util/monkey_patches_spec.rb

.pc/security-mar-2013.patch/test/

.pc/security-mar-2013.patch/test/language/

.pc/security-mar-2013.patch/test/language/snippets.rb

acceptance/tests/security/

acceptance/tests/security/cve-2013-1640_facter_string.rb

acceptance/tests/security/cve-2013-1652_improper_query_params.rb

acceptance/tests/security/cve-2013-1652_poison_other_node_cache.rb

acceptance/tests/security/cve-2013-1653_puppet_kick.rb

acceptance/tests/security/cve-2013-1654_sslv2_downgrade_agent.rb

acceptance/tests/security/cve-2013-1654_sslv2_downgrade_master.rb

acceptance/tests/security/cve-2013-1655_safe_yaml_deserialization.rb

acceptance/tests/security/cve-2013-2274_all_your_agent_terminii_belong_to_us.rb

acceptance/tests/security/cve-2013-2274_all_your_master_terminii_belong_to_us.rb

acceptance/tests/security/cve-2013-2275_report_acl.rb

debian/changelog

debian/patches/security-mar-2013.patch

debian/patches/series

lib/puppet/indirector/catalog/compiler.rb

lib/puppet/indirector/certificate_status/file.rb

lib/puppet/indirector/errors.rb

lib/puppet/indirector/file_bucket_file/file.rb

lib/puppet/indirector/file_bucket_file/selector.rb

lib/puppet/indirector/indirection.rb

lib/puppet/indirector/request.rb

lib/puppet/indirector/resource/ral.rb

lib/puppet/indirector/resource/validator.rb

lib/puppet/indirector/rest.rb

lib/puppet/indirector/run/local.rb

lib/puppet/indirector/terminus.rb

lib/puppet/network/formats.rb

lib/puppet/network/handler/master.rb

lib/puppet/network/handler/report.rb

lib/puppet/network/http/handler.rb

lib/puppet/network/http/rack/rest.rb

lib/puppet/network/http/webrick.rb

lib/puppet/network/http_pool.rb

lib/puppet/network/rest_authconfig.rb

lib/puppet/parser/collector.rb

lib/puppet/parser/templatewrapper.rb

lib/puppet/util/monkey_patches.rb

spec/integration/indirector/catalog/compiler_spec.rb

spec/integration/indirector/catalog/queue_spec.rb

spec/integration/resource/catalog_spec.rb

spec/unit/indirector/catalog/compiler_spec.rb

spec/unit/indirector/indirection_spec.rb

spec/unit/indirector/request_spec.rb

spec/unit/indirector/terminus_spec.rb

spec/unit/network/formats_spec.rb

spec/unit/network/http/handler_spec.rb

spec/unit/network/http/rack/rest_spec.rb

spec/unit/network/http/webrick_spec.rb

spec/unit/network/http_pool_spec.rb

spec/unit/network/rest_authconfig_spec.rb

spec/unit/parser/functions/inline_template_spec.rb

spec/unit/parser/functions/template_spec.rb

spec/unit/parser/templatewrapper_spec.rb

spec/unit/ssl/certificate_request_spec.rb

spec/unit/ssl/host_spec.rb

spec/unit/util/monkey_patches_spec.rb

test/language/snippets.rb

Older »