* SECURITY UPDATE: Multiple July 2012 security issues - debian/patches/2.7.17-Puppet-July-2012-CVE-fixes.patch: upstream patch to fix multiple security issues. - CVE-2012-3864: arbitrary file read on master from authenticated clients - CVE-2012-3865: arbitrary file delete or denial of service on master from authenticated clients - CVE-2012-3866: last_run_report.yaml report file is world readable and leads to arbitrary file read on master by an agent - CVE-2012-3867: insufficient input validation for agent cert hostnames