[ubuntu/precise-security] puppet 2.7.11-1ubuntu2.6 (Accepted)

Marc Deslauriers marc.deslauriers at canonical.com
Mon Jan 6 17:29:24 UTC 2014

puppet (2.7.11-1ubuntu2.6) precise-security; urgency=low

  * SECURITY UPDATE: unsafe use of temp files
    - debian/patches/update-replace_file.patch: updated replace_file to
      enable Windows support so security patch applies better.
    - debian/patches/CVE-2013-4969-2.7.x-temp-file.patch: Use replace_file
      to update a file's contents in lib/puppet/type/file.rb,
      lib/puppet/util.rb, updated tests in
      spec/integration/type/file_spec.rb, spec/unit/type/file_spec.rb.
    - CVE-2013-4969

puppet (2.7.11-1ubuntu2.5) precise-proposed; urgency=low

  * debian/patches/2.7.11-remove-process_name-performance.patch:
    Fixes performance regression caused by a thread that loops forever in
    order to change a process name when told so (LP: #995719)

Date: 2013-12-24 16:33:14.383146+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Precise-changes mailing list