[Bug 1068145] Re: Fix for CVE-2012-3867 (puppet) is too restrictive - TLS certificates now break

Jeff McCune jeff at puppetlabs.com
Mon Apr 8 15:30:32 UTC 2013


Yes, we're planning to release the fix for this issue in Puppet 3.2
which will hopefully go out as RC1 at the end of this week.

I'm not sure how difficult the backport to 2.7 will be, but we did so a
slight refactor after fixing the issue, so it is non-trivial at this
point.  If you have any questions or concerns please let me know, I'm
getting all the updates on this issue directly to my inbox.

-Jeff

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to puppet in Ubuntu.
https://bugs.launchpad.net/bugs/1068145

Title:
  Fix for CVE-2012-3867 (puppet) is too restrictive - TLS certificates
  now break

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/puppet/+bug/1068145/+subscriptions



More information about the Ubuntu-server-bugs mailing list