First published: Wed Aug 09 2017(Updated: )
The console in Puppet Enterprise 2015.x and 2016.x prior to 2016.4.0 includes unsafe string reads that potentially allows for remote code execution on the console node.
Credit: security@puppet.com
Affected Software | Affected Version | How to fix |
---|---|---|
Puppet Puppet Enterprise | =2015.2.0 | |
Puppet Puppet Enterprise | =2015.2.1 | |
Puppet Puppet Enterprise | =2015.2.2 | |
Puppet Puppet Enterprise | =2015.2.3 | |
Puppet Puppet Enterprise | =2015.3.0 | |
Puppet Puppet Enterprise | =2015.3.1 | |
Puppet Puppet Enterprise | =2015.3.2 | |
Puppet Puppet Enterprise | =2015.3.3 | |
Puppet Puppet Enterprise | =2016.1.1 | |
Puppet Puppet Enterprise | =2016.1.2 | |
Puppet Puppet Enterprise | =2016.2.0 | |
Puppet Puppet Enterprise | =2016.2.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.