Candidate: CVE-2012-6120
PublicDate: 2013-04-10 15:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6120
Description:
 Red Hat OpenStack Essex and Folsom creates the /var/log/puppet directory
 with world-readable permissions, which allows local users to obtain
 sensitive information such as Puppet log files.
Ubuntu-Description:
Notes:
 seth-arnold> checked with apt-get install puppet; ls -ld /var/log/puppet
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_puppet:
upstream_puppet: released (2.6.4-2)
hardy_puppet: ignored (reached end-of-life)
lucid_puppet: ignored (reached end-of-life)
oneiric_puppet: not-affected (2.7.1-1ubuntu3.7)
precise_puppet: not-affected (2.7.11-1ubuntu2.1)
quantal_puppet: not-affected (2.7.18-1ubuntu1)
raring_puppet: not-affected (2.7.18-1ubuntu1)
devel_puppet: not-affected (2.7.18-1ubuntu1)