CVE-2011-0528 (retired)

Priority
Description
Puppet 2.6.0 through 2.6.3 does not properly restrict access to node
resources, which allows remote authenticated Puppet nodes to read or modify
the resources of other nodes via unspecified vectors.
Assigned-to
jdstrand
Notes
jdstrandper upstream, puppet prior to 2.6.0 not affected
improper merges from Debian uncommitted the upstream fixes for
this in 11.04 and 11.10.
Package
Upstream:released (2.6.2-3)
Patches:
Upstream:19f38794ecb5ce55b7850e77bdab919bb33c7ce3
More Information

Updated: 2019-10-09 07:35:28 UTC (commit 33aea848a182c0afcd0a3f927a01a7ecd9a061ee)