Gentoo Linux Security Advisory 201203-3 - Multiple vulnerabilities have been found in Puppet, the worst of which might allow local attackers to gain escalated privileges. Versions less than 2.7.11 are affected.
69813f02a92f89229d9a09aea745f127f1932ebbc0d9430aa9f9838397cd205b
Debian Linux Security Advisory 2314-1 - Multiple security issues have been discovered in puppet, a centralized configuration management system.
4d61f7d2040b18a2d84536e900279ffbe5494482305020352fafcdf6f331a86b
Ubuntu Security Notice 1217-1 - Kristian Erik Hermansen discovered a directory traversal vulnerability in the SSLFile indirection base class. A remote attacker could exploit this to overwrite files with the privileges of the Puppet Master.
cb0df75e0ea4625a8f572eb50a779b751932821421ee7b8d18861e0a3ad2212f