UbuntuUpdates.org

Package "vim-puppet"

Name: vim-puppet

Description:

syntax highlighting for puppet manifests in vim
Latest version: 2.7.11-1ubuntu2.7
Release: precise (12.04)
Level: updates
Repository: universe
Head package: puppet
Homepage: http://projects.puppetlabs.com/projects/puppet

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "vim-puppet"

All arch deb package
APT INSTALL

Other versions of "vim-puppet" in Precise

Repository Area Version
base universe 2.7.11-1ubuntu2
security universe 2.7.11-1ubuntu2.7
PPA: Puppet repo 3.8.7-1puppetlabs1

Changelog

Version: 2.7.11-1ubuntu2.7 2014-01-09 18:06:52 UTC

  puppet (2.7.11-1ubuntu2.7) precise-security; urgency=low

  * SECURITY REGRESSION: Incorrect default file mode (LP: #1267385)
    - debian/patches/CVE-2013-4969-regression.patch: fix incorrect file
      mode in lib/puppet/type/file.rb, lib/puppet/util.rb,
      spec/unit/type/file_spec.rb.
    - CVE-2013-4969
 -- Marc Deslauriers <email address hidden> Thu, 09 Jan 2014 07:56:00 -0500
Source diff to previous version
1267385 Default file mode now 0600 instead of 0644 (regression in CVE-2013-4969 fix)
CVE-2013-4969 Unsafe use of temp files in File type

Version: 2.7.11-1ubuntu2.6 2014-01-06 19:06:36 UTC

  puppet (2.7.11-1ubuntu2.6) precise-security; urgency=low

  * SECURITY UPDATE: unsafe use of temp files
    - debian/patches/update-replace_file.patch: updated replace_file to
      enable Windows support so security patch applies better.
    - debian/patches/CVE-2013-4969-2.7.x-temp-file.patch: Use replace_file
      to update a file's contents in lib/puppet/type/file.rb,
      lib/puppet/util.rb, updated tests in
      spec/integration/type/file_spec.rb, spec/unit/type/file_spec.rb.
    - CVE-2013-4969
 -- Marc Deslauriers <email address hidden> Mon, 23 Dec 2013 08:27:21 -0500
Source diff to previous version
CVE-2013-4969 Unsafe use of temp files in File type

Version: 2.7.11-1ubuntu2.5 2013-10-25 15:07:02 UTC

  puppet (2.7.11-1ubuntu2.5) precise-proposed; urgency=low

  * debian/patches/2.7.11-remove-process_name-performance.patch:
    Fixes performance regression caused by a thread that loops forever in
    order to change a process name when told so (LP: #995719)
 -- Adam Stokes <email address hidden> Tue, 24 Sep 2013 14:58:14 -0400
Source diff to previous version
995719 process_name.rb removed in 2.7.11 but still provided by puppet-common

Version: 2.7.11-1ubuntu2.4 2013-08-15 18:06:49 UTC

  puppet (2.7.11-1ubuntu2.4) precise-security; urgency=low

  * SECURITY UPDATE: August 2013 privilege escalation and code execution
    vulnerabilities
    - debian/patches/ubuntu-2.7.11-puppet-Aug-2013-CVE-fixes.patch:
      upstream patch to resolve security issues.
    - CVE-2013-4956
    - CVE-2013-4761
 -- Marc Deslauriers <email address hidden> Wed, 14 Aug 2013 20:30:05 -0400
Source diff to previous version
CVE-2013-4956 RESERVED
CVE-2013-4761 RESERVED

Version: 2.7.11-1ubuntu2.3 2013-06-18 22:06:55 UTC

  puppet (2.7.11-1ubuntu2.3) precise-security; urgency=low

  * SECURITY UPDATE: Remote code execution on master from unauthenticated
    clients
    - debian/patches/2.7.21-Patch-for-CVE-2013-3567.patch: upstream patch
      to use safe_yama.
    - CVE-2013-3567
 -- Marc Deslauriers <email address hidden> Fri, 14 Jun 2013 09:06:22 -0400
CVE-2013-3567 RESERVED


About   -   Send Feedback to @ubuntu_updates