Commit - rpms/puppet - 65b5b66a83c978dca22b9c4e7acb6034bd736755

    Update to 2.6.12, fixes CVE-2011-3872
    
    This includes and upstream patch to restore Mongrel XMLRPC functionality
    (upstream #10244) which was accidentally dropped in 2.6.12.

0001-10244-Restore-Mongrel-XMLRPC-functionality.patch

file added

+161

0001-4922-Don-t-truncate-remotely-sourced-files-on-404.patch

file removed

-273

0001-5073-Download-plugins-even-if-you-re-filtering-on-ta.patch

file removed

-123

0001-5428-More-fully-stub-Puppet-Resource-Reference-for-u.patch

file removed

-182

0001-Resist-directory-traversal-attacks-2.6.x.patch

file removed

-138

2.6.x-9791-TOCTOU-in-ssh-auth-keys-type.patch

file removed

-107

2.6.x-9792-Predictable-temporary-filename-in-ralsh.patch

file removed

-69

2.6.x-9793-secure-indirector-file-backed-terminus-base-cla.patch

file removed

-330

2.6.x-9794-k5login-can-overwrite-arbitrary-files-as-root.patch

file removed

-40

puppet-2.6.12.tar.gz.asc

file added

+17

puppet-2.6.6.tar.gz.sign

file removed

-17

puppet.spec

file modified

+11 -32

sources

file modified

+1 -1

hguemar / rpms / puppet

Source Code

65b5b66 Update to 2.6.12, fixes CVE-2011-3872

Authored and Committed by tmz 12 years ago

`65b5b66` Update to 2.6.12, fixes CVE-2011-3872