openSUSE Security Update: update for puppet ______________________________________________________________________________ Announcement ID: openSUSE-SU-2012:0608-1 Rating: moderate References: #755869 #755870 #755871 #755872 Cross-References: CVE-2012-1986 CVE-2012-1987 CVE-2012-1988 CVE-2012-1989 Affected Products: openSUSE 12.1 ______________________________________________________________________________ An update that fixes four vulnerabilities is now available. Description: puppet was prone to several security issues Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 12.1: zypper in -t patch openSUSE-2012-269 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 12.1 (i586 x86_64): puppet-2.7.6-1.7.1 puppet-server-2.7.6-1.7.1 References: http://support.novell.com/security/cve/CVE-2012-1986.html http://support.novell.com/security/cve/CVE-2012-1987.html http://support.novell.com/security/cve/CVE-2012-1988.html http://support.novell.com/security/cve/CVE-2012-1989.html https://bugzilla.novell.com/755869 https://bugzilla.novell.com/755870 https://bugzilla.novell.com/755871 https://bugzilla.novell.com/755872