SuSE Update for puppet openSUSE-SU-2013:1370-1 (puppet)

Solution

Please Install the Updated Packages.

Insight

A potential remote code execution via YAML was fixed in puppet. (CVE-2013-3567)

Affected

puppet on openSUSE 12.3

References

http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00019.html

Updated on 2015-03-25

Severity

High Severity

Classification

CVE CVE-2013-3567
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities