Ubuntu Update for puppet USN-1238-1

Summary
Ubuntu Update for Linux kernel vulnerabilities USN-1238-1
Solution
Please Install the Updated Packages.
Insight
It was discovered that Puppet incorrectly handled the non-default &quot certdnsnames&quot option when generating certificates. If this setting was added to puppet.conf, the puppet master&#8217 s DNS alt names were added to the X.509 Subject Alternative Name field of all certificates, not just the puppet master&#8217 s certificate. An attacker that has an incorrect agent certificate in his possession can use it to impersonate the puppet master in a man-in-the-middle attack.
Affected
puppet on Ubuntu 11.04 , Ubuntu 10.10 , Ubuntu 10.04 LTS
References