/[advisories]/10568.adv
ViewVC logotype

Diff of /10568.adv

Parent Directory Parent Directory | Revision Log Revision Log | View Patch Patch

revision 61 by boklm, Wed Jun 19 19:38:02 2013 UTC revision 99 by boklm, Wed Jun 26 18:36:29 2013 UTC
# Line 9  src: Line 9  src:
9    3:    3:
10     core:     core:
11       - puppet-2.7.22-1.mga3       - puppet-2.7.22-1.mga3
12         - puppet3-3.2.2-1.mga3
13  description: |  description: |
14    When making REST api calls, the puppet master takes YAML from an untrusted    When making REST api calls, the puppet master takes YAML from an untrusted
15    client, deserializes it, and then calls methods on the resulting object.    client, deserializes it, and then calls methods on the resulting object.
# Line 17  description: | Line 18  description: |
18    attacker to execute code contained in the payload.    attacker to execute code contained in the payload.
19  references:  references:
20   - http://puppetlabs.com/security/cve/cve-2013-3567/   - http://puppetlabs.com/security/cve/cve-2013-3567/
21     - http://www.ubuntu.com/usn/usn-1886-1/
22    ID: MGASA-2013-0187

Legend:
Removed from v.61  
changed lines
  Added in v.99

  ViewVC Help
Powered by ViewVC 1.1.28