CVE-2015-1029 - Vulnerability in puppetlabs-stdlib module fact cache Assessed Risk Level: Low
An issue exists where a non-privileged user may, under certain circumstances, be able to pre-populate the puppetlabs-stdlib module’s fact cache, potentially allowing local privilege escalation or local information leakage. Users should upgrade the puppetlabs-stdlib module to puppetlabs-stdlib 4.5.1. Please see https://puppetlabs.com/security/cve/cve-2015-1029 for more information. Geoff Nichols Release Engineer, Puppet Labs -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/CADjnYByXrB5wu4_Y3MXsvmidMqrSNt79pLsjcWbzyBdcmGQxuw%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
