ANNOUNCE: Puppet 0.24.9 is available

[James Turnbull]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Puppet 0.24.9 - no codename

The 0.24.9 release is a security release in the legacy 0.24.x branch.

It addresses a potential security vulnerability in the temporary
files used by Puppet. Thanks to Till Mass for reporting the error
and the Red Hat and Fedora teams for testing the fix.

This release is intended for legacy Puppet installations still
running 0.24.x. We recommend that you upgrade to the current stable
release.

The release is available at:

http://reductivelabs.com/downloads/puppet/puppet-0.24.9.tgz
http://reductivelabs.com/downloads/gems/puppet-0.24.9.gem
http://gemcutter.org/gems/puppet/versions/0.24.9

Please report feedback via the Reductive Labs Redmine site:

http://projects.reductivelabs.com

Please select an affected version of 0.24.9.

For information on how to report security issues and the project's
security policy please see the FAQ:

http://reductivelabs.com/trac/puppet/wiki/FrequentlyAskedQuestions#i-have-found-a-security-issue-in-puppet-who-do-i-tell

RELEASE NOTES

* Fix for temporary file issues
(https://bugzilla.redhat.com/show_bug.cgi?id=502881)

Regards

James Turnbull

- --
Author of:
* Pro Linux System Administration (http://tinyurl.com/linuxadmin)
* Pulling Strings with Puppet (http://tinyurl.com/pupbook)
* Pro Nagios 2.0 (http://tinyurl.com/pronagios)
* Hardening Linux (http://tinyurl.com/hardeninglinux)

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQEVAwUBS0blsyFa/lDkFHAyAQJ1hAgAvyog3xdzeLnFwPzQaZSJYLGcixrXncIg
Tw0iAZj9wuU7pD5IR7mz/9xlKHPvZMJK8hqkHhp+ZiC05lpa0wcp9iASddD9c0AV
23WxgMYtmreKM18kxrAP8ccG8e3JpOQkj13T7g5qpbndpu2tFWcBrgAXeFvmD7NF
jo/FQZJwUyuYusFi1WbJc8YyPuf1tyOUvnHDgxK+Mh5aIAw3CLHBwt/9K6RV/ZWt
mbuNXXshrOa6ND2QJhfAE1cCuyqlU1IYUKK2xpe8RC5M21iKvSzJJq9Xd34PlDdq
Dm8pE0K0ZEJn37rmS/+5CNWrJ9RzPWsEUI+S88W/XW4Qmq6j05zAUQ==
=/ZVi
-----END PGP SIGNATURE-----