Announce: Puppet Enterprise 3.1.3 is available

26 views

Skip to first unread message

Rob Braden

unread,

Feb 11, 2014, 1:22:47 PM2/11/14

to puppet...@googlegroups.com, Puppet Enterprise Users, puppet-...@googlegroups.com

Dear Puppet Enterprise Users,

Puppet Enterprise 3.1.3 is now available.

This is a security release of Puppet Enterprise. All users of Puppet Enterprise 3.x are strongly encouraged to upgrade when possible to Puppet Enterprise 3.1.3

Puppet Enterprise 3.1.3 includes fixes to address CVE-2013-6393, a vulnerability in the libyaml library that could lead to a denial of service, and the possibility of arbitrary code execution.

For more information on this vulnerability, please visit http://puppetlabs.com/security, or visit

http://puppetlabs.com/security/cve/cve-2013-6393.

Please note: the 2.8 series is not impacted by this vulnerability

As a current Puppet Enterprise user, you can upgrade to this new version as part of your annual subscription. If upgrading, it is recommended to upgrade your master and console servers first.

As always, we want to hear about your experiences with Puppet Enterprise. If you have any questions about upgrading, be sure to get in touch with Puppet Labs Support.

Thanks,

Rob Braden

Puppet Labs

Reply all

Reply to author

Forward

0 new messages