Jira (PDB-5000) Triage SEC-274 for PuppetDB and PE-PuppetDB

9 views
Skip to first unread message

Austin Blatt (Jira)

unread,
Jan 20, 2021, 1:09:04 PM1/20/21
to puppe...@googlegroups.com
Austin Blatt created an issue
 
PuppetDB / Task PDB-5000
Triage SEC-274 for PuppetDB and PE-PuppetDB
Issue Type: Task Task
Assignee: Austin Blatt
Created: 2021/01/20 10:08 AM
Priority: Normal Normal
Reporter: Austin Blatt

Triage and provide a response to the CVE's in SEC-274 for pupetdb and pe-puppetdb clojure dependencies
Add Comment Add Comment
 
This message was sent by Atlassian Jira (v8.5.2#805002-sha1:a66f935)
Atlassian logo

Austin Blatt (Jira)

unread,
Jan 20, 2021, 1:11:03 PM1/20/21
to puppe...@googlegroups.com
Austin Blatt updated an issue
Change By: Austin Blatt
Triage and provide a response to the CVE's in SEC-274 for pupetdb and pe-puppetdb clojure dependencies



{noformat}
Determining actual impact to the application based on how the packages are being used is useful in applying the appropriate risk score therefore some assistance is needed in determining actual impact to the application (ie, is the package utilizing the vulnerable paths). Please review the ticket (SEC-274) for details and comment responses regarding use of packages by 29 January 2021.
{noformat}

Austin Blatt (Jira)

unread,
Jan 20, 2021, 1:12:03 PM1/20/21
to puppe...@googlegroups.com

Austin Blatt (Jira)

unread,
Mar 8, 2021, 1:32:02 PM3/8/21
to puppe...@googlegroups.com
Austin Blatt updated an issue
Change By: Austin Blatt
Security: Internal
Reply all
Reply to author
Forward
0 new messages