puppet 2.7.13 pushed to unsupported

[Thomas Uphill]

CVE-2012-1906 (High) � appdmg and pkgdmg providers write packages to
insecure location

http://puppetlabs.com/security/cve/cve-2012-1906
--

puppet was updated last night in response to CVE-2012-1906. Puppet
users are encouraged to upgrade as soon as possible.

puppet-server-selinux was also updated. This package installs the
selinux module necessary to run puppet through passenger. Please
install this package if you are using passenger and also keep your
server in enforcing mode. Report any issues so we can update the module
as necessary.

Thank you.