Released December 26, 2013. 2.7.24 is a security release in the Puppet 2 series. Please note that this release is supported by the community; Puppet Labs is not responsible for maintaining the release. This release fixes:
* CVE-2013-4969: Unsafe use of temp files in File type See http://puppetlabs.com/security/cve/cve-2013-4969 for details. Andrew Parker (1): 691fbbe (#23343) Use `replace_file` to update a file's contents Sam Kottler (1): 22ecab2 Bump the version to 2.7.24 Puppet 2.7.24 Downloads ------------------------------------------ Source: https://downloads.puppetlabs.com/puppet/puppet-2.7.24.tar.gz Available in native package format in the Puppet Labs yum and apt repositories: http://yum.puppetlabs.com and http://apt.puppetlabs.com Gems are available via rubygems at https://rubygems.org/downloads/puppet-2.7.24.gem or by using `gem install puppet` Please note that there are no longer DMG's or MSI's available for the 2.7 series. Users still on 2.7 using Puppet on OSX or Windows with the aforementioned native packaging formats should upgrade to the 3.x series as soon as possible. Please report feedback via the Puppet Labs tickets site, using an affected puppet version of 2.7.24: https://tickets.puppetlabs.com/browse/PUP -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to puppet-users+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/CAPO4y0Q-VF1VzQ%2BVwiVvG-OiX5LtpEkbQJE%3DM6QdRAdUsJ%2BFjA%40mail.gmail.com. For more options, visit https://groups.google.com/groups/opt_out.
