CVE-2012-1906

Name of the Vulnerable Software and Affected Versions Puppet versions 2.6.x through 2.6.14 Puppet versions 2.7.x through 2.7.12 Puppet Enterprise (PE) Users versions 1.0 through 1.2.x Puppet Enterprise (PE) Users versions 2.0.x through 2.5.0

Description The issue affects the confidentiality, integrity, and availability of protected information. Exploitation can be carried out remotely by an attacker who has passed the authentication procedure. It involves using predictable file names when installing Mac OS X packages from a remote source, allowing local users to overwrite arbitrary files or install arbitrary packages via a symlink attack on a temporary file in /tmp.

Recommendations For Puppet versions 2.6.x through 2.6.14, update to version 2.6.15 or later. For Puppet versions 2.7.x through 2.7.12, update to version 2.7.13 or later. For Puppet Enterprise (PE) Users versions 1.0 through 1.2.x, update to a version later than 2.5.0, specifically version 2.5.1 or later. For Puppet Enterprise (PE) Users versions 2.0.x through 2.5.0, update to version 2.5.1 or later. As a temporary workaround, consider restricting access to the package installation feature to minimize the risk of exploitation.