Puppet Enterprise versions prior to 3.8.2 contained vulnerable versions of Apache HTTP Server. Puppet Enterprise 3.8.2 contains an updated version of Apache HTTP Server that has fixed the vulnerability.
For more information about the vulnerability, please refer to CVE-2015-3183 .
Affected Software Versions:
Resolved in: