Overview

Curl 2017 Security Fixes

  • Posted November 7, 2017

  • Assessed Risk Level: Low

There are several vulnerabilities for Curl which have been announced.

For more information about these vulnerabilities refer to Curl vulnerabilities table (https://curl.haxx.se/docs/security.html)

Status:

Affected software versions:

  • Puppet Agent versions prior to 1.10.9
  • Puppet Agent versions prior to 5.3.3
  • PDK versions prior to 1.2.1
  • Puppet Enterprise versions prior to 2016.4.9
  • Puppet Enterprise versions prior to 2017.2.5
  • Puppet Enterprise versions prior to 2017.3.2

Resolved in:

  • Puppet Agent 1.10.9
  • Puppet Agent 5.3.3
  • PDK 1.2.1
  • Puppet Enterprise 2016.4.9
  • Puppet Enterprise 2017.2.5
  • Puppet Enterprise 2017.3.2