Posted May 11, 2017
Assessed Risk Level: Medium
On March 16th, several security vulnerabilities were announced for Libxml2. Previous releases of Puppet Agent contained a vulnerable version of Libxml2. Puppet Agent 1.10.1 contains an updated version of Libxml2 that has patched the vulnerabilities.
For more information about the Libxml2 vulnerabilities, refer to the Ubuntu security announcement.
Affected Software Versions:
- Puppet Agent prior to 1.10.1