Posted April 30, 2019
Assessed Risk Level: Medium
On April 15th, Ubuntu published a security update addressing CVE-2019-11068. Puppet Enterprise 2019.0.3 and 2018.1.8 contain an updated version of libxslt that has patched the vulnerability.
For more information about the vulnerability, refer to the Ubuntu security announcement.
Affected software versions:
- Puppet Enterprise prior to 2019.0.3
- Puppet Enterprise prior to 2018.1.8
- Puppet Enterprise 2019.0.3
- Puppet Enterprise 2018.1.8