Oracle Java October 2018 Security Fixes

  • Posted November 6, 2018

  • Assessed Risk Level: Low

On October 16th 2018, Oracle announced several security vulnerabilities in Java. Previous releases of Puppet Enterprise contain a vulnerable version of Java. Puppet Enterprise 2019.0.1 and 2018.1.5 contain an updated version of Java that has patched the vulnerabilities.

For more information about these Java vulnerabilities, refer to the Oracle security announcement.


Affected software versions:

  • Puppet Enterprise versions prior to 2019.0.1
  • Puppet Enterprise versions prior to 2018.1.5

Resolved in:

  • Puppet Enterprise 2019.0.1
  • Puppet Enterprise 2018.1.5