Overview

Rack Security Fixes

  • Posted November 6, 2019

  • Assessed Risk Level: Medium

Previous releases of Puppet Enterprise contain a vulnerable version of Rack. Puppet Enterprise 2019.1.3 and 2018.1.11 contain an updated version of Rack that has patched the vulnerabilities.

For more information about this vulnerability, refer to the National Vulnerability Database.

Status:

Affected software versions:

  • Puppet Enterprise 2019.1 versions prior to 2019.1.3
  • Puppet Enterprise 2018.1 versions prior to 2018.1.11

Resolved in:

  • Puppet Enterprise 2019.1.3
  • Puppet Enterprise 2018.1.11