[SECURITY] Fedora 20 Update: facter-1.7.6-1.fc20
updates at fedoraproject.org
updates at fedoraproject.org
Sat Nov 22 12:33:35 UTC 2014
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-12699
2014-10-12 03:59:21
--------------------------------------------------------------------------------
Name : facter
Product : Fedora 20
Version : 1.7.6
Release : 1.fc20
URL : https://puppetlabs.com/facter
Summary : Command and ruby library for gathering system information
Description :
Facter is a lightweight program that gathers basic node information about the
hardware and operating system. Facter is especially useful for retrieving
things like operating system names, hardware characteristics, IP addresses, MAC
addresses, and SSH keys.
Facter is extensible and allows gathering of node information that may be
custom or site specific. It is easy to extend by including your own custom
facts. Facter can also be used to create conditional expressions in Puppet that
key off the values returned by facts.
--------------------------------------------------------------------------------
Update Information:
Update to 1.7.6 for bz#1107891 and CVE-2014-3248
See http://puppetlabs.com/security/cve/cve-2014-3248 for more
information upstream.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Oct 10 2014 Michael Stahnke <stahnma at fedoraproject.org> - 1.7.6-1
- Update to 1.7.6 for bz#1107891 and CVE-2014-3248
- Remove dmidecode patch. It's upstream now.
* Tue Jan 28 2014 Todd Zullinger <tmz at pobox.com> - 1.7.4-1
- Update to 1.7.4
- Create /etc/facter/facts.d for external facts
- Send dmiddecode errors to /dev/null in the virtual fact (FACT-86)
* Tue Oct 8 2013 Sam Kottler <skottler at fedoraproject.org> - 1.7.3-1
- Update to 1.7.3 (BZ #1016817)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1101346 - CVE-2014-3248 puppet: Ruby modules could be loaded from the current working directory
https://bugzilla.redhat.com/show_bug.cgi?id=1101346
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update facter' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list