Oval Definition:
oval:com.ubuntu.precise:def:20131655000
Revision Date
:
2013-03-20
Version
:
1
Title
:
CVE-2013-1655 on Ubuntu 12.04 LTS (precise) - medium.
Description
:
Puppet 2.7.x before 2.7.21 and 3.1.x before 3.1.1, when running Ruby 1.9.3 or later, allows remote attackers to execute arbitrary code via vectors related to "serialized attributes."
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2013-1655
Platform(s)
:
Ubuntu 12.04 LTS
Product(s)
:
Definition Synopsis
Ubuntu 12.04 LTS (precise) is installed.
AND
The 'puppet' package in precise was vulnerable but has been fixed (note: '2.7.11-1ubuntu2.2').
BACK