Vulnerability Name:

CVE-2010-0156 (CCN-56717)

Assigned:2009-10-06
Published:2009-10-06
Updated:2017-12-09
Summary:Puppet 0.24.x before 0.24.9 and 0.25.x before 0.25.2 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/daemonout, (2) /tmp/puppetdoc.txt, (3) /tmp/puppetdoc.tex, or (4) /tmp/puppetdoc.aux temporary file.
CVSS v3 Severity:5.1 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:3.3 Low (CVSS v2 Vector: AV:L/AC:M/Au:N/C:N/I:P/A:P)
2.9 Low (Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:N/I:P/A:P/E:H/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): Partial
3.3 Low (CCN CVSS v2 Vector: AV:L/AC:M/Au:N/C:N/I:P/A:P)
2.9 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:N/I:P/A:P/E:H/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-59
Vulnerability Consequences:File Manipulation
References:Source: MITRE
Type: CNA
CVE-2010-0156

Source: MLIST
Type: Patch
[puppet-announce] 20100105 ANNOUNCE: Puppet 0.25.2 "Zoe" now available!

Source: MLIST
Type: UNKNOWN
[puppet-announce] 20100108 ANNOUNCE: Puppet 0.24.9 is available

Source: FEDORA
Type: UNKNOWN
FEDORA-2010-1079

Source: FEDORA
Type: UNKNOWN
FEDORA-2010-1372

Source: SUSE
Type: UNKNOWN
SUSE-SR:2010:013

Source: CCN
Type: Reductive Labs Web site
Puppet

Source: CCN
Type: SA36967
Puppet Supplementary Groups Weakness

Source: SECUNIA
Type: Patch, Vendor Advisory
38766

Source: CCN
Type: OSVDB ID: 62752
Puppet Multiple Temporary File Symlink Arbitrary File Overwrite

Source: CCN
Type: BID-38474
Reductive Labs Puppet '/tmp' Insecure File Permissions Vulnerabilities

Source: CCN
Type: USN-917-1
Puppet vulnerabilities

Source: CONFIRM
Type: Patch
https://bugzilla.redhat.com/show_bug.cgi?id=502881

Source: XF
Type: UNKNOWN
puppet-temp-files-symlink(56717)

Source: CONFIRM
Type: UNKNOWN
https://puppet.com/security/cve/cve-2010-0156

Source: SUSE
Type: SUSE-SR:2010:013
SUSE Security Summary Report

Vulnerable Configuration:Configuration 1:
  • cpe:/a:puppet:puppet:0.24.3:*:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.24.4:*:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.24.5:*:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.24.6:*:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.24.6:rc1:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.24.6:rc2:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.24.7:*:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.24.7:rc2:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.24.8:*:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.24.8:rc1:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.25.0:*:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.25.0:beta1:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.25.0:beta2:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.25.0:rc1:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.25.1:*:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.25.1:rc1:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.25.1:rc2:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.25.2:rc1:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.25.2:rc2:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.25.2:rc3:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:puppet:puppet:0.24.8:*:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.24.7:*:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.24.7:rc2:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.24.8:rc1:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.24.6:rc1:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.24.6:rc2:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.24.6:*:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.24.5:*:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.24.4:*:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.24.3:*:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.25.0:beta1:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.25.0:beta2:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.25.0:rc1:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.25.1:rc1:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.25.2:rc1:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.25.1:rc2:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.25.2:rc2:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.25.2:rc3:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.25.0:*:*:*:*:*:*:*
  • OR cpe:/a:puppet:puppet:0.25.1:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:42426
    P
    		Security update for mokutil (Moderate)
    2022-08-03
    oval:org.opensuse.security:def:20100156
    V
    		CVE-2010-0156
    2022-05-20
    oval:org.opensuse.security:def:31754
    P
    		Security update for libsndfile (Important)
    2022-01-05
    oval:org.opensuse.security:def:31318
    P
    		Security update for mozilla-nss (Important)
    2021-12-06
    oval:org.opensuse.security:def:31710
    P
    		Security update for java-1_7_0-openjdk (Important)
    2021-11-24
    oval:org.opensuse.security:def:26167
    P
    		Security update for php72 (Moderate)
    2021-11-19
    oval:org.opensuse.security:def:31703
    P
    		Security update for MozillaFirefox (Important)
    2021-11-17
    oval:org.opensuse.security:def:31289
    P
    		Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)
    2021-10-18
    oval:org.opensuse.security:def:26145
    P
    		Security update for the Linux Kernel (Important)
    2021-10-12
    oval:org.opensuse.security:def:32196
    P
    		Security update for python-urllib3 (Moderate)
    2021-09-29
    oval:org.opensuse.security:def:31277
    P
    		Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)
    2021-09-23
    oval:org.opensuse.security:def:31278
    P
    		Security update for xen (Important)
    2021-09-23
    oval:org.opensuse.security:def:26136
    P
    		Security update for gd (Moderate)
    2021-09-23
    oval:org.opensuse.security:def:42217
    P
    		Security update for libesmtp (Important)
    2021-09-21
    oval:org.opensuse.security:def:26110
    P
    		Security update for aspell (Important)
    2021-08-25
    oval:org.opensuse.security:def:32982
    P
    		Security update for java-1_8_0-openjdk (Important)
    2021-08-20
    oval:org.opensuse.security:def:32151
    P
    		Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP3) (Important)
    2021-07-27
    oval:org.opensuse.security:def:26092
    P
    		Security update for the Linux Kernel (Important)
    2021-07-20
    oval:org.opensuse.security:def:26078
    P
    		Security update for libxml2 (Moderate)
    2021-06-18
    oval:org.opensuse.security:def:31644
    P
    		Security update for xterm (Important)
    2021-06-18
    oval:org.opensuse.security:def:32943
    P
    		Security update for caribou (Important)
    2021-06-10
    oval:org.opensuse.security:def:36276
    P
    		puppet-2.7.26-0.5.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:42683
    P
    		puppet-2.7.26-0.5.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:32109
    P
    		Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)
    2021-06-04
    oval:org.opensuse.security:def:31186
    P
    		Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)
    2021-06-04
    oval:org.opensuse.security:def:32095
    P
    		Security update for libxml2 (Important)
    2021-05-19
    oval:org.opensuse.security:def:26039
    P
    		Security update for libnettle (Important)
    2021-04-28
    oval:org.opensuse.security:def:26029
    P
    		Security update for the Linux Kernel (Important)
    2021-04-15
    oval:org.opensuse.security:def:31363
    P
    		Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP3) (Important)
    2021-03-17
    oval:org.opensuse.security:def:31743
    P
    		Security update for python (Moderate)
    2021-03-16
    oval:org.opensuse.security:def:31742
    P
    		Security update for git (Important)
    2021-03-09
    oval:org.opensuse.security:def:26198
    P
    		Security update for avahi (Moderate)
    2021-02-23
    oval:org.opensuse.security:def:32261
    P
    		Security update for krb5-appl (Important)
    2021-02-19
    oval:org.opensuse.security:def:31731
    P
    		Security update for java-1_7_1-ibm (Important)
    2021-02-18
    oval:org.opensuse.security:def:32239
    P
    		Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)
    2021-02-10
    oval:org.opensuse.security:def:32200
    P
    		Security update for python3 (Important)
    2021-02-08
    oval:org.opensuse.security:def:32097
    P
    		Security update for flac (Moderate)
    2021-01-04
    oval:org.opensuse.security:def:31100
    P
    		Security update for cyrus-sasl (Important)
    2020-12-28
    oval:org.opensuse.security:def:35632
    P
    		puppet-0.24.8-1.3.5 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:42039
    P
    		puppet-0.24.8-1.3.5 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:35810
    P
    		puppet-2.6.12-0.10.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:36019
    P
    		puppet-2.6.18-0.4.2 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:25837
    P
    		Security update for ImageMagick (Important)
    2020-12-01
    oval:org.opensuse.security:def:26504
    P
    		Security update for chromium (Important)
    2020-12-01
    oval:org.opensuse.security:def:32558
    P
    		libnetpbm10 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31101
    P
    		Security update for kernel-source (Important)
    2020-12-01
    oval:org.opensuse.security:def:31410
    P
    		Security update for php53 (Important)
    2020-12-01
    oval:org.opensuse.security:def:31766
    P
    		Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:31495
    P
    		Security update for Python
    2020-12-01
    oval:org.opensuse.security:def:31887
    P
    		Security update for emacs (Important)
    2020-12-01
    oval:org.opensuse.security:def:31571
    P
    		Security update for strongswan (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31939
    P
    		Security update for glibc (Important)
    2020-12-01
    oval:org.opensuse.security:def:32496
    P
    		coolkey on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33239
    P
    		puppet on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32457
    P
    		Security update for xorg-x11-libX11 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26632
    P
    		puppet on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25195
    P
    		Security update for audiofile (Low)
    2020-12-01
    oval:org.opensuse.security:def:25525
    P
    		Security update for ruby2.1 (Important)
    2020-12-01
    oval:org.opensuse.security:def:25862
    P
    		Recommended update for mariadb (Important)
    2020-12-01
    oval:org.opensuse.security:def:26774
    P
    		libxml2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25361
    P
    		Security update for tomcat (Important)
    2020-12-01
    oval:org.opensuse.security:def:25645
    P
    		Security update for the Linux Kernel (Critical)
    2020-12-01
    oval:org.opensuse.security:def:25990
    P
    		Security update for libvpx (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26344
    P
    		Security update for mbedtls (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25568
    P
    		Security update for samba (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25772
    P
    		Security update for gstreamer-0_10-plugins-bad (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26557
    P
    		gnome-screensaver on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25901
    P
    		Security update for flash-player (Important)
    2020-12-01
    oval:org.opensuse.security:def:26251
    P
    		Security update for zziplib (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31854
    P
    		Security update for cracklib (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32597
    P
    		puppet on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31112
    P
    		Security update for krb5 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31467
    P
    		Security update for postgresql94 (Important)
    2020-12-01
    oval:org.opensuse.security:def:31815
    P
    		Security update for apache2-mod_perl (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32735
    P
    		libtiff3 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31587
    P
    		Security update for tcpdump (Important)
    2020-12-01
    oval:org.opensuse.security:def:31943
    P
    		Security update for gnutls (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32305
    P
    		Security update for python (Important)
    2020-12-01
    oval:org.opensuse.security:def:31485
    P
    		Security update for python (Important)
    2020-12-01
    oval:org.opensuse.security:def:32518
    P
    		gd on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31828
    P
    		Security update for bind (Important)
    2020-12-01
    oval:org.opensuse.security:def:25915
    P
    		Security update for libosip2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25259
    P
    		Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:25609
    P
    		Security update for sysstat (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26809
    P
    		puppet on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25372
    P
    		Security update for LibVNCServer (Important)
    2020-12-01
    oval:org.opensuse.security:def:25702
    P
    		Security update for libvpx (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26982
    P
    		libxslt on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25569
    P
    		Security update for tomcat (Important)
    2020-12-01
    oval:org.opensuse.security:def:25853
    P
    		Security update for gtk2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26601
    P
    		libsamplerate on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25825
    P
    		Security update for ImageMagick (Important)
    2020-12-01
    oval:org.opensuse.security:def:26402
    P
    		Security update for irssi (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31876
    P
    		Security update for dhcp (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31554
    P
    		Security update for sqlite3 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32031
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:32774
    P
    		puppet on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31992
    P
    		Security update for java-1_7_1-ibm (Important)
    2020-12-01
    oval:org.opensuse.security:def:31486
    P
    		Security update for python (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31795
    P
    		Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (Important)
    2020-12-01
    oval:org.opensuse.security:def:32562
    P
    		libpoppler-glib4 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:31960
    P
    		Security update for gtk2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32352
    P
    		Security update for squid3 (Important)
    2020-12-01
    oval:org.opensuse.security:def:25959
    P
    		Security update for ImageMagick (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25183
    P
    		Security update for libexif (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25387
    P
    		Security update for shim (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25760
    P
    		Security update for flash-player (Critical)
    2020-12-01
    oval:org.opensuse.security:def:25436
    P
    		Security update for libgcrypt (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25786
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:26286
    P
    		Security update for libcdio (Low)
    2020-12-01
    oval:org.opensuse.security:def:27017
    P
    		puppet on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25580
    P
    		Security update for LibVNCServer (Important)
    2020-12-01
    oval:org.opensuse.security:def:25910
    P
    		Security update for gstreamer-0_10-plugins-base (Low)
    2020-12-01
    oval:org.opensuse.security:def:26247
    P
    		Security update for bluez (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27239
    P
    		man on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25826
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:26455
    P
    		Security update for chromium (Important)
    2020-12-01
    oval:org.opensuse.security:def:31920
    P
    		Security update for ghostscript-library (Important)
    2020-12-01
    oval:org.opensuse.security:def:32053
    P
    		Security update for kvm (Important)
    2020-12-01
    oval:org.opensuse.security:def:31497
    P
    		Security update for python-lxml
    2020-12-01
    oval:org.opensuse.security:def:31852
    P
    		Recommended udpate for SUSE Manager Client Tools (Low)
    2020-12-01
    oval:org.opensuse.security:def:33200
    P
    		lvm2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32052
    P
    		Security update for kvm (Important)
    2020-12-01
    oval:org.opensuse.security:def:32408
    P
    		Security update for wget (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26597
    P
    		libpoppler-glib4 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25184
    P
    		Security update for vim (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25468
    P
    		Security update for libarchive (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25813
    P
    		Security update for libssh (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25360
    P
    		Security update for xrdp (Important)
    2020-12-01
    oval:org.opensuse.security:def:25564
    P
    		Security update for tomcat (Important)
    2020-12-01
    oval:org.opensuse.security:def:25937
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:26300
    P
    		Security update for gimp (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:25644
    P
    		Security update for taglib (Low)
    2020-12-01
    oval:org.opensuse.security:def:25994
    P
    		Security update for ImageMagick (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26543
    P
    		expat on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27274
    P
    		puppet on GA media (Moderate)
    2020-12-01
    oval:org.mitre.oval:def:13279
    P
    		USN-917-1 -- puppet vulnerabilities
    2014-06-30
    BACK
    puppet puppet 0.24.3
    puppet puppet 0.24.4
    puppet puppet 0.24.5
    puppet puppet 0.24.6
    puppet puppet 0.24.6 rc1
    puppet puppet 0.24.6 rc2
    puppet puppet 0.24.7
    puppet puppet 0.24.7 rc2
    puppet puppet 0.24.8
    puppet puppet 0.24.8 rc1
    puppet puppet 0.25.0
    puppet puppet 0.25.0 beta1
    puppet puppet 0.25.0 beta2
    puppet puppet 0.25.0 rc1
    puppet puppet 0.25.1
    puppet puppet 0.25.1 rc1
    puppet puppet 0.25.1 rc2
    puppet puppet 0.25.2 rc1
    puppet puppet 0.25.2 rc2
    puppet puppet 0.25.2 rc3
    puppet puppet 0.24.8
    puppet puppet 0.24.7
    puppet puppet 0.24.7 rc2
    puppet puppet 0.24.8 rc1
    puppet puppet 0.24.6 rc1
    puppet puppet 0.24.6 rc2
    puppet puppet 0.24.6
    puppet puppet 0.24.5
    puppet puppet 0.24.4
    puppet puppet 0.24.3
    puppet puppet 0.25.0 beta1
    puppet puppet 0.25.0 beta2
    puppet puppet 0.25.0 rc1
    puppet puppet 0.25.1 rc1
    puppet puppet 0.25.2 rc1
    puppet puppet 0.25.1 rc2
    puppet puppet 0.25.2 rc2
    puppet puppet 0.25.2 rc3
    puppet puppet 0.25.0
    puppet puppet 0.25.1