CVE-2021-27025 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Medium
Remote	Yes
Type	Denial of service
Description	A security issue was discovered in Puppet before version 7.12.1 where the agent may silently ignore Augeas settings or may be vulnerable to a denial of service condition prior to the first pluginsync.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-2541	puppet	7.12.0-1	7.12.1-1	Medium	Fixed

References
https://puppet.com/security/cve/CVE-2021-27025 https://puppet.com/docs/puppet/7/release_notes_puppet.html#release_notes_puppet_7-12-1 https://tickets.puppetlabs.com/browse/PUP-11209 https://github.com/puppetlabs/puppet/commit/0e189e9988c4969280134d043b871851928caa41

References

https://puppet.com/security/cve/CVE-2021-27025
https://puppet.com/docs/puppet/7/release_notes_puppet.html#release_notes_puppet_7-12-1
https://tickets.puppetlabs.com/browse/PUP-11209
https://github.com/puppetlabs/puppet/commit/0e189e9988c4969280134d043b871851928caa41