CVE-2017-2295 - Versions of Puppet prior to 4.10.1 will deserialize data off the wire (from the agent to the server,

CVE-2017-2295

Summary

Versions of Puppet prior to 4.10.1 will deserialize data off the wire (from the agent to the server, in this case) with a attacker-specified format. This could be used to force YAML deserialization in an unsafe manner, which would lead to remote code execution. This change constrains the format of data on the wire to PSON or safely decoded YAML.

References

Vulnerable Configurations

cpe:2.3:a:puppet:puppet:0.1.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.1.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.2.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.2.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.2.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.2.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.2.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.2.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.2.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.2.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.2.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.2.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.3.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.3.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.3.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.3.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.3.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.3.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.9.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.9.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.9.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.9.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.9.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.9.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.9.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.9.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.10.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.10.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.10.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.10.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.10.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.10.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.11.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.11.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.11.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.11.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.11.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.11.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.12.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.12.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.13.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.14.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.14.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.14.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.14.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.15.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.15.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.15.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.15.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.15.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.15.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.16.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.17.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.17.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.17.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.17.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.17.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.17.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.18.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.18.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.18.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.18.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.18.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.18.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.18.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.18.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.18.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.18.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.19.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.19.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.19.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.19.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.19.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.19.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.20.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.20.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.20.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.20.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.22.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.22.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.22.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.22.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.22.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.22.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.22.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.22.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.22.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.22.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.23.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.23.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.23.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.23.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.23.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.23.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.7:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.7:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.8:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.8:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.9:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.24.9:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:0.25.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.1.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.1.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.7:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.7:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.2.7:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:1.2.7:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.3.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.4.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.4.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.5.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.5.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.5.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.5.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.5.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.5.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.5.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.5.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.6.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.6.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.6.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.6.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.6.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.6.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.7.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.7.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.7.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.7.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.7.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.7.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.8.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.8.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.8.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.8.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.8.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.8.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.8.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.8.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.9.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.9.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.9.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.9.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.9.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.9.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.9.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.9.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.7:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.7:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.8:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.8:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.9:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.9:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.10:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.10:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.11:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.11:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.12:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.12:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.13:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.13:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.14:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:1.10.14:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.7:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.7:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.8:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.8:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.9:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.9:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.10:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.10:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.11:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.11:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.12:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.12:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.13:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.13:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.14:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.14:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.15:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.15:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.16:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.16:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.17:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.17:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.18:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.6.18:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.7:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.7:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.8:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.8:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.9:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.9:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.10:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.10:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.11:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.11:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.12:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.12:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.13:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.13:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.14:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.14:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.15:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.15:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.15:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.15:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.15:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.15:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.15:rc4:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.15:rc4:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.16:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.16:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.16:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.16:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.17:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.17:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.18:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.18:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.19:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.19:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.19:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.19:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.19:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.19:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.19:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.19:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.20:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.20:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.20:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.20:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.21:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.21:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.22:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.22:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.23:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.23:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.26:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:2.7.26:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc4:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc4:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc5:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc5:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc6:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc6:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc7:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc7:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc8:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.0:rc8:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.0.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.0.1:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.1:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.2:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.2:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.2:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.2:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.2:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.0.2:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.1.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.1.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.1.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.1.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.1.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.1.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.1.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.1.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.1.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.1.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.1.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.1.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.1.2:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.1.2:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.1.3:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.1.3:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.2.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.2.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.2.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.2.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.2.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.2:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.2.2:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.2.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.3:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.2.3:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.2.3:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.3:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.4-1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.2.4-1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.3.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.3.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.0:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.0:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.3.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.3.1:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.1:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.1:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.1:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.1:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.1:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.3.2:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.3.2:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.4.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.4.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.5.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.5.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.5.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.5.0:rc2:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.5.0:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.5.0:rc3:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.5.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.5.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.5.1:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.5.1:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.6.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.6.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.6.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.6.0:rc1:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.6.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.6.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.6.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.6.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.7.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.7.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.7.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.7.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.7.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.7.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.7.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.7.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.7.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.7.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.7.2:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.7.2:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.7.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.7.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.7.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.7.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.8.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.8.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.8.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.8.1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.8.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.8.1:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.8.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.8.2:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.8.2:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.8.2:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.8.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.8.3:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.8.3:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.8.3:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.8.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.8.4:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.8.4:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.8.4:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.8.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.8.5:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.8.5:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.8.5:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.8.5-1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.8.5-1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.8.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.8.6:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.8.6:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.8.6:*:*:*:enterprise:*:*:*
cpe:2.3:a:puppet:puppet:3.8.6-1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.8.6-1:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.8.7.:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:3.8.7.:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:4.10.0:*:*:*:*:*:*:*
cpe:2.3:a:puppet:puppet:4.10.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

CVSS

Base:	6.0 (as of 24-05-2018 - 13:36)
Impact:
Exploitability:

CWE

CWE-502

CAPEC

Object Injection
An adversary attempts to exploit an application by injecting additional, malicious content during its processing of serialized objects. Developers leverage serialization in order to convert data or state into a static, binary format for saving to disk or transferring over a network. These objects are then deserialized when needed to recover the data/state. By injecting a malformed object into a vulnerable application, an adversary can potentially compromise the application by manipulating the deserialization process. This can result in a number of unwanted outcomes, including remote code execution.

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	SINGLE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:S/C:P/I:P/A:P

redhat via4

rpms

candlepin-0:2.1.14-1.el7
candlepin-selinux-0:2.1.14-1.el7
foreman-0:1.15.6.34-1.el7sat
foreman-bootloaders-redhat-0:201801241201-2.el7sat
foreman-bootloaders-redhat-tftpboot-0:201801241201-2.el7sat
foreman-cli-0:1.15.6.34-1.el7sat
foreman-compute-0:1.15.6.34-1.el7sat
foreman-debug-0:1.15.6.34-1.el7sat
foreman-discovery-image-1:3.4.4-1.el7sat
foreman-ec2-0:1.15.6.34-1.el7sat
foreman-gce-0:1.15.6.34-1.el7sat
foreman-installer-1:1.15.6.8-1.el7sat
foreman-installer-katello-0:3.4.5.26-1.el7sat
foreman-libvirt-0:1.15.6.34-1.el7sat
foreman-openstack-0:1.15.6.34-1.el7sat
foreman-ovirt-0:1.15.6.34-1.el7sat
foreman-postgresql-0:1.15.6.34-1.el7sat
foreman-proxy-0:1.15.6.4-1.el7sat
foreman-proxy-content-0:3.4.5-15.el7sat
foreman-rackspace-0:1.15.6.34-1.el7sat
foreman-selinux-0:1.15.6.2-1.el7sat
foreman-vmware-0:1.15.6.34-1.el7sat
hiera-0:1.3.1-2.el7sat
katello-0:3.4.5-15.el7sat
katello-certs-tools-0:2.4.0-1.el7sat
katello-client-bootstrap-0:1.5.1-1.el7sat
katello-common-0:3.4.5-15.el7sat
katello-debug-0:3.4.5-15.el7sat
katello-installer-base-0:3.4.5.26-1.el7sat
katello-selinux-0:3.0.2-1.el7sat
katello-service-0:3.4.5-15.el7sat
kobo-0:0.5.1-1.el7sat
pulp-admin-client-0:2.13.4.6-1.el7sat
pulp-docker-admin-extensions-0:2.4.1-2.el7sat
pulp-docker-plugins-0:2.4.1-2.el7sat
pulp-katello-0:1.0.2-1.el7sat
pulp-nodes-child-0:2.13.4.6-1.el7sat
pulp-nodes-common-0:2.13.4.6-1.el7sat
pulp-nodes-parent-0:2.13.4.6-1.el7sat
pulp-ostree-admin-extensions-0:1.2.1.1-1.el7sat
pulp-ostree-plugins-0:1.2.1.1-1.el7sat
pulp-puppet-admin-extensions-0:2.13.4-3.el7sat
pulp-puppet-plugins-0:2.13.4-3.el7sat
pulp-puppet-tools-0:2.13.4-3.el7sat
pulp-rpm-admin-extensions-0:2.13.4.8-1.el7sat
pulp-rpm-plugins-0:2.13.4.8-1.el7sat
pulp-selinux-0:2.13.4.6-1.el7sat
pulp-server-0:2.13.4.6-1.el7sat
puppet-foreman_scap_client-0:0.3.16-1.el7sat
python-pulp-agent-lib-0:2.13.4.6-1.el7sat
python-pulp-bindings-0:2.13.4.6-1.el7sat
python-pulp-client-lib-0:2.13.4.6-1.el7sat
python-pulp-common-0:2.13.4.6-1.el7sat
python-pulp-docker-common-0:2.4.1-2.el7sat
python-pulp-oid_validation-0:2.13.4.6-1.el7sat
python-pulp-ostree-common-0:1.2.1.1-1.el7sat
python-pulp-puppet-common-0:2.13.4-3.el7sat
python-pulp-repoauth-0:2.13.4.6-1.el7sat
python-pulp-rpm-common-0:2.13.4.8-1.el7sat
python-pulp-streamer-0:2.13.4.6-1.el7sat
python-zope-interface-0:4.0.5-4.el7
python-zope-interface-debuginfo-0:4.0.5-4.el7
redhat-access-insights-puppet-0:0.0.9-2.el7sat
rubygem-foreman_scap_client-0:0.3.0-2.el7sat
rubygem-kafo-0:2.0.2-1.el7sat
rubygem-kafo_parsers-0:0.1.6-1.el7sat
rubygem-kafo_wizards-0:0.0.1-2.el7sat
rubygem-smart_proxy_dhcp_remote_isc-0:0.0.2.1-1.fm1_15.el7sat
rubygem-smart_proxy_discovery-0:1.0.4-3.el7sat
rubygem-smart_proxy_discovery_image-0:1.0.9-1.el7sat
rubygem-smart_proxy_dynflow-0:0.1.10-1.el7sat
rubygem-smart_proxy_openscap-0:0.6.9-1.el7sat
rubygem-smart_proxy_pulp-0:1.3.0-1.git.0.b5c2768.el7sat
rubygem-smart_proxy_remote_execution_ssh-0:0.1.6-1.el7sat
rubygem-tilt-0:1.3.7-2.git.0.3b416c9.el7sat
satellite-0:6.3.0-23.0.el7sat
satellite-capsule-0:6.3.0-23.0.el7sat
satellite-cli-0:6.3.0-23.0.el7sat
satellite-common-0:6.3.0-23.0.el7sat
satellite-debug-tools-0:6.3.0-23.0.el7sat
satellite-installer-0:6.3.0.12-1.el7sat
tfm-rubygem-bastion-0:5.1.1.4-1.fm1_15.el7sat
tfm-rubygem-foreman-redhat_access-0:2.0.13-1.el7sat
tfm-rubygem-foreman-tasks-0:0.9.6.4-1.fm1_15.el7sat
tfm-rubygem-foreman-tasks-core-0:0.1.8-1.fm1_15.el7sat
tfm-rubygem-foreman_bootdisk-0:10.0.2.2-1.fm1_15.el7sat
tfm-rubygem-foreman_discovery-0:9.1.5.3-1.fm1_15.el7sat
tfm-rubygem-foreman_docker-0:3.1.0.3-1.fm1_15.el7sat
tfm-rubygem-foreman_hooks-0:0.3.14-1.fm1_15.el7sat
tfm-rubygem-foreman_openscap-0:0.7.11-1.fm1_15.el7sat
tfm-rubygem-foreman_remote_execution-0:1.3.7.2-1.fm1_15.el7sat
tfm-rubygem-foreman_remote_execution_core-0:1.0.6-1.fm1_15.el7sat
tfm-rubygem-foreman_templates-0:5.0.1-1.fm1_15.el7sat
tfm-rubygem-foreman_theme_satellite-0:1.0.4.16-1.el7sat
tfm-rubygem-foreman_virt_who_configure-0:0.1.9-1.fm1_15.el7sat
tfm-rubygem-hammer_cli-0:0.11.0.1-1.el7sat
tfm-rubygem-hammer_cli_csv-0:2.3.0-1.el7sat
tfm-rubygem-hammer_cli_foreman-0:0.11.0.5-1.el7sat
tfm-rubygem-hammer_cli_foreman_admin-0:0.0.8-1.el7sat
tfm-rubygem-hammer_cli_foreman_bootdisk-0:0.1.3.3-2.el7sat
tfm-rubygem-hammer_cli_foreman_discovery-0:1.0.0-1.el7sat
tfm-rubygem-hammer_cli_foreman_docker-0:0.0.6-2.el7sat
tfm-rubygem-hammer_cli_foreman_openscap-0:0.1.5-1.fm1_15.el7sat
tfm-rubygem-hammer_cli_foreman_remote_execution-0:0.0.6-1.fm1_15.el7sat
tfm-rubygem-hammer_cli_foreman_tasks-0:0.0.12-1.fm1_15.el7sat
tfm-rubygem-hammer_cli_foreman_virt_who_configure-0:0.0.3-1.el7sat
tfm-rubygem-hammer_cli_katello-0:0.11.3.5-1.el7sat
tfm-rubygem-katello-0:3.4.5.58-1.el7sat
tfm-rubygem-katello_ostree-0:3.4.5.58-1.el7sat
tfm-rubygem-ovirt_provision_plugin-0:1.0.2-1.fm1_15.el7sat
tfm-rubygem-smart_proxy_dynflow_core-0:0.1.10-1.fm1_15.el7sat

refmap via4

bid	98582
confirm	https://puppet.com/security/cve/cve-2017-2295
debian	DSA-3862

Last major update

24-05-2018 - 13:36

Published

05-07-2017 - 15:29

Last modified

24-05-2018 - 13:36