Dear Puppet Enterprise Users, Puppet Enterprise 3.1.3 is now available.
This is a security release of Puppet Enterprise. All users of Puppet Enterprise 3.x are strongly encouraged to upgrade when possible to Puppet Enterprise 3.1.3 Puppet Enterprise 3.1.3 includes fixes to address CVE-2013-6393, a vulnerability in the libyaml library that could lead to a denial of service, and the possibility of arbitrary code execution. For more information on this vulnerability, please visit http://puppetlabs.com/security, or visit http://puppetlabs.com/security/cve/cve-2013-6393. Please note: the 2.8 series is not impacted by this vulnerability As a current Puppet Enterprise user, you can upgrade to this new version as part of your annual subscription. If upgrading, it is recommended to upgrade your master and console servers first. As always, we want to hear about your experiences with Puppet Enterprise. If you have any questions about upgrading, be sure to get in touch with Puppet Labs Support. Thanks, Rob Braden Puppet Labs -- You received this message because you are subscribed to the Google Groups "Puppet Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/puppet-users/CANrW%3D%3D2BkfmGDsSWu-4QqAZrqyDP5LDr90x%2ByWmDx%3DT8PYDRcQ%40mail.gmail.com. For more options, visit https://groups.google.com/groups/opt_out.
