CVE-2015-1029 Information

Description

The puppetlabs-stdlib module 2.1 through 3.0 and 4.1.0 through 4.5.x before 4.5.1 for Puppet 2.8.8 and earlier allows remote authenticated users to gain privileges or obtain sensitive information by prepopulating the fact cache.

Reference

http://puppetlabs.com/security/cve/cve-2015-1029 http://secunia.com/advisories/62328