CVSS 3 Base Score: Posted On: May 1, 2018Assessed Risk Level: LowThe curl project has released fixes for several vulnerabilities announced in April. Puppet Enterprise 2016.4.11 and 2017.3.6 ship with an updated version of curl that has addressed these vulnerabilities.For more information about these vulnerabilities refer to Curl vulnerabilities table (https://curl.haxx.se/docs/security.html)Status:Affected software versions:Puppet Agent versions prior to 1.10.12Puppet Agent versions prior to 5.3.6Puppet Enterprise versions prior to 2016.4.11Puppet Enterprise versions prior to 2017.3.6Resolved in:Puppet Agent 1.10.12Puppet Agent 5.3.6Puppet Enterprise 2016.4.11Puppet Enterprise 2017.3.6Puppet Enterprise 2018.1.0← Back to CVE Listings