[Pkg-puppet-devel] [DSA 2715-1] puppet security update & squeeze-backports
Hoshi Hoshimoto
hoshi.hoshimoto at googlemail.com
Tue Jul 9 08:24:25 UTC 2013
Am 08.07.2013 19:44, schrieb Russ Allbery:
> Hoshi Hoshimoto <hoshi.hoshimoto at googlemail.com> writes:
>
>> are there any plans to provide puppet packages including the latest
>> security fixes for squeeze-backports?
>
> Unfortunately, the changes in 2.7.18-5 add a new dependency and
> backporting that dependency is apparently quite hard. I've upgraded all
> of my Puppet masters to wheezy instead.
>
Thank you for your answer, Russ.
I was able to upgrade Puppet on my experimental Puppetmaster (still
running squeeze) by manually resolving dependencies via aptitude, which
meant replacing libshadow-ruby1.8 with ruby-shadow from wheezy.
Seems to work fine so far.
I take it from your answer and the description of DSA-2715-1, that
upgrading the Puppetmaster is enough to be safe?
Unfortunately, upgrading all clients to wheezy is not an option for now
in my environment.
Regards,
Hoshi
More information about the Pkg-puppet-devel
mailing list