Debian: 2715-1: puppet: code execution

LinuxSecurity.com: It was discovered that puppet, a centralized configuration management system, did not correctly handle YAML payloads. A remote attacker could use a specially-crafted payload to execute arbitrary code on the puppet master. [More...]