Puppet 8.10.0 $$$Released October 2024. In this release; support is added for Debian 12 (Bookworm) amd64 on Puppet Server and PuppetDB. Several Puppet issues are resolved; and updates are implemented to help prevent security vulnerabilities.$$$$$$GitHub releases$$$Additional details about release updates are available on GitHub. For more information; go to the following sites:$$$Facter$$$Puppet$$$Puppet agent$$$Puppet runtime$$$Security$$$Upgrade Curl in agent-runtime$$$Curl is upgraded to version 8.10.1 to address CVE-2024-8096.$$$$$$PA-6962$$$$$$Upgrade libxml2$$$Puppet agents vendored libxml2 is upgraded to version 2.13.4 to address the following vulnerabilities: CVE-2024-25062; CVE-2024-34459; and CVE-2024-40896.$$$$$$PA-6973$$$$$$Update OpenSSL$$$OpenSSL is updated to address CVE-2024-6119.$$$$$$PA-6959$$$$$$Resolved issues$$$Fixed issue with splay limits and added logging.$$$An issue was corrected to ensure that any splay setting updates in the Puppet configuration file (puppet.conf) are applied to daemonized Puppet runs. Logging for splay has also now been added at the info level.$$$$$$PUP-12061$$$$$$Increased default soft limit for the total number of facts.$$$The default value of the number_of_facts_soft_limit setting is increased from 2048 to 10240; to address an issue where warnings were displayed after installing Puppet Enterprise with default configuration.$$$$$$PUP-12071$$$$$$Set default service provider for Raspbian.$$$SystemD is now the default service provider for Raspbian. This resolves an issue where incorrect default providers were identified when running Puppet agent on Raspberry Pi. Community member jaevans reported this issue and submitted a fix.$$$$$$PUP-11949$$$$$$Contributors$$$The Puppet team appreciates all Puppet Community members who contributed content to the October 2024 releases.$$$$$$

Puppet 8.9.0 $$$Released September 2024. This release resolves several Puppet issues and implements updates in third-party software to help prevent security vulnerabilities.$$$$$$GitHub releases$$$Additional details about release updates are available on GitHub. For more information; go to the following sites:$$$Facter$$$Puppet$$$Puppet agent$$$Puppet runtime$$$Security$$$Upgrade Ruby in puppet-runtime$$$Ruby is upgraded to version 3.2.5 to address CVE-2024-39908 and CVE-2024-35176.$$$$$$PA-6875; PA-6736; PA-6507$$$$$$Upgrade Curl$$$Curl is upgraded to version 8.9.1 to address the following CVEs: CVE-2024-6874; CVE-2024-6197; and CVE-2024-7264.$$$$$$PA-6872$$$$$$Update REXML$$$The REXML gem was updated to version 3.3.6 to address CVE-2024-41946; CVE-2024-41123; and CVE-2024-43398.$$$$$$PA-6882; PA-6881; PA-6901$$$$$$Bump puppet-agents bundled OpenSSL$$$OpenSSL was upgraded to version 3.0.15 to address CVE-2024-5535.$$$$$$PA-6699$$$$$$Resolved issues$$$Resolved issue with catalog download.$$$Addressed an issue where catalog download would fail when running the puppet catalog download command with the default options. The puppet catalog download command now correctly sends facts to download the catalog. Community member nabertrand submitted this issue.$$$$$$PUP-12046$$$$$$Default Security-Enhanced Linux (SELinux) types on file resources are now correctly assigned.$$$Fixed a regression introduced in Puppet 8.8.1 when assigning default SELinux contexts to files. Community member davejbax submitted this issue and contributed to the fix.$$$$$$PUP-12066$$$$$$Resolved issue with node definition using regular expressions (regex).$$$Previously; under certain circumstances; duplicate nodes could be defined; due to the order in which regex type node names were checked. The issue was resolved to help ensure that nodes are matched to unique definitions.$$$$$$PUP-11515$$$$$$Addressed an issue with profiling timers.$$$Addressed an issue where; under certain circumstances; NTP updates or other similar events were causing Puppet profiling timers to display inconsistent results. This issue was resolved by switching to a monotonic clock; to help ensure that time displays in Puppet profile results are not affected by these events.$$$$$$PUP-7520$$$$$$Contributors$$$The Puppet team appreciates all Puppet Community members who contributed content to the September 2024 releases and extends special thanks to @davejbax as a first-time contributor.

Puppet 8.8.1 $$$Released July 2024. This release adds support for the following operating systems: AlmaLinux 9 (x86_64; AARCH64); Rocky Linux 9 (x86_64; AARCH64); and Ubuntu 24.04 (x86_64; ARM). In addition; Puppet is updated to ensure compatibility with Ruby 3.3.$$$$$$GitHub releases$$$Additional details about release updates are available on GitHub. For more information; go to the following sites:$$$Facter$$$Puppet$$$Puppet agent$$$Puppet runtime

Puppet 8.7.0 $$$Released June 2024. This release introduces support for new operating systems.$$$$$$GitHub releases$$$Additional details about release updates are available on GitHub. For more information; go to the following sites:$$$$$$Facter$$$$$$Puppet$$$$$$Puppet Agent$$$$$$Puppet Runtime$$$$$$Enhancements$$$New operating systems$$$You can now install Puppet agent on the following new operating systems:$$$Amazon Linux 2 (aarch64)$$$Fedora 40 (x86_64)$$$Red Hat Enterprise Linux 9 for Power (ppc64le)$$$Major version upgrade for curl$$$Curl is now upgraded in Puppet agent to Version 8.7.1. This version of curl is designed to enhance security and stability.$$$$$$Security$$$CVE-2024-27282$$$Upgraded to Ruby 3.2.4 to address CVE-2024-27282.$$$$$$Contributors$$$The Puppet team appreciates the Puppet Community members who contributed content for recent releases and extends special appreciation to these first-time contributors: anhpt37; Animeshz; garrettrowell; smokris; tlehman; and yakatz.

Puppet 8.6.0 $$$Released April 2024.$$$$$$GitHub Releases$$$More details about what has changed in this release are available on GitHub. Visit the following links for more information:$$$$$$Facter$$$$$$Puppet$$$$$$Puppet Agent$$$$$$Puppet Runtime$$$$$$Enhancements$$$Option to disable catalog messages $$$Added a boolean Puppet setting to disable notice level messages specifying which server the agent requests a catalog from and which server actually handles the request. Catalog messages are enabled by default. PUP-12023$$$$$$package: pacman provider: Add purgeable feature$$$Added an option to the pacman provider to purge config files. This feature was contributed by community member bastelfreak.$$$$$$Resolved issues$$$Non-literal class parameter types need to be deprecated. $$$Previously; non-literal class parameters caused errors due to the different default values of the strict setting. puppet parser validate also returned non-zero exit codes. Now the issue is a language deprecation; so a warning is generated and puppet parser validate returns 0. All language deprecation warnings can be disabled by setting disable_warnings=deprecations in the main section of puppet.conf. PUP-12026$$$$$$Package provider pip not fully functional with network urls on Ubuntu 22.04. $$$Puppets pip package provider now supports installing python modules via network URLs; e.g. source => git+https://github.com/<org>/<repo>.git. Fix contributed by community member smokris. PUP-12027$$$$$$Provider dnfmodule prompts user to trust gpg key when performing module list.$$$Added assumeyes option to dnf module list. Fix contributed by community member loopiv.$$$$$$Security$$$Upgrade OpenSSL$$$Upgraded openssl to version 3.0.13 to address the following CVEs: CVE-2023-5678; CVE-2023-6129; CVE-2023-6237; CVE-2024-0727. PA-6131$$$$$$Vulnerabilities in curl $$$Backported patches for CVE-2024-2004 and CVE-2024-2398 in curl 7.88.1. PA-6291$$$$$$New Digicert code-signing cert $$$Windows MSI are now signed with a new certificate; valid until March 2027. The Issuing CA is DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1.

Puppet 8.5.1 $$$Released March 2024.$$$$$$Resolved issues$$$Using a negative value with the integer type assertion on a class causes a compilation error.$$$Previously; negative values caused a compilation errors when used with the integer type assertion on a class. This has been fixed. PUP-12024