Fedora 'puppet' Package Insecure File Permissions Vulnerability

http://www.securityfocus.com/bid/36378/info

"The Fedora 'puppet' package is prone to an insecure file-permission
vulnerability.

An attacker can exploit this issue to obtain sensitive information that
may aid in further attacks."

The Fedora Project has released updates to fix this issue. It is
recommended users of puppet on Fedora update as soon as possible.