This update of puppet fixes two vulnerabilities that could
potentially be exploited by local attackers to escalate
privileges due to improper privilege dropping and file
handling issues (symlink flaws) in puppet (CVE-2012-1053,
CVE-2012-1054).