Security Advisory
CVE-2012-6120
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Red Hat OpenStack Essex and Folsom creates the /var/log/puppet directory with world-readable permissions, which allows local users to obtain sensitive information such as Puppet log files.