This update for rubygem-puppet fixes the following issues:
CVE-2017-10689: Reset permissions when unpacking tar in PMT.
When using minitar, files were unpacked with whatever permissions are
in the tarball. This is potentially unsafe, as tarballs can be easily
created with weird permissions
(bsc#1080288)