CVE-2016-3095 was announced today: http://www.openwall.com/lists/oss-security/2016/04/06/3 Updating to pulp-2.8.2 will fix the issue.
pulp-2.8.2-1.fc24 pulp-puppet-2.8.2-1.fc24 pulp-rpm-2.8.2-1.fc24 has been submitted as an update to Fedora 24. https://bodhi.fedoraproject.org/updates/FEDORA-2016-f75bd73891
pulp-2.8.2-1.fc24, pulp-puppet-2.8.2-1.fc24, pulp-rpm-2.8.2-1.fc24 has been pushed to the Fedora 24 testing repository. If problems still persist, please make note of it in this bug report. See https://fedoraproject.org/wiki/QA:Updates_Testing for instructions on how to install test updates. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2016-f75bd73891
pulp-2.8.2-1.fc24, pulp-puppet-2.8.2-1.fc24, pulp-rpm-2.8.2-1.fc24 has been pushed to the Fedora 24 stable repository. If problems still persist, please make note of it in this bug report.