summary |
shortlog | log |
commit |
commitdiff |
tree
first ⋅ prev ⋅ next
Antoine Beaupré [Mon, 2 Oct 2017 19:47:26 +0000 (20:47 +0100)]
git (1:1.7.10.4-1+wheezy6) wheezy-security; urgency=high
* Non-maintainer upload by the LTS Security Team.
* Fix CVE-2017-14867: Git uses unsafe Perl scripts to support
subcommands such as cvsserver, which allows attackers to execute
arbitrary OS commands via shell metacharacters in a module name. The
vulnerable code is reachable via git-shell even without CVS
support. (Closes: #876854)
[dgit import package git 1:1.7.10.4-1+wheezy6]
Gerrit Pape [Fri, 8 Jun 2012 00:04:11 +0000 (01:04 +0100)]
Import git_1.7.10.4.orig.tar.gz
[dgit import orig git_1.7.10.4.orig.tar.gz]
projects / git.git / log