Git is a fast, scalable, distributed revision control system.
A cross-site scripting (XSS) flaw was found in gitweb, a simple web
interface for Git repositories. A remote attacker could perform an XSS
attack against victims by tricking them into visiting a specially-crafted
gitweb URL. (CVE-2010-3906)
All gitweb users should upgrade to these updated packages, which contain a
backported patch to correct this issue.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 6 | ppc64 | git | < 1.7.1-2.el6_0.1 | git-1.7.1-2.el6_0.1.ppc64.rpm |
RedHat | 6 | noarch | git-cvs | < 1.7.1-2.el6_0.1 | git-cvs-1.7.1-2.el6_0.1.noarch.rpm |
RedHat | 6 | s390x | git | < 1.7.1-2.el6_0.1 | git-1.7.1-2.el6_0.1.s390x.rpm |
RedHat | 6 | noarch | git-gui | < 1.7.1-2.el6_0.1 | git-gui-1.7.1-2.el6_0.1.noarch.rpm |
RedHat | 6 | i686 | git-daemon | < 1.7.1-2.el6_0.1 | git-daemon-1.7.1-2.el6_0.1.i686.rpm |
RedHat | 6 | x86_64 | git-debuginfo | < 1.7.1-2.el6_0.1 | git-debuginfo-1.7.1-2.el6_0.1.x86_64.rpm |
RedHat | 6 | noarch | perl-git | < 1.7.1-2.el6_0.1 | perl-Git-1.7.1-2.el6_0.1.noarch.rpm |
RedHat | 6 | i686 | git-debuginfo | < 1.7.1-2.el6_0.1 | git-debuginfo-1.7.1-2.el6_0.1.i686.rpm |
RedHat | 6 | noarch | gitweb | < 1.7.1-2.el6_0.1 | gitweb-1.7.1-2.el6_0.1.noarch.rpm |
RedHat | 6 | s390x | git-debuginfo | < 1.7.1-2.el6_0.1 | git-debuginfo-1.7.1-2.el6_0.1.s390x.rpm |