15 matches found
SUSE CVE-2014-9706
The buildindexfromtree function in index.py in Dulwich before 0.9.9 allows remote attackers to execute arbitrary code via a commit with a directory path starting with .git/, which is not properly handled when checking out a working tree...
Fedora 22 : python-dulwich-0.10.0-1.fc22 (2015-4639)
Fix for CVE-2014-9706 rhbz1204889, rhbz1204890, and rhbz1204891 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additiona...
[SECURITY] [DSA 3206-1] dulwich security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3206-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso March 28, 2015 http://www.debian.org/security/faq -...
Updated python-dulwich packages fix security vulnerabilities
Updated python-dulwich package fixes security vulnerabilities: It was discovered that Dulwich allows writing to files under .git/ when checking out working trees. This could lead to the execution of arbitrary code with the privileges of the user running an application based on Dulwich...
Fedora 21 : python-dulwich-0.10.0-1.fc21 (2015-4575)
Fix for CVE-2014-9706 rhbz1204889, rhbz1204890, and rhbz1204891 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additiona...
Fedora 20 : python-dulwich-0.10.0-1.fc20 (2015-4534)
Fix for CVE-2014-9706 rhbz1204889, rhbz1204890, and rhbz1204891 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additiona...
Fedora Update for python-dulwich FEDORA-2015-4534
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2014-9706
The buildindexfromtree function in index.py in Dulwich before 0.9.9 allows remote attackers to execute arbitrary code via a commit with a directory path starting with .git/, which is not properly handled when checking out a working tree...
CVE-2014-9706
The CVE concerns Dulwich (Python Git implementation). The vulnerability exists in the function build_index_from_tree (index.py) in Dulwich versions prior to 0.9.9, where a commit with a directory path starting with .git/ is not handled correctly during checkout, allowing remote command execution....
CVE-2014-9706
The buildindexfromtree function in index.py in Dulwich before 0.9.9 allows remote attackers to execute arbitrary code via a commit with a directory path starting with .git/, which is not properly handled when checking out a working tree...
Debian DSA-3206-1 : dulwich - security update
Multiple vulnerabilities have been discovered in Dulwich, a Python implementation of the file formats and protocols used by the Git version control system. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2014-9706 It was discovered that Dulwich allows...
[SECURITY] [DSA 3206-1] dulwich security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3206-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso March 28, 2015 http://www.debian.org/security/faq -...
[SECURITY] [DSA 3206-1] dulwich security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3206-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso March 28, 2015 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 3206-1 (dulwich - security update)
Multiple vulnerabilities have been discovered in Dulwich, a Python implementation of the file formats and protocols used by the Git version control system. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2014-9706 It was discovered that Dulwich allows writi...
DSA-3206-1 dulwich - security update
Bulletin has no description...