CVE-2013-0308

CVE-2013-0308 affects the git tool’s imap-send command: prior to version 1.8.1.4, it does not verify that the SSL server hostname matches the certificate’s CN/subjectAltName, enabling MITM spoofing with any valid cert. Affected releases include git versions before 1.8.1.4; multiple advisories (e....

CVE-2013-0308

The imap-send command in GIT before 1.8.1.4 does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate...

RedHat Update for git RHSA-2013:0589-01

Check for the Version of git OpenVAS Vulnerability Test RedHat Update for git RHSA-2013:0589-01 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

Fedora Update for git FEDORA-2013-2763

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora Update for git FEDORA-2013-2829

Check for the Version of git OpenVAS Vulnerability Test Fedora Update for git FEDORA-2013-2829 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of t...

RHEL 6 : git (RHSA-2013:0589)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2013:0589 advisory. Git is a fast, scalable, distributed revision control system. It was discovered that Git's git-imap-send command, a tool to send a collection of...

Scientific Linux Security Update : git on SL6.x i386/x86_64 (20130304)

It was discovered that Git's git-imap-send command, a tool to send a collection of patches from standard input stdin to an IMAP folder, did not properly perform SSL X.509 v3 certificate validation on the IMAP server's certificate, as it did not ensure that the server's hostname matched the one...

RedHat Update for git RHSA-2013:0589-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora Update for git FEDORA-2013-2829

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

emacs, git, gitk, gitweb, perl security update

CentOS Errata and Security Advisory CESA-2013:0589 Updated git packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score,...

Moderate: Red Hat Security Advisory: git security update

Updated git packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availab...

git: Incorrect IMAP server's SSL x509.v3 certificate validation in git-imap-send command

The imap-send command in GIT before 1.8.1.4 does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate...

Fedora 18 : git-1.8.1.4-1.fc18 (2013-2829)

This update fixes CVE-2013-0308 Incorrect IMAP server's SSL x509.v3 certificate validation in git-imap-send command. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format...

git security update

1.7.1-3.1 - fix CVE-2013-0308 1.7.1-3 - fix CVE-2010-3906...

Fedora 17 : git-1.7.11.7-3.fc17 (2013-2763)

This update fixes CVE-2013-0308 Incorrect IMAP server's SSL x509.v3 certificate validation in git-imap-send command. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format...

[SECURITY] Fedora 17 Update: git-1.7.11.7-3.fc17

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The git rpm installs the core tools with minimal dependencies. To install all git packages, including tools for integrating with...

[SECURITY] Fedora 18 Update: git-1.8.1.4-1.fc18

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The git rpm installs the core tools with minimal dependencies. To install all git packages, including tools for integrating with...

Security fix for the ALT Linux 8 package git version 1.8.1.4-alt1

Feb. 22, 2013 Dmitry V. Levin 1.8.1.4-alt1 - Updated to maint v1.8.1.4 fixes CVE-2013-0308 in git-imap-send...

Security fix for the ALT Linux 10 package git version 1.8.1.4-alt1

Feb. 22, 2013 Dmitry V. Levin 1.8.1.4-alt1 - Updated to maint v1.8.1.4 fixes CVE-2013-0308 in git-imap-send...

Fedora 18 : android-tools-20130123git98d0789-1.fc18 (2013-1750)

Update to upstream git commit 98d0789 - Resolves: rhbz 903074 Move udev rule to docs as example - Resolves: rhbz 879585 Introduce adb.service with PrivateTmp Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has...