Gentoo Security Advisory GLSA 200903-15 (git)

The remote host is missing updates announced in advisory GLSA 200903-15. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200903-15 (git)

The remote host is missing updates announced in advisory GLSA 200903-15. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

git: Multiple vulnerabilties

Background GIT - the stupid content tracker, the revision control system used by the Linux kernel team. Description Multiple vulnerabilities have been reported in gitweb that is part of the git package: Shell metacharacters related to gitsearch are not properly sanitized CVE-2008-5516. Shell...

Slackware 12.0 / 12.1 / 12.2 / current : git (SSA:2009-051-02)

New git packages are available for Slackware 12.0, 12.1, 12.2, and -current to fix security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2009-051-02. The text itself is copyright...

git

New git packages are available for Slackware 12.0, 12.1, 12.2, and -current to fix security issues. More details about this issue may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2008-3546 There are other security issues related to gitweb, which...

USN-723-1: Git vulnerabilities

It was discovered that Git did not properly handle long file paths. If a user were tricked into performing commands on a specially crafted Git repository, an attacker could possibly execute arbitrary code with the privileges of the user invoking the program. CVE-2008-3546 It was discovered that t...

Fedora Update for git FEDORA-2008-9080

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora Update for git FEDORA-2008-11678

Check for the Version of git OpenVAS Vulnerability Test Fedora Update for git FEDORA-2008-11678 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

Fedora Update for git FEDORA-2008-11650

Check for the Version of git OpenVAS Vulnerability Test Fedora Update for git FEDORA-2008-11650 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

Fedora Update for git FEDORA-2008-11653

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora Update for git FEDORA-2008-11650

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora Update for git FEDORA-2008-11678

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CVE-2008-5916

CVE-2008-5916 affects gitweb/gitweb.perl in Git 1.6.x (before 1.6.0.6), 1.5.x, 1.4.x and newer, allowing a local repository owner to execute arbitrary commands by modifying the diff.external configuration and issuing a crafted gitweb query. The vulnerability stems from how gitweb processes the di...

CVE-2008-5516

CVE-2008-5516 affects Git-related web interface gitweb (1.5.x up to 1.5.5). The issue arises in the gitweb.cgi script’s handling of git_search input, where shell metacharacters are not properly sanitized, enabling an unauthenticated remote attacker to execute arbitrary commands on the server with...

FreeBSD Ports: git

The remote host is missing an update to the system as announced in the referenced advisory. VID ecad44b9-e663-11dd-afcd-00e0815b8da8 OpenVAS Vulnerability Test $ Description: Auto generated from VID ecad44b9-e663-11dd-afcd-00e0815b8da8 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

FreeBSD : git -- gitweb privilege escalation (ecad44b9-e663-11dd-afcd-00e0815b8da8)

Git maintainers report : gitweb has a possible local privilege escalation bug that allows a malicious repository owner to run a command of his choice by specifying diff.external configuration variable in his repository and running a crafted gitweb query. %NASLMINLEVEL 70300 C Tenable Network...

FreeBSD Ports: git

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

[SECURITY] [DSA 1708-1] New Git packages fix remote code execution

------------------------------------------------------------------------ Debian Security Advisory DSA-1708-1 [email protected] http://www.debian.org/security/ Florian Weimer January 19, 2009 http://www.debian.org/security/faq -...

CVE-2008-5517

The web interface in git gitweb 1.5.x before 1.5.6 allows remote attackers to execute arbitrary commands via shell metacharacters related to 1 gitsnapshot and 2 gitobject...

CVE-2008-5517

CVE-2008-5517 affects the Git web interface (gitweb) 1.5.x up to 1.5.5, where gitweb.cgi fails to sanitize input and can pass shell metacharacters to a shell via git_snapshot/git_object, enabling remote command execution. Connected advisories (Ubuntu USN-723-1, Slackware SSA-2009-051-02, OpenVAS ...