openSUSE 10 Security Update : git (git-5892)

Insufficient quoting of shell characters allowed remote attackers to execute arbitrary commands via the git web interface CVE-2008-5517 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update git-5892...

Git gitweb 'diff.external'本地特权提升漏洞

BUGTRAQ ID: 32967 Git是一款是用于Linux内核开发的版本控制工具。 Git gitweb存在一个本地特权提升缺陷，允许恶意知识库属主通过在他的知识库中指定diff.external配置变量并运行特殊构建的gitweb查询，可导致执行任意命令。 GIT GIT 1.6 5 GIT GIT 1.5.6 5 GIT GIT 1.5.6 .4 GIT GIT 1.5.6 .3 GIT GIT 1.5.5 5 GIT GIT 1.5.4 6 GIT GIT 1.1.5 GIT GIT 1.1.4 升级程序： GIT GIT 1.5.4 6 GIT...

Fedora 8 : git-1.5.4.3-3.fc8 (2008-11653)

This update fixes a local privilege escalation bug in gitweb. For details: http://article.gmane.org/gmane.comp.version-control.git/103624 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

[SECURITY] Fedora 10 Update: git-1.6.0.6-1.fc10

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The git rpm installs the core tools with minimal dependencies. To install all git packages, including tools for integrating with...

[SECURITY] Fedora 8 Update: git-1.5.4.3-3.fc8

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. This is a dummy package which brings in all subpackages...

[SECURITY] Fedora 9 Update: git-1.5.6.5-1.fc9

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The git rpm installs the core tools with minimal dependencies. To install all git packages, including tools for integrating with...

Gentoo Security Advisory GLSA 200809-16 (git)

The remote host is missing updates announced in advisory GLSA 200809-16. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200809-16 (git)

The remote host is missing updates announced in advisory GLSA 200809-16. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

GLSA-200809-16 : Git: User-assisted execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-200809-16 Git: User-assisted execution of arbitrary code Multiple boundary errors in the functions diffaddremove and diffchange when processing overly long repository path names were reported. Impact : A remote attacker could enti...

Git: User-assisted execution of arbitrary code

Background Git is a distributed version control system. Description Multiple boundary errors in the functions diffaddremove and diffchange when processing overly long repository path names were reported. Impact A remote attacker could entice a user to run commands like "git-diff" or "git-grep" on...

openSUSE 10 Security Update : git (git-5585)

This patch fixes several buffer overflows in some git tools, when repositories contain very long pathnames. CVE-2008-3546 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update git-5585. The text...

rPSA-2008-0253-1 git gitweb

rPath Security Advisory: 2008-0253-1 Published: 2008-08-12 Products: rPath Linux 2 Rating: Minor Exposure Level Classification: Indirect Non-deterministic Denial of Service Updated Versions: git=conary.rpath.com@rpl:2/1.5.6.4-1-0.1 gitweb=conary.rpath.com@rpl:2/1.5.6.4-1-0.1 rPath Issue Tracking...

CVE-2008-3546

Stack-based buffer overflow in the 1 diffaddremove and 2 diffchange functions in GIT before 1.5.6.4 might allow local users to execute arbitrary code via a PATH whose length is larger than the system's PATHMAX when running GIT utilities such as git-diff or git-grep...

CVE-2008-3546

Stack-based buffer overflow in the 1 diffaddremove and 2 diffchange functions in GIT before 1.5.6.4 might allow local users to execute arbitrary code via a PATH whose length is larger than the system's PATHMAX when running GIT utilities such as git-diff or git-grep...

Stack overflow

Stack-based buffer overflow in the 1 diffaddremove and 2 diffchange functions in GIT before 1.5.6.4 might allow local users to execute arbitrary code via a PATH whose length is larger than the system's PATHMAX when running GIT utilities such as git-diff or git-grep...

CVE-2008-3546

Stack-based buffer overflow in the 1 diffaddremove and 2 diffchange functions in GIT before 1.5.6.4 might allow local users to execute arbitrary code via a PATH whose length is larger than the system's PATHMAX when running GIT utilities such as git-diff or git-grep...

CVE-2008-3546

CVE-2008-3546 affects Git prior to 1.5.6.4. A stack-based buffer overflow in the diff_addremove and diff_change functions can allow local users to execute arbitrary code when a PATH longer than PATH_MAX is used by Git utilities (e.g., git-diff, git-grep). Impact is partial confidentiality, integr...

CVE-2006-0477

Buffer overflow in git-checkout-index in GIT before 1.1.5 allows remote attackers to execute arbitrary code via an index file with a long symbolic link...

git content tracker buffer overflow

Buffer overflow on oversized symbolic link name...

[SA18643] GIT "git-checkout-index" Symbolic Link Handling Buffer Overflow

TITLE: GIT "git-checkout-index" Symbolic Link Handling Buffer Overflow SECUNIA ADVISORY ID: SA18643 VERIFY ADVISORY: http://secunia.com/advisories/18643/ CRITICAL: Moderately critical IMPACT: System access WHERE: From remote SOFTWARE: GIT 1.x http://secunia.com/product/7172/ DESCRIPTION: A...