[SECURITY] Fedora 25 Update: libgit2-0.24.6-1.fc25

libgit2 is a portable, pure C implementation of the Git core methods provided as a re-entrant linkable library with a solid API, allowing you to write native speed custom Git applications in any language with bindings...

Arbitrary Code Execution

tqdm is vulnerable to arbitrary code execution via insecure use of git. When importing tqdm, it will run a git log command to check if the user is running a pre-released version. It is possible for an attacker to create a repository in which git log executes arbitrary code...

Commix 1.6 - Automated All-In-One OS Command Injection And Exploitation Tool

Commix short for comm and i njection e x ploiter is an automated tool written by Anastasios Stasinopoulos @ancst that can be used from web developers, penetration testers or even security researchers in order to test web-based applications with the view to find bugs, errors or vulnerabilities...

Security fix for the ALT Linux 9 package phpipam version 1.26.050-alt1

Dec. 26, 2016 Alexey Shabalin 1.26.050-alt1 - git snapshot of master branch b99412648829471f3a336036f5cd138b8f131721 - install PHPMailer from upstream fixed CVE-2015-8476,CVE-2016-10033,CVE-2016-10045...

Python JSON Fuzzer: PyJFuzz

Python JSON Fuzzer PyJFuzz is a small, extensible and ready-to-use framework used to fuzz JSON inputs , such as mobile endpoint REST API, JSON implementation, Browsers, cli executable and much more. Dependencies In order to work PyJFuzz need a single dependency, bottle , you can install it from...

openSUSE Security Update : libgit2 (openSUSE-2016-1450)

libgit2 was updated to fix two security issues. These security issues were fixed : - CVE-2016-8568: Read out-of-bounds in gitoidnfmt bsc1003810. - CVE-2016-8569: DoS caused by a NULL pointer dereference in gitcommitmessage bsc1003810. This update was imported from the SUSE:SLE-12-SP2:Update updat...

SUSE SLED12 / SLES12 Security Update : w3m (SUSE-SU-2016:3053-1)

This update for w3m fixes the following issues : - update to debian git version bsc1011293 addressed security issues: CVE-2016-9622: w3m: null deref bsc1012021 CVE-2016-9623: w3m: null deref bsc1012022 CVE-2016-9624: w3m: near-null deref bsc1012023 CVE-2016-9625: w3m: stack overflow bsc1012024...

SUSE-SU-2016:3046-1 Security update for w3m

This update for w3m fixes the following issues: - update to debian git version bsc1011293 addressed security issues: CVE-2016-9621: w3m: global-buffer-overflow write bsc1012020 CVE-2016-9622: w3m: null deref bsc1012021 CVE-2016-9623: w3m: null deref bsc1012022 CVE-2016-9624: w3m: near-null deref...

Git Detection (Windows SMB Login)

Detects the installed version of Git. The script logs in via smb, searches for SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Git < 2.0 Privilege Escalation Vulnerability - Windows

Git is prone to a privilege escalation vulnerability. Copyright C 2016 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 25 Update: libgit2-0.24.3-1.fc25

libgit2 is a portable, pure C implementation of the Git core methods provided as a re-entrant linkable library with a solid API, allowing you to write native speed custom Git applications in any language with bindings...

creak - Poison, Reset, Spoof, Redirect MITM Script

Performs some of the most famous MITM attack on target addresses located in a local network. Among these, deny navigation and download capabilities of a target host in the local network performing an ARP poison attack and sending reset TCP packets to every request made to the router. Born as a...

Git for Windows Untrusted Search Path Vulnerability

Git for Windows is a free, open source distributed version control system based on Windows developed by American software developer Linus Torvalds Linus Torvalds. An untrustworthy search path vulnerability exists in version 1.x of Git for Windows. This vulnerability can be exploited by a local...

[SECURITY] Fedora 24 Update: libgit2-0.24.3-1.fc24

libgit2 is a portable, pure C implementation of the Git core methods provided as a re-entrant linkable library with a solid API, allowing you to write native speed custom Git applications in any language with bindings...

CVE-2016-9274

Untrusted search path vulnerability in Git 1.x for Windows allows local users to gain privileges via a Trojan horse git.exe file in the current working directory. NOTE: 2.x is unaffected...

Design/Logic Flaw

Untrusted search path vulnerability in Git 1.x for Windows allows local users to gain privileges via a Trojan horse git.exe file in the current working directory. NOTE: 2.x is unaffected...

CVE-2016-9274

Untrusted search path vulnerability in Git 1.x for Windows allows local users to gain privileges via a Trojan horse git.exe file in the current working directory. NOTE: 2.x is unaffected...

CVE-2016-9274

Untrusted search path vulnerability in Git 1.x for Windows allows local users to gain privileges via a Trojan horse git.exe file in the current working directory. NOTE: 2.x is unaffected...

CVE-2016-9274

CVE-2016-9274 : In Git for Windows 1.x, an untrusted search path vulnerability allows local privilege escalation via a Trojan horse git.exe in the current working directory. The issue affects Git for Windows 1.x; Git 2.x is not affected. The root cause is the ability to execute a malicious git.ex...

Paragon Initiative Enterprises: Using plain git protocol (vulnerable to MITM)

Using plain git protocol git://domain is insecure as the server is not verified MITM attacker can return different content if last commit not checked against known one more information about this issue Protocols to choose from when cloning: https://gist.github.com/grawity/4392747...