[SECURITY] Fedora 32 Update: git-2.26.2-1.fc32

Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The git rpm installs common set of tools which are usually using with small amount of dependencies. To install all git packages,...

The vulnerability of the “quick import-export-marks” option in the distributed Git version control system allows a attacker to trigger a service failure and compromise data integrity.

The vulnerability of the “quick import-export-marks” option in the distributed Git version control system is related to a lack of input validation mechanisms. Exploiting this vulnerability allows attackers to trigger service failures and compromise data integrity...

The vulnerability of the recursive cloning component of the distributed Git version control system allows a hacker to gain unauthorized access to confidential data, cause service failures, and compromise data integrity.

The vulnerability of the recursive cloning component of the distributed version control system Git is related to the lack of a mechanism for verifying input data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to confidential data, cause service failures, and...

git: Crafted URL containing new lines can cause credential leak

A flaw was found in git. Credentials can be leaked through the use of a crafted URL that contains a newline, fooling the credential helper to give information for a different host. Highest threat from the vulnerability is to data confidentiality...

CVE-2020-9423

LogicalDoc before 8.3.3 could allow an attacker to upload arbitrary files, leading to command execution or retrieval of data from the database. LogicalDoc provides a functionality to add documents. Those documents could then be used for multiple tasks, such as version control, shared among users,...

Design/Logic Flaw

LogicalDoc before 8.3.3 could allow an attacker to upload arbitrary files, leading to command execution or retrieval of data from the database. LogicalDoc provides a functionality to add documents. Those documents could then be used for multiple tasks, such as version control, shared among users,...

Command Injection

Overview blamer is a tool for get information about author of code from version control system. Supports git and subversion. Affected versions of this package are vulnerable to Command Injection. It is possible to inject arbitrary commands as part of the arguments provided to blamer. PoC var Root...

CVE-2020-8113

GitLab 10.7 and later through 12.7.2 has Incorrect Access Control...

AFLplusplus

This is a code repository for AFLplusplus, a tool for fuzz testing and vulnerability discovery. The repository contains various files and directories related to the project, including configuration files, makefiles, and documentation. The repository is organized as follows: .clang-format is a...

git: Recursive submodule cloning allows using git directory twice with synonymous directory name written in .git/

An improper input validation flaw was discovered in git in the way it handles git submodules. A remote attacker could abuse this flaw to trick a victim user into recursively cloning a malicious repository, which, under certain circumstances, could fool git into using the same git directory twice...

metasploit-framework

This is an exploit module for the Metasploit Framework, a penetration testing tool. The module is designed to target a vulnerability in a specific product or service, but the exact target is not specified in the provided context. The module is likely intended to be used by penetration testers and...

Debian DLA-1903-1 : subversion security update

Several vulnerabilities were discovered in Subversion, a version control system. The Common Vulnerabilities and Exposures project identifies the following problems : CVE-2018-11782 Ace Olszowka reported that the Subversion's svnserve server process may exit when a well-formed read-only request...

The vulnerability of the server process svnserve in the centralized version control system Subversion allows a perpetrator to cause a service failure.

The vulnerability of the server process svnserve in a centralized version control system like Subversion is related to the handling of the null pointer. Exploiting this vulnerability could allow an attacker, operating remotely, to cause service interruptions...

ALSA-2019:2512 Important: subversion:1.10 security update

Subversion SVN is a concurrent version control system which enables one or more users to collaborate in developing and maintaining a hierarchy of files and directories while keeping a history of all changes. Security Fixes: subversion: NULL pointer dereference in svnserve leading to an...

Important: subversion:1.10 security update

Subversion SVN is a concurrent version control system which enables one or more users to collaborate in developing and maintaining a hierarchy of files and directories while keeping a history of all changes. Security Fixes: subversion: NULL pointer dereference in svnserve leading to an...

[SECURITY] Fedora 30 Update: subversion-1.12.2-1.fc30

Subversion is a concurrent version control system which enables one or more users to collaborate in developing and maintaining a hierarchy of files and directories while keeping a history of all changes. Subversion only stores the differences between versions, instead of every complete file...

Fedora Update for subversion FEDORA-2019-f6bc68e455

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2019-7263

Linear eMerge E3-Series devices have a Version Control Failure...

CVE-2019-7263

Linear eMerge E3-Series devices have a Version Control Failure...

Design/Logic Flaw

Linear eMerge E3-Series devices have a Version Control Failure...