Security update for gitolite (moderate)

2019-01-1800:00:00

lists.opensuse.org

140

EPSS

0.004

Percentile

72.4%

JSON

An update that fixes one vulnerability is now available.

Description:

This update for gitolite fixes the following security issue:

CVE-2018-20683: The rsync command line was not handled correctly, allow
malicious rsync options (boo#1121570)

The version update to 3.6.11 also contains a number of upstream bug fixes.

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.

Alternatively you can run the command listed for your product:

openSUSE Leap 42.3:

zypper in -t patch openSUSE-2019-54=1
openSUSE Leap 15.0:

zypper in -t patch openSUSE-2019-54=1
openSUSE Backports SLE-15:

zypper in -t patch openSUSE-2019-54=1

OSVersionArchitecturePackageVersionFilename
openSUSE Leap42.3noarch< - openSUSE Leap 42.3 (noarch):- openSUSE Leap 42.3 (noarch):.noarch.rpm
openSUSE Leap15.0noarch< - openSUSE Leap 15.0 (noarch):- openSUSE Leap 15.0 (noarch):.noarch.rpm
openSUSE Backports SLE15noarch<  openSUSE Backports SLE-15 (noarch):- openSUSE Backports SLE-15 (noarch):.noarch.rpm

OS	Version	Architecture	Version	Filename
openSUSE Leap	42.3	noarch	< - openSUSE Leap 42.3 (noarch):	- openSUSE Leap 42.3 (noarch):.noarch.rpm
openSUSE Leap	15.0	noarch	< - openSUSE Leap 15.0 (noarch):	- openSUSE Leap 15.0 (noarch):.noarch.rpm
openSUSE Backports SLE	15	noarch	< openSUSE Backports SLE-15 (noarch):	- openSUSE Backports SLE-15 (noarch):.noarch.rpm

EPSS

0.004

Percentile

72.4%

JSON

Related for OPENSUSE-SU-2019:0054-1