[Bug 1710016] Re: Please update Git to get the fix to CVE-2017-1000117
Marc Deslauriers
marc.deslauriers at canonical.com
Fri Aug 18 11:26:20 UTC 2017
** Changed in: git (Ubuntu)
Status: New => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to git in Ubuntu.
https://bugs.launchpad.net/bugs/1710016
Title:
Please update Git to get the fix to CVE-2017-1000117
Status in git package in Ubuntu:
Fix Released
Bug description:
A security bugfix was released today to Git: https://public-
inbox.org/git/xmqqh8xf482j.fsf at gitster.mtv.corp.google.com/T/#u.
Without it, cloning an attacker-controlled ssh:// URL (either directly
or indirectly via submodules) leads to arbitrary code execution.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/git/+bug/1710016/+subscriptions
More information about the foundations-bugs
mailing list