[ubuntu/precise-updates] git 1: (Accepted)

Ubuntu Archive Robot cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Tue Dec 15 19:28:11 UTC 2015

git (1: precise-security; urgency=medium

  * SECURITY UPDATE: arbitrary code execution issues via URLs
    - debian/diff/0016-CVE-2015-7545-backport1.patch: add function
    - debian/diff/0017-CVE-2015-7545-backport2.patch: add two new functions
      for splitting strings.
    - debian/diff/0018-CVE-2015-7545-1.patch: add a protocol-whitelist
      environment variable.
    - debian/diff/0019-CVE-2015-7545-2.patch: allow only certain protocols
      for submodule fetches.
    - debian/diff/0020-CVE-2015-7545-3.patch: refactor protocol whitelist
    - debian/diff/0021-CVE-2015-7545-4.patch: limit redirection to
    - debian/diff/0022-CVE-2015-7545-5.patch: limit redirection depth.
    - debian/rules: make new tests executable.
    - CVE-2015-7545

Date: 2015-12-14 21:32:14.039850+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Precise-changes mailing list