[Bug 1557787] Re: client/server RCEs in path_name()
Launchpad Bug Tracker
1557787 at bugs.launchpad.net
Fri Mar 25 02:31:52 UTC 2016
This bug was fixed in the package git - 1:2.7.4-0ubuntu1
---------------
git (1:2.7.4-0ubuntu1) xenial; urgency=medium
* SECURITY UPDATE: New upstream release to fix denial of service or possible
remote code execution (LP: #1557787)
+ CVE-2016-2324
+ The previous upload only fixed one of the two security issues and 2.7.4
is needed to address the second
-- Tyler Hicks <tyhicks at canonical.com> Tue, 22 Mar 2016 18:32:49 -0500
** Changed in: git (Ubuntu)
Status: In Progress => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to git in Ubuntu.
https://bugs.launchpad.net/bugs/1557787
Title:
client/server RCEs in path_name()
Status in git package in Ubuntu:
Fix Released
Status in git source package in Precise:
Fix Released
Status in git source package in Trusty:
Fix Released
Status in git source package in Wily:
Fix Released
Status in git package in Debian:
Fix Released
Bug description:
http://seclists.org/oss-sec/2016/q1/645
http://seclists.org/oss-sec/2016/q1/646
Fixed in 2.7.4 (contains backported removal of path_name from
2.8.0rc0)
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/git/+bug/1557787/+subscriptions
More information about the foundations-bugs
mailing list