Bug 637953
Summary: | CVE-2010-2542 Git: Arbitrary code execution via specially-crafted .git file [fedora-all] | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Vincent Danen <vdanen> |
Component: | cgit | Assignee: | Todd Zullinger <tmz> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | low | Docs Contact: | |
Priority: | low | ||
Version: | 13 | CC: | tmz |
Target Milestone: | --- | Keywords: | Security, SecurityTracking |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Release Note | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2011-03-07 14:04:20 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 618108 |
Description
Vincent Danen
2010-09-27 20:39:01 UTC
cgit-0.9-1.el6 has been submitted as an update for Fedora EPEL 6. https://admin.fedoraproject.org/updates/cgit-0.9-1.el6 cgit-0.9-1.fc14 has been submitted as an update for Fedora 14. https://admin.fedoraproject.org/updates/cgit-0.9-1.fc14 cgit-0.9-1.fc13 has been submitted as an update for Fedora 13. https://admin.fedoraproject.org/updates/cgit-0.9-1.fc13 cgit-0.9-1.fc15 has been submitted as an update for Fedora 15. https://admin.fedoraproject.org/updates/cgit-0.9-1.fc15 cgit-0.9-1.el5 has been submitted as an update for Fedora EPEL 5. https://admin.fedoraproject.org/updates/cgit-0.9-1.el5 cgit-0.9-1.fc15 has been pushed to the Fedora 15 testing repository. If problems still persist, please make note of it in this bug report. If you want to test the update, you can install it with su -c 'yum --enablerepo=updates-testing update cgit'. You can provide feedback for this update here: https://admin.fedoraproject.org/updates/cgit-0.9-1.fc15 This issue was actually addressed in previous cgit updates in Sep 2010: https://admin.fedoraproject.org/updates/search/CVE-2010-2542 http://pkgs.fedoraproject.org/gitweb/?p=cgit.git;a=commitdiff;h=637b84512621d124edd19df2f1d33dc3d89f76f1 |