Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2016:0958-1

Опубликовано: 05 апр. 2016
Источник: suse-cvrf

Описание

Security update for git

This update of git to 2.6.6 fixes the following issues:

  • Update to git-2.6.6 including the official upstream fixes for the previous security issues (CVE-2016-2315,CVE-2016-2324,boo#971328):

    See the release rotes for other details Documentation/RelNotes/2.6.3.txt Documentation/RelNotes/2.6.4.txt Documentation/RelNotes/2.6.5.txt Documentation/RelNotes/2.6.6.txt

Список пакетов

openSUSE Leap 42.1
git-2.6.6-7.1
git-arch-2.6.6-7.1
git-core-2.6.6-7.1
git-credential-gnome-keyring-2.6.6-7.1
git-cvs-2.6.6-7.1
git-daemon-2.6.6-7.1
git-doc-2.6.6-7.1
git-email-2.6.6-7.1
git-gui-2.6.6-7.1
git-svn-2.6.6-7.1
git-web-2.6.6-7.1
gitk-2.6.6-7.1

Ссылки

Описание

revision.c in git before 2.7.4 uses an incorrect integer data type, which allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, leading to a heap-based buffer overflow.

Затронутые продукты
openSUSE Leap 42.1:git-2.6.6-7.1
openSUSE Leap 42.1:git-arch-2.6.6-7.1
openSUSE Leap 42.1:git-core-2.6.6-7.1
openSUSE Leap 42.1:git-credential-gnome-keyring-2.6.6-7.1
Ссылки

Описание

Integer overflow in Git before 2.7.4 allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, which triggers a heap-based buffer overflow.

Затронутые продукты
openSUSE Leap 42.1:git-2.6.6-7.1
openSUSE Leap 42.1:git-arch-2.6.6-7.1
openSUSE Leap 42.1:git-core-2.6.6-7.1
openSUSE Leap 42.1:git-credential-gnome-keyring-2.6.6-7.1
Ссылки
Уязвимость openSUSE-SU-2016:0958-1