[Bug 1719740] Re: [CVE] Git cvsserver OS Command Injection

Launchpad Bug Tracker Thu, 05 Oct 2017 04:56:01 -0700

This bug was fixed in the package git - 1:1.9.1-1ubuntu0.7

---------------
git (1:1.9.1-1ubuntu0.7) trusty-security; urgency=high


  * SECURITY UPDATE: Git cvsserver OS Command Injection (LP: #1719740)
    - shell-drop-git-cvsserver-support-by-default.diff
    - cvsserver-use-safe_pipe_capture.diff
    - cvsimport-shell-quote-variable-used-in-backticks.diff
    - archimport-use-safe_pipe_capture-for-user-input.diff
    - CVE-2017-14867

 -- Simon Quigley <tsimo...@ubuntu.com>  Tue, 03 Oct 2017 13:20:58 -0500

** Changed in: git (Ubuntu Trusty)
       Status: In Progress => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1719740

Title:
  [CVE] Git cvsserver OS Command Injection

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/git/+bug/1719740/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1719740] Re: [CVE] Git cvsserver OS Command Injection

Reply via email to