Ubuntu
git-core package

Name Status Last Modified Last Commit
lp:ubuntu/maverick/git-core 2 Mature 2011-10-25 17:13:17 UTC
53. * debian/git-daemon-run.postrm: purge...

Author: Gerrit Pape
Revision Date: 2010-04-01 20:42:19 UTC

* debian/git-daemon-run.postrm: purge: don't warn if the git-daemon
  service is already removed; use -f option to userdel, on fast-purge
  the log service daemon might still run for a short time (closes:
  #575434).
* new upstream point release.
lp:ubuntu/lucid-updates/git-core 2 Mature 2011-10-25 17:12:22 UTC
54. * SECURITY UPDATE: gitweb cross-site ...

Author: Steve Beattie
Revision Date: 2010-12-17 13:18:54 UTC

* SECURITY UPDATE: gitweb cross-site scripting vulnerability
  - debian/diff/0034-gitweb-Introduce-esc_attr...diff:
    from upstream: gitweb: do not parrot filenames or other arguments
    given in a request without proper quoting
  - CVE-2010-3906
lp:ubuntu/lucid-proposed/git-core 2 Mature 2011-10-25 17:11:28 UTC
54. debian/rules: install missing gitweb....

Author: Baptiste Mille-Mathias
Revision Date: 2010-09-13 13:19:46 UTC

debian/rules: install missing gitweb.js for the gitweb Web configuration
(LP: #636999)
lp:ubuntu/lucid-security/git-core 2 Mature 2011-10-25 17:10:34 UTC
54. * SECURITY UPDATE: gitweb cross-site ...

Author: Steve Beattie
Revision Date: 2010-12-17 13:18:54 UTC

* SECURITY UPDATE: gitweb cross-site scripting vulnerability
  - debian/diff/0034-gitweb-Introduce-esc_attr...diff:
    from upstream: gitweb: do not parrot filenames or other arguments
    given in a request without proper quoting
  - CVE-2010-3906
lp:ubuntu/lucid/git-core 2 Mature 2011-10-25 17:09:38 UTC
53. * debian/git-daemon-run.postrm: purge...

Author: Gerrit Pape
Revision Date: 2010-04-01 20:42:19 UTC

* debian/git-daemon-run.postrm: purge: don't warn if the git-daemon
  service is already removed; use -f option to userdel, on fast-purge
  the log service daemon might still run for a short time (closes:
  #575434).
* new upstream point release.
lp:ubuntu/karmic/git-core bug 1 Development 2011-10-25 17:09:22 UTC
49. [ Anders Kaseorg ] * Fix manpage form...

Author: Gerrit Pape
Revision Date: 2009-06-29 00:06:59 UTC

[ Anders Kaseorg ]
* Fix manpage formatting: set ASCIIDOC_NO_ROFF instead of
  DOCBOOK_XSL_173 (based on the instructions in Documentation/Makefile)
  and don’t override the internal Makefile variable ASCIIDOC_EXTRA
  (closes: #530693, #521954, #533320).

[ Gerrit Pape ]
* debian/control: Standards-Version: 3.8.2.0.
lp:ubuntu/karmic-updates/git-core 1 Development 2011-10-25 17:09:06 UTC
50. * SECURITY UPDATE: gitweb cross-site ...

Author: Steve Beattie
Revision Date: 2010-12-17 14:43:15 UTC

* SECURITY UPDATE: gitweb cross-site scripting vulnerability
  - debian/diff/0034-gitweb-Introduce-esc_attr...diff:
    from upstream: gitweb: do not parrot filenames or other arguments
    given in a request without proper quoting
  - CVE-2010-3906
lp:ubuntu/karmic-security/git-core 1 Development 2011-10-25 17:08:35 UTC
50. * SECURITY UPDATE: gitweb cross-site ...

Author: Steve Beattie
Revision Date: 2010-12-17 14:43:15 UTC

* SECURITY UPDATE: gitweb cross-site scripting vulnerability
  - debian/diff/0034-gitweb-Introduce-esc_attr...diff:
    from upstream: gitweb: do not parrot filenames or other arguments
    given in a request without proper quoting
  - CVE-2010-3906
lp:ubuntu/intrepid-security/git-core bug 1 Development 2011-10-25 17:08:22 UTC
43. * SECURITY UPDATE: arbitrary code exe...

Author: Marc Deslauriers
Revision Date: 2009-02-13 08:45:10 UTC

* SECURITY UPDATE: arbitrary code execution via long PATH in diff_addremove
  and diff_change (LP: #248750)
  - Previous CVE-2008-3546 patch was incomplete
  - debian/diff/0006-CVE-2008-3546-missing-part.diff: safely build the full
    path in attr.c and builtin-grep.c.
  - CVE-2008-3546
* SECURITY UPDATE: arbitrary command execution via diff.external configuration
  variable.
  - debian/diff/0007-CVE-2008-5916.diff: remove unused legacy-style URI code
    in gitweb/gitweb.perl.
  - CVE-2008-5916
lp:ubuntu/jaunty/git-core 1 Development 2011-10-25 17:07:45 UTC
44. * SECURITY UPDATE: arbitrary command ...

Author: Marc Deslauriers
Revision Date: 2009-02-20 13:55:31 UTC

* SECURITY UPDATE: arbitrary command execution via diff.external configuration
  variable.
  - debian/diff/0005-CVE-2008-5916.diff: remove unused legacy-style URI code
    in gitweb/gitweb.perl.
  - CVE-2008-5916
lp:ubuntu/intrepid/git-core bug 1 Development 2011-10-25 17:07:27 UTC
42. * debian/control: + Added libauthen-...

Author: Alessio Treglia
Revision Date: 2008-09-24 10:36:22 UTC

* debian/control:
 + Added libauthen-sasl-perl on Recommends for git-email (LP: #258142).
 + Added libnet-smtp-ssl-perl on Depends for git-email (LP: #272939).
lp:ubuntu/intrepid-updates/git-core 1 Development 2011-10-25 17:07:27 UTC
43. * SECURITY UPDATE: arbitrary code exe...

Author: Marc Deslauriers
Revision Date: 2009-02-13 08:45:10 UTC

* SECURITY UPDATE: arbitrary code execution via long PATH in diff_addremove
  and diff_change (LP: #248750)
  - Previous CVE-2008-3546 patch was incomplete
  - debian/diff/0006-CVE-2008-3546-missing-part.diff: safely build the full
    path in attr.c and builtin-grep.c.
  - CVE-2008-3546
* SECURITY UPDATE: arbitrary command execution via diff.external configuration
  variable.
  - debian/diff/0007-CVE-2008-5916.diff: remove unused legacy-style URI code
    in gitweb/gitweb.perl.
  - CVE-2008-5916
lp:ubuntu/hardy-security/git-core bug 2 Mature 2011-10-25 17:07:24 UTC
41. [ David Leadbeater ] * SECURITY UPDAT...

Author: Marc Deslauriers
Revision Date: 2009-02-12 15:49:08 UTC

[ David Leadbeater ]
* SECURITY UPDATE: Fix remote code execution in gitweb (LP: #317052)
  - CVE-2008-5516: http://repo.or.cz/w/git.git?a=commitdiff;h=c582abae
  - CVE-2008-5517: http://repo.or.cz/w/git.git?a=commitdiff;h=516381d5

[ Marc Deslauriers ]
* SECURITY UPDATE: arbitrary code execution via long PATH in diff_addremove
  and diff_change (LP: #248750)
  - debian/diff/0007-SECURITY-CVE-2008-3546.diff: safely build the full path.
  - CVE-2008-3546
* SECURITY UPDATE: arbitrary command execution via diff.external configuration
  variable.
  - debian/diff/0008-SECURITY-CVE-2008-5916.diff: remove unused legacy-style
    URI code in gitweb/gitweb.perl.
  - CVE-2008-5916
lp:ubuntu/hardy-updates/git-core 2 Mature 2011-10-25 17:06:42 UTC
41. [ David Leadbeater ] * SECURITY UPDAT...

Author: Marc Deslauriers
Revision Date: 2009-02-12 15:49:08 UTC

[ David Leadbeater ]
* SECURITY UPDATE: Fix remote code execution in gitweb (LP: #317052)
  - CVE-2008-5516: http://repo.or.cz/w/git.git?a=commitdiff;h=c582abae
  - CVE-2008-5517: http://repo.or.cz/w/git.git?a=commitdiff;h=516381d5

[ Marc Deslauriers ]
* SECURITY UPDATE: arbitrary code execution via long PATH in diff_addremove
  and diff_change (LP: #248750)
  - debian/diff/0007-SECURITY-CVE-2008-3546.diff: safely build the full path.
  - CVE-2008-3546
* SECURITY UPDATE: arbitrary command execution via diff.external configuration
  variable.
  - debian/diff/0008-SECURITY-CVE-2008-5916.diff: remove unused legacy-style
    URI code in gitweb/gitweb.perl.
  - CVE-2008-5916
lp:ubuntu/gutsy-security/git-core bug 1 Development 2011-10-25 17:06:29 UTC
31. * SECURITY UPDATE: arbitrary code exe...

Author: Marc Deslauriers
Revision Date: 2009-02-13 09:32:33 UTC

* SECURITY UPDATE: arbitrary code execution via long PATH in diff_addremove
  and diff_change (LP: #248750)
  - debian/diff/0007-SECURITY-CVE-2008-3546.diff: safely build the full path.
  - CVE-2008-3546
* SECURITY UPDATE: arbitrary command execution via shell metacharacters
  related to git_search in gitweb (LP: #317052)
  - debian/diff/0006-CVE-2008-5516.diff: use git-log instead of git-rev-list |
    git-diff-tree for pickaxe search in gitweb/gitweb.perl.
  - CVE-2008-5516
* SECURITY UPDATE: arbitrary command execution via shell metacharacters
  related to git_snapshot and git_object in gitweb (LP: #317052)
  - debian/diff/0007-CVE-2008-5517.diff: quote the given arguments before
    passing them to the shell in gitweb/gitweb.perl.
  - CVE-2008-5517
lp:ubuntu/hardy/git-core 2 Mature 2011-10-25 17:06:13 UTC
40. debian/rules: Use wish8.4 for the tcl...

Author: Bryan Donlan
Revision Date: 2008-04-06 18:53:53 UTC

debian/rules: Use wish8.4 for the tcl interpreter, to match our dependency
in debian/control. (LP: #196846)
lp:ubuntu/gutsy-updates/git-core 1 Development 2011-10-25 17:05:58 UTC
31. * SECURITY UPDATE: arbitrary code exe...

Author: Marc Deslauriers
Revision Date: 2009-02-13 09:32:33 UTC

* SECURITY UPDATE: arbitrary code execution via long PATH in diff_addremove
  and diff_change (LP: #248750)
  - debian/diff/0007-SECURITY-CVE-2008-3546.diff: safely build the full path.
  - CVE-2008-3546
* SECURITY UPDATE: arbitrary command execution via shell metacharacters
  related to git_search in gitweb (LP: #317052)
  - debian/diff/0006-CVE-2008-5516.diff: use git-log instead of git-rev-list |
    git-diff-tree for pickaxe search in gitweb/gitweb.perl.
  - CVE-2008-5516
* SECURITY UPDATE: arbitrary command execution via shell metacharacters
  related to git_snapshot and git_object in gitweb (LP: #317052)
  - debian/diff/0007-CVE-2008-5517.diff: quote the given arguments before
    passing them to the shell in gitweb/gitweb.perl.
  - CVE-2008-5517
lp:ubuntu/gutsy/git-core 1 Development 2011-10-25 17:05:35 UTC
30. No changes from Debian.

Author: LaMont Jones
Revision Date: 2007-09-07 10:39:45 UTC

No changes from Debian.
lp:ubuntu/feisty-backports/git-core 1 Development 2011-10-25 17:05:12 UTC
21. * backport to dapper et al. - debia...

Author: LaMont Jones
Revision Date: 2007-11-29 07:28:44 UTC

* backport to dapper et al.
  - debian/rules changes to support source:Upstream-Version for old dpkg.
  - allow asciidoc (>7.0.2-3)
lp:ubuntu/feisty/git-core 1 Development 2011-10-25 17:05:01 UTC
19. Rebuild for changes in the amd64 tool...

Author: Matthias Klose
Revision Date: 2007-03-05 01:16:45 UTC

Rebuild for changes in the amd64 toolchain.
lp:ubuntu/edgy-backports/git-core 1 Development 2011-10-25 17:04:45 UTC
13. * backport to dapper et al. - debia...

Author: LaMont Jones
Revision Date: 2007-11-29 07:28:44 UTC

* backport to dapper et al.
  - debian/rules changes to support source:Upstream-Version for old dpkg.
  - allow asciidoc (>7.0.2-3)
lp:ubuntu/edgy/git-core 1 Development 2011-10-25 17:04:35 UTC
11. * new upstream release. * debian/chan...

Author: Gerrit Pape
Revision Date: 2006-07-11 21:38:33 UTC

* new upstream release.
* debian/changelog.upstream: upstream changes taken from mailing list
  announcement.
* debian/rules: user same build flags and prefix to $(MAKE) in build
  and install target to prevent rebuild in install target.
lp:ubuntu/dapper-security/git-core bug 1 Development 2011-10-25 17:04:28 UTC
10. * SECURITY UPDATE: arbitrary code exe...

Author: Marc Deslauriers
Revision Date: 2009-02-13 13:34:03 UTC

* SECURITY UPDATE: arbitrary code execution via long PATH in diff_addremove
  and diff_change (LP: #248750)
  - debian/diff/0001-CVE-2008-3546.diff: safely build the full path.
  - CVE-2008-3546
lp:ubuntu/dapper-backports/git-core 1 Development 2011-10-25 17:04:16 UTC
11. * backport to dapper * source:Upstrea...

Author: LaMont Jones
Revision Date: 2008-04-06 13:54:27 UTC

* backport to dapper
* source:Upstream-Version expanded inline
lp:ubuntu/dapper-updates/git-core 1 Development 2011-10-25 17:04:07 UTC
10. * SECURITY UPDATE: arbitrary code exe...

Author: Marc Deslauriers
Revision Date: 2009-02-13 13:34:03 UTC

* SECURITY UPDATE: arbitrary code execution via long PATH in diff_addremove
  and diff_change (LP: #248750)
  - debian/diff/0001-CVE-2008-3546.diff: safely build the full path.
  - CVE-2008-3546
lp:ubuntu/dapper/git-core 1 Development 2011-10-25 17:03:52 UTC
9. Add fix for CVE-2006-0477 stolen from...

Author: Fabio Massimo Di Nitto
Revision Date: 2006-04-02 08:23:27 UTC

Add fix for CVE-2006-0477 stolen from head.
(1ecc18e4fc0c91e9cab1aafbedb0eebdebaa8dd3)
126 of 26 results FirstPreviousNextLast