Opened 8 years ago
Closed 8 years ago
#50909 closed defect (fixed)
Git is still vulnerable to CVE-2016-2324 and CVE‑2016‑2315
| Reported by: | myrkraverk (Johann 'Myrkraverk' Oskarsson) | Owned by: | ci42 |
|---|---|---|---|
| Priority: | High | Milestone: | |
| Component: | ports | Version: | 2.3.4 |
| Keywords: | security | Cc: | myrkraverk (Johann 'Myrkraverk' Oskarsson) |
| Port: | git |
Description
According to this email,
http://seclists.org/oss-sec/2016/q1/660
git is still vulnerable to remote code execution.
The port needs direct patching.
Change History (3)
comment:1 Changed 8 years ago by jmroot (Joshua Root)
| Keywords: | git cve removed |
|---|---|
| Milestone: | MacPorts Future |
| Owner: | changed from macports-tickets@… to ciserlohn@… |
comment:2 Changed 8 years ago by myrkraverk (Johann 'Myrkraverk' Oskarsson)
| Cc: | johann@… added |
|---|
comment:3 Changed 8 years ago by neverpanic (Clemens Lang)
| Keywords: | security added |
|---|---|
| Resolution: | → fixed |
| Status: | new → closed |
I've taken the liberty to fix this quickly: r146767.
Note: See
TracTickets for help on using
tickets.
Cc Me!