git 1:2.37.2-1ubuntu1.4 source package in Ubuntu
Changelog
git (1:2.37.2-1ubuntu1.4) kinetic-security; urgency=medium
* SECURITY UPDATE: Overwritten path and using
local clone optimization even when using a non-local transport
- debian/patches/CVE_2023-22490_and_23946/0002-*.patch: adjust
a mismatch data type in attr.c.
- debian/patches/CVE_2023-22490_and_23946/0003-*.patch: demonstrate
clone_local() with ambiguous transport in
t/t5619-clone-local-ambiguous-transport.sh.
- debian/patches/CVE_2023-22490_and_23946/0004-*.patch: delay
picking a transport until after get_repo_path() in builtin/clone.c.
- debian/patches/CVE_2023-22490_and_23946/0005-*.patch: prevent top-level
symlinks without FOLLOW_SYMLINKS in dir-iterator, dir-iterator.h,
t/t0066-dir-iterator.sh, t/t5604-clone-reference.sh.
- debian/patches/CVE_2023-22490_and_23946/0006-*.patch: fix writing behind
newly created symbolic links in apply.c, t/t4115-apply-symlink.sh.
- CVE-2023-22490
- CVE-2023-23946
-- Leonidas Da Silva Barbosa <email address hidden> Wed, 08 Feb 2023 09:17:55 -0300
Upload details
- Uploaded by:
- Leonidas S. Barbosa
- Uploaded to:
- Kinetic
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- vcs
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| git_2.37.2.orig.tar.xz | 6.7 MiB | 1c3d9c821c4538e7a6dac30a4af8bd8dcfe4f651f95474c526b52f83406db003 |
| git_2.37.2-1ubuntu1.4.debian.tar.xz | 747.7 KiB | a4571fe8c3165c87c809aeaa4ca82daa5a72d3c74059de2aa384e9b4ccb07659 |
| git_2.37.2-1ubuntu1.4.dsc | 2.9 KiB | 81b6e6d74fa3b15bf2726ef7f23599555a995cea377b7aa207ae349eb7b0ba9c |
Available diffs
Binary packages built by this source
- git: No summary available for git in ubuntu kinetic.
No description available for git in ubuntu kinetic.
- git-all: No summary available for git-all in ubuntu kinetic.
No description available for git-all in ubuntu kinetic.
- git-cvs: No summary available for git-cvs in ubuntu kinetic.
No description available for git-cvs in ubuntu kinetic.
- git-daemon-run: No summary available for git-daemon-run in ubuntu kinetic.
No description available for git-daemon-run in ubuntu kinetic.
- git-daemon-sysvinit: No summary available for git-daemon-sysvinit in ubuntu kinetic.
No description available for git-daemon-sysvinit in ubuntu kinetic.
- git-dbgsym: No summary available for git-dbgsym in ubuntu kinetic.
No description available for git-dbgsym in ubuntu kinetic.
- git-doc: No summary available for git-doc in ubuntu kinetic.
No description available for git-doc in ubuntu kinetic.
- git-email: No summary available for git-email in ubuntu kinetic.
No description available for git-email in ubuntu kinetic.
- git-gui: No summary available for git-gui in ubuntu kinetic.
No description available for git-gui in ubuntu kinetic.
- git-man: No summary available for git-man in ubuntu kinetic.
No description available for git-man in ubuntu kinetic.
- git-mediawiki: No summary available for git-mediawiki in ubuntu kinetic.
No description available for git-mediawiki in ubuntu kinetic.
- git-svn: No summary available for git-svn in ubuntu kinetic.
No description available for git-svn in ubuntu kinetic.
- gitk: No summary available for gitk in ubuntu kinetic.
No description available for gitk in ubuntu kinetic.
- gitweb: No summary available for gitweb in ubuntu kinetic.
No description available for gitweb in ubuntu kinetic.
