Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 591
Alerts This Week
Warning Icon 1 591

openSUSE 12.2: 2012:1433-1 Critical Update for cgit Memory Flaw

opensuse
Calendar Grey October 31, 2012
Dist Opensuse Esm H88
A critical security patch for cgit in openSUSE resolves a buffer overflow flaw. Apply it immediately!
An update that fixes one vulnerability is now available

Description

Specially-crafted commits could trigger a heap-based buffer

overflow

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- openSUSE 12.2:

zypper in -t patch openSUSE-2012-752

To bring your system up-to-date, use "zypper patch".

Package List

- openSUSE 12.2 (i586 x86_64):

cgit-0.9.0.2-14.4.1

cgit-debuginfo-0.9.0.2-14.4.1

cgit-debugsource-0.9.0.2-14.4.1

References

https://www.suse.com/security/cve/CVE-2012-4465.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2012:1422-1
Rating: important
Affected Products: openSUSE 12.2 .

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.