Slackware 12: 2009-051-02 Moderate: Git Code Execution Risk

slackware

February 21, 2009

New git packages are available for Slackware 12.0, 12.1, 12.2, and -current to fix security issues

Summary

Here are the details from the Slackware 12.2 ChangeLog: patches/packages/git-1.6.1.3-i486-1_slack12.2.tgz: Upgraded to git-1.6.1.3. This fixes a vulnerability where running git-diff or git-grep on a hostile git repository would result in the execution of arbirary code as the git user. For more information, see: https://www.cve.org/CVERecord?id=CVE-2008-3546 (* Security fix *)

Topics Covered

security advisory moderate security issue software update code execution slackware git

Where Find New Packages

HINT: Getting slow download speeds from ftp.slackware.com? Give slackware.osuosl.org a try. This is another primary FTP site for Slackware that can be considerably faster than downloading directly from ftp.slackware.com.
Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating additional FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 12.0: ftp://ftp.slackware.com/pub/slackware/slackware-12.0/patches/packages/git-1.6.1.3-i486-1_slack12.0.tgz
Updated package for Slackware 12.1: ftp://ftp.slackware.com/pub/slackware/slackware-12.1/patches/packages/git-1.6.1.3-i486-1_slack12.1.tgz
Updated package for Slackware 12.2: ftp://ftp.slackware.com/pub/slackware/slackware-12.2/patches/packages/git-1.6.1.3-i486-1_slack12.2.tgz
Updated package for Slackware -current:

MD5 Signatures

Slackware 12.0 package: 6c6af465722ff0abd8a796305ad4af21 git-1.6.1.3-i486-1_slack12.0.tgz
Slackware 12.1 package: 362ac15da4f60b84b40b1ee0d4b60890 git-1.6.1.3-i486-1_slack12.1.tgz
Slackware 12.2 package: 0766dc7d31229d4af357931a569cf38a git-1.6.1.3-i486-1_slack12.2.tgz
Slackware -current package: 69183cb0801be615924fc4c870bc9fb8 git-1.6.1.3-i486-1.tgz

Severity

important

Lowest

Low

Medium

High

Critical

Topics Covered

security advisory moderate security issue software update code execution slackware git

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg git-1.6.1.3-i486-1_slack12.2.tgz

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Slackware 12: 2009-051-02 Moderate: Git Code Execution Risk

Summary

Topics Covered

Where Find New Packages

MD5 Signatures

Topics Covered

Get the latest News and Insights

Installation Instructions

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Slackware 12: 2009-051-02 Moderate: Git Code Execution Risk

Summary

Topics Covered

Where Find New Packages

MD5 Signatures

Topics Covered

Get the latest News and Insights

Installation Instructions

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!