Alerts This Week
Warning Icon 1 666
Alerts This Week
Warning Icon 1 666

Slackware 14.1 2016-075-01 Critical: Git Buffer Overflow Fix

slackware
Calendar Grey March 16, 2016
Dist Slackware Esm H88
Recent updates to Git packages tackle serious vulnerabilities related to code execution in various Slackware releases. Immediate upgrade is strongly advised.
New git packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues

Summary

Here are the details from the Slackware 14.1 ChangeLog: patches/packages/git-2.7.3-i486-1_slack14.1.txz: Upgraded. Fixed buffer overflows allowing server and client side remote code execution in all git versions before 2.7.1. For more information, see: https://seclists.org/oss-sec/2016/q1/645 https://www.cve.org/CVERecord?id=CVE-2016-2315 https://www.cve.org/CVERecord?id=CVE-2016-2324 (* Security fix *)

Topics%20covered

Topics Covered

security advisory buffer overflow software patch remote code execution critical fix slackware git update

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 13.0:
Updated package for Slackware x86_64 13.0:
Updated package for Slackware 13.1:
Updated package for Slackware x86_64 13.1:
Updated package for Slackware 13.37:
Updated package for Slackware x86_64 13.37:
Updated package for Slackware 14.0:
Updated package for Slackware x86_64 14.0:
Updated package for Slackware 14.1:
Updated package for Slackware x86_64 14.1:
Updated package for Slackware -current:
Updated package for Slackware x86_64 -current:

MD5 Signatures

Slackware 13.0 package: ddb355036b498043ca22dc0eeaf6e4a4 git-2.7.3-i486-1_slack13.0.txz
Slackware x86_64 13.0 package: c201f26575be7f75d440d6880960e633 git-2.7.3-x86_64-1_slack13.0.txz
Slackware 13.1 package: 546f58d1270f8dbedf42261472e31bb4 git-2.7.3-i486-1_slack13.1.txz
Slackware x86_64 13.1 package: eea4a834c8f927d86066d1ee35e3cb56 git-2.7.3-x86_64-1_slack13.1.txz
Slackware 13.37 package: 18da57fff6bd719f1f01ed278b7a01ce git-2.7.3-i486-1_slack13.37.txz
Slackware x86_64 13.37 package: 1f8804db68f5fe7d57ab98f528696c20 git-2.7.3-x86_64-1_slack13.37.txz
Slackware 14.0 package: 75e9cb592f869edfc76f7b4d53d21bd3 git-2.7.3-i486-1_slack14.0.txz
Slackware x86_64 14.0 package: d0499ad4f902461c6fc5a2b1f3e69445 git-2.7.3-x86_64-1_slack14.0.txz
Slackware 14.1 package: 2f6b1376255fab6cfd1e4beb275d545e git-2.7.3-i486-1_slack14.1.txz
Slackware x86_64 14.1 package: 750759b931bdde2bdc28d6f79dd145e9 git-2.7.3-x86_64-1_slack14.1.txz
Slackware -current package: aa1cf8c22ef799586beab06f6dd0dd34 d/git-2.7.3-i586-1.txz
Slackware x86_64 -current package: 6c7b0710d21745dcaafc9a155f49e6bd d/git-2.7.3-x86_64-1.txz

Severity
critical
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory buffer overflow software patch remote code execution critical fix slackware git update

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg git-2.7.3-i486-1_slack14.1.txz

Related News

Your message here