SUSE-SU-2017:1357-1 | Mondoo Vulnerability Intelligence

SUSE-SU-2017:1357-1

UNKNOWN

Security update for git

Published May 19, 2017

Modified 8 years ago

Fix available

Details

This update for git fixes the following issues:

git 2.12.3:

CVE-2017-8386: Fix git-shell not to escape with the starting dash name (bsc#1038395)
Fix for potential segv introduced in v2.11.0 and later
Misc fixes and cleanups.

git 2.12.2:
- CLI output fixes
- 'Dump http' transport fixes
- various fixes for internal code paths
- Trailer 'Cc:' RFC fix
git 2.12.1:
- Reduce authentication round-trip over HTTP when the server supports just a single authentication method.
- 'git add -i' patch subcommand fixed to have a path selection
- various path verification fixes
- fix 'git log -L...' buffer overrun

Affected Packages(11 packages)

git

SUSE Linux Enterprise Server 12 SP1SUSE Linux Enterprise Server 12 SP2SUSE Linux Enterprise Server for Raspberry Pi 12 SP2SUSE Linux Enterprise Server for SAP Applications 12 SP1SUSE Linux Enterprise Server for SAP Applications 12 SP2

Fixed in:

2.12.3-26.1

git-core

Fixed in:

2.12.3-26.1

git-doc

Fixed in:

2.12.3-26.1

git-arch

SUSE Linux Enterprise Software Development Kit 12 SP1SUSE Linux Enterprise Software Development Kit 12 SP2

Fixed in:

2.12.3-26.1