CVE-2017-1000117: A client side code execution via shell injection when receiving special submodule strings from a malicious server was fixed (bsc#1052481)
Affected Packages(11 packages)
git
SUSE Linux Enterprise Server 12 SP1-LTSSSUSE Linux Enterprise Server 12 SP2SUSE Linux Enterprise Server 12 SP3SUSE Linux Enterprise Server 12-LTSSSUSE Linux Enterprise Server for Raspberry Pi 12 SP2
Fixed in:
2.12.3-27.5.1
git-core
SUSE Linux Enterprise Server 12 SP1-LTSSSUSE Linux Enterprise Server 12 SP2SUSE Linux Enterprise Server 12 SP3SUSE Linux Enterprise Server 12-LTSSSUSE Linux Enterprise Server for Raspberry Pi 12 SP2
Fixed in:
2.12.3-27.5.1
git-doc
SUSE Linux Enterprise Server 12 SP1-LTSSSUSE Linux Enterprise Server 12 SP2SUSE Linux Enterprise Server 12-LTSSSUSE Linux Enterprise Server for Raspberry Pi 12 SP2SUSE Linux Enterprise Server for SAP Applications 12
Fixed in:
2.12.3-27.5.1
git-arch
SUSE Linux Enterprise Software Development Kit 12 SP2SUSE Linux Enterprise Software Development Kit 12 SP3
Fixed in:
2.12.3-27.5.1
git-cvs
SUSE Linux Enterprise Software Development Kit 12 SP2SUSE Linux Enterprise Software Development Kit 12 SP3
Fixed in:
2.12.3-27.5.1
git-daemon
SUSE Linux Enterprise Software Development Kit 12 SP2SUSE Linux Enterprise Software Development Kit 12 SP3
Fixed in:
2.12.3-27.5.1
git-email
SUSE Linux Enterprise Software Development Kit 12 SP2SUSE Linux Enterprise Software Development Kit 12 SP3
Fixed in:
2.12.3-27.5.1
git-gui
SUSE Linux Enterprise Software Development Kit 12 SP2SUSE Linux Enterprise Software Development Kit 12 SP3
Fixed in:
2.12.3-27.5.1
git-svn
SUSE Linux Enterprise Software Development Kit 12 SP2SUSE Linux Enterprise Software Development Kit 12 SP3
Fixed in:
2.12.3-27.5.1
git-web
SUSE Linux Enterprise Software Development Kit 12 SP2SUSE Linux Enterprise Software Development Kit 12 SP3