You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa cgit

Sigurnosni nedostatak programskog paketa cgit

——————————————————————————–
Fedora Update Notification
FEDORA-2018-a407b85547
2018-08-14 20:15:54.627754
——————————————————————————–

Name : cgit
Product : Fedora 27
Version : 1.1
Release : 11.fc27
URL : https://git.zx2c4.com/cgit/
Summary : A fast web interface for git
Description :
Cgit is a fast web interface for git. It uses caching to increase performance.

——————————————————————————–
Update Information:

Fix directory traversal vulnerability References:
https://lists.zx2c4.com/pipermail/cgit/2018-August/004176.html
https://git.zx2c4.com/cgit/commit/?id=53efaf30b
——————————————————————————–
ChangeLog:

* Fri Aug 3 2018 Todd Zullinger <tmz@pobox.com> – 1.1-11
– Fix directory traversal vulnerability
* Sun Feb 18 2018 Todd Zullinger <tmz@pobox.com> – 1.1-10
– Use https for source URLs
– Remove el5 conditionals
– Use cgit.conf and config.mak for cgit/git build options
– Drop obsolete %{buildroot} cleanup
– Add gcc and make BuildRequires
* Wed Feb 7 2018 Fedora Release Engineering <releng@fedoraproject.org> – 1.1-9
– Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2018-a407b85547’ at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7RAZ3EVMUAWNZBJLGTCA2E43IEYUKSV5/

 

——————————————————————————–
Fedora Update Notification
FEDORA-2018-a5a7f83e1b
2018-08-14 21:06:35.949884
——————————————————————————–

Name : cgit
Product : Fedora 28
Version : 1.1
Release : 11.fc28
URL : https://git.zx2c4.com/cgit/
Summary : A fast web interface for git
Description :
Cgit is a fast web interface for git. It uses caching to increase performance.

——————————————————————————–
Update Information:

Fix directory traversal vulnerability References:
https://lists.zx2c4.com/pipermail/cgit/2018-August/004176.html
https://git.zx2c4.com/cgit/commit/?id=53efaf30b
——————————————————————————–
ChangeLog:

* Fri Aug 3 2018 Todd Zullinger <tmz@pobox.com> – 1.1-11
– Fix directory traversal vulnerability
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2018-a5a7f83e1b’ at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AJGHSPWQTKGAQBXOKAFW5SB4TPIEFITP/

Top
More in Preporuke
Sigurnosni nedostaci programskog paketa mingw-LibRaw

Otkriveni su sigurnosni nedostaci u programskom paketu mingw-LibRaw za operacijski sustav Fedora. Otkriveni nedostaci potencijalnim napadačima omogućuju izazivanje DoS stanja....

Close