git-1.8.3.1-21.el7
エラータID: AXSA:2020-4429:01
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.
Security Fix(es):
* git: Remote code execution in recursive clones with nested submodules (CVE-2019-1387)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2019-1387
An issue was found in Git before v2.24.1, v2.23.1, v2.22.2, v2.21.1, v2.20.2, v2.19.3, v2.18.2, v2.17.3, v2.16.6, v2.15.4, and v2.14.6. Recursive clones are currently affected by a vulnerability that is caused by too-lax validation of submodule names, allowing very targeted attacks via remote code execution in recursive clones.
Update packages.
An issue was found in Git before v2.24.1, v2.23.1, v2.22.2, v2.21.1, v2.20.2, v2.19.3, v2.18.2, v2.17.3, v2.16.6, v2.15.4, and v2.14.6. Recursive clones are currently affected by a vulnerability that is caused by too-lax validation of submodule names, allowing very targeted attacks via remote code execution in recursive clones.
N/A
SRPMS
- git-1.8.3.1-21.el7.src.rpm
MD5: 2213e526503bec8c8aa367fa12c0805d
SHA-256: d2840e9613994a006f358d5adce21236f358e2bebd8000f715a22a0f16fef7f4
Size: 4.37 MB
Asianux Server 7 for x86_64
- git-1.8.3.1-21.el7.x86_64.rpm
MD5: 0f71a833fe17b33c31c94c65ab3c83e0
SHA-256: 90c95cb7d772c8b192a6043f365f1bd77cd6458edcb708a3c6aa1c84e257aca2
Size: 4.39 MB - perl-Git-1.8.3.1-21.el7.noarch.rpm
MD5: 2358a7873f893bc08b5f1a0e1f2a77f8
SHA-256: c0eca85147e5e01debb979241c058d84815dd37e54f542ee90571e7ddc9ea08f
Size: 54.45 kB
日本語