Debian Security Update DSA-3984 git - security update

Thread starter LinuxBot
Start date Sep 27, 2017

LinuxBot

Member

Sep 27, 2017

#1

joernchen discovered that the git-cvsserver subcommand of Git, a distributed version control system, suffers from a shell command injection vulnerability due to unsafe use of the Perl backtick operator. The git-cvsserver subcommand is reachable from the git-shell subcommand even if CVS support has not been configured (however, the git-cvs package needs to be installed).

Continue reading...

You must log in or register to reply here.

Similar threads

Debian Security Update DSA-6300-1 node-shell-quote - security update

Replies: 0

Views: 62

May 27, 2026

LinuxBot

Debian Security Update DSA-5849-1 git-lfs - security update

Replies: 0

Views: 293

Jan 24, 2025

LinuxBot

Debian Security Update DSA-6317-1 symfony - security update

Replies: 0

Views: 48

Monday at 10:42 PM

LinuxBot

Debian Security Update DSA-6301-1 roundcube - security update

Replies: 0

Views: 64

May 28, 2026

LinuxBot

Debian Security Update DSA-6312-1 symfony - security update

Replies: 0

Views: 61

May 31, 2026

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Staff online

wizardfromoz
Administrator

Members online

Total: 2,613 (members: 4, guests: 2,609)

Latest posts

Hellooooo
- Latest: MikeRocor
- 11 minutes ago
Member Introductions
D
Recording and transcribing a meeting to create meeting minutes
- Latest: Danbor
- Today at 4:10 AM
Linux Audio / Video
Linux on a Mac?
- Latest: Skybear
- Today at 3:41 AM
Laptops / Netbooks
MX23 boot options glitch
- Latest: Alexzee
- Yesterday at 11:58 PM
Debian and derivatives
D
How a USB-connected speaker can infect a PC without ever being touched
- Latest: deb_user
- Yesterday at 7:55 PM
General Computing

Top