Synopsis: Important: git security update
Advisory ID: SLSA-2017:2484-1
Issue Date: 2017-08-17
CVE Numbers: CVE-2017-1000117
—
Security Fix(es):
* A shell command injection flaw related to the handling of “ssh” URLs has
been discovered in Git. An attacker could use this flaw to execute shell
commands with the privileges of the user running the Git client, for
example, when performing a “clone” action on a malicious repository or a
legitimate repository containing a malicious commit. (CVE-2017-1000117)
—
SL7
x86_64
git-1.8.3.1-12.el7_4.x86_64.rpm
git-daemon-1.8.3.1-12.el7_4.x86_64.rpm
git-debuginfo-1.8.3.1-12.el7_4.x86_64.rpm
git-svn-1.8.3.1-12.el7_4.x86_64.rpm
noarch
emacs-git-1.8.3.1-12.el7_4.noarch.rpm
emacs-git-el-1.8.3.1-12.el7_4.noarch.rpm
git-all-1.8.3.1-12.el7_4.noarch.rpm
git-bzr-1.8.3.1-12.el7_4.noarch.rpm
git-cvs-1.8.3.1-12.el7_4.noarch.rpm
git-email-1.8.3.1-12.el7_4.noarch.rpm
git-gui-1.8.3.1-12.el7_4.noarch.rpm
git-hg-1.8.3.1-12.el7_4.noarch.rpm
git-p4-1.8.3.1-12.el7_4.noarch.rpm
gitk-1.8.3.1-12.el7_4.noarch.rpm
gitweb-1.8.3.1-12.el7_4.noarch.rpm
perl-Git-1.8.3.1-12.el7_4.noarch.rpm
perl-Git-SVN-1.8.3.1-12.el7_4.noarch.rpm
– Scientific Linux Development Team
