CVSROOT: /cvs Module name: ports Changes by: [email protected] 2017/09/27 09:11:20
Modified files:
devel/git : Tag: OPENBSD_6_1 Makefile distinfo
Log message:
Security update to 2.12.5
The `git` subcommand `cvsserver` is a Perl script which makes excessive
use of the backtick operator to invoke `git`. Unfortunately user input
is used within some of those invocations.
http://seclists.org/oss-sec/2017/q3/att-534/git_cvsserver.txt
ok sthen@
