*** This bug is a security vulnerability *** Public security bug reported:
Binary package hint: git-core CVE-2008-3546 description: "Stack-based buffer overflow in the (1) diff_addremove and (2) diff_change functions in GIT before 1.5.6.4 might allow local users to execute arbitrary code via a PATH whose length is larger than the system's PATH_MAX when running GIT utilities such as git-diff or git- grep." http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3546 http://kerneltrap.org/mailarchive/git/2008/7/16/2529284 http://www.kernel.org/pub/software/scm/git/docs/RelNotes-1.5.6.4.txt ** Affects: git-core (Ubuntu) Importance: Undecided Status: New ** Visibility changed to: Public -- [CVE-2008-3546] PATH buffer overflow in diff_addremove(), diff_change functions() in git leading to arbitrary code execution https://bugs.launchpad.net/bugs/256617 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
