Opened 9 years ago

Closed 9 years ago

#50909 closed defect (fixed)

Git is still vulnerable to CVE-2016-2324 and CVE‑2016‑2315

Reported by: myrkraverk (Johann 'Myrkraverk' Oskarsson) Owned by: ci42
Priority: High Milestone:
Component: ports Version: 2.3.4
Keywords: security Cc: myrkraverk (Johann 'Myrkraverk' Oskarsson)
Port: git

Description

According to this email,

http://seclists.org/oss-sec/2016/q1/660

git is still vulnerable to remote code execution.

The port needs direct patching.

Change History (3)

comment:1 Changed 9 years ago by jmroot (Joshua Root)

Keywords: git cve removed
Milestone: MacPorts Future
Owner: changed from macports-tickets@… to ciserlohn@…

comment:2 Changed 9 years ago by myrkraverk (Johann 'Myrkraverk' Oskarsson)

Cc: johann@… added

Cc Me!

comment:3 Changed 9 years ago by neverpanic (Clemens Lang)

Keywords: security added
Resolution: fixed
Status: newclosed

I've taken the liberty to fix this quickly: r146767.

Note: See TracTickets for help on using tickets.