Information on source package git

Available versions

ReleaseVersion
wheezy1:1.7.10.4-1+wheezy3
wheezy (security)1:1.7.10.4-1+wheezy6
jessie1:2.1.4-2.1+deb8u3
jessie (security)1:2.1.4-2.1+deb8u5
stretch (security)1:2.11.0-3+deb9u2
buster1:2.15.0-1
sid1:2.15.0-1

Open issues

BugwheezyjessiestretchbustersidDescription
CVE-2014-9390vulnerable (no DSA)fixedfixedfixedfixedarbitrary command execution vulnerability on case-insensitive file systems

Open unimportant issues

BugwheezyjessiestretchbustersidDescription
CVE-2017-15298vulnerablevulnerablevulnerablevulnerablevulnerableGit through 2.14.2 mishandles layers of tree objects, which allows ...

Resolved issues

BugDescription
CVE-2017-8386git-shell in git before 2.4.12, 2.5.x before 2.5.6, 2.6.x before ...
CVE-2017-14867Git before 2.10.5, 2.11.x before 2.11.4, 2.12.x before 2.12.5, 2.13.x ...
CVE-2017-1000117A malicious third-party can give a crafted "ssh://..." URL to an ...
CVE-2016-2324Integer overflow in Git before 2.7.4 allows remote attackers to ...
CVE-2016-2315revision.c in git before 2.7.4 uses an incorrect integer data type, ...
CVE-2015-7545The (1) git-remote-ext and (2) unspecified other remote helper ...
CVE-2014-9938contrib/completion/git-prompt.sh in Git before 1.9.3 does not sanitize ...
CVE-2013-0308The imap-send command in GIT before 1.8.1.4 does not verify that the ...
CVE-2010-3906Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and earlier ...

Security announcements

DSA / DLADescription
DLA-1120-1git - security update
DSA-3984-1git - security update
DSA-3984-1git - security update
DLA-1068-1git - security update
DSA-3934-1git - security update
DSA-3934-1git - security update
DSA-3848-1git - security update
DLA-938-1git - security update
DSA-3521-1git - security update
DSA-3521-1git - security update
DSA-3435-1git - security update
DSA-3435-1git - security update

Search for package or bug name: Reporting problems