git 1:2.32.0-1ubuntu1.3 source package in Ubuntu
Changelog
git (1:2.32.0-1ubuntu1.3) impish-security; urgency=medium
* SECURITY UPDATE: Potential arbitrary code execution
- debian/patches/CVE-2022-29187-1.patch: adds test to
regression git needs safe.directory when using sudo in
t/t0034-root-safe-directory.sh.
- debian/patches/CVE-2022-29187-2.patch: avoid failing dir ownership
checks if running privileged in git-compat-util.h,
t/t0034-root-safe-directory.sh.
- debian/patches/CVE-2022-29187-3.patch: add negative tests
and allow git init to mostly work under sudo in
t/lib-sudo.sh b/t/lib-sudo.sh.
- debian/patches/CVE-2022-29187-4.patch: allow root
to access both SUDO_UID and root owned in git-compat-util.h,
t/t0034-root-safe-directory.sh.
- debian/patches/CVE-2022-29187-5.patch: add tests for safe.directory
in t/t0033-safe-directory.sh, setup.c.
- debian/patches/CVE-2022-29187-6.patch: tighten ownership checks
post CVE-2022-24765 in setup.c.
- CVE-2022-29187
-- Leonidas Da Silva Barbosa <email address hidden> Tue, 05 Jul 2022 11:17:07 -0300
Upload details
- Uploaded by:
- Leonidas S. Barbosa
- Uploaded to:
- Impish
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- vcs
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| git_2.32.0.orig.tar.xz | 6.2 MiB | 68a841da3c4389847ecd3301c25eb7e4a51d07edf5f0168615ad6179e3a83623 |
| git_2.32.0-1ubuntu1.3.debian.tar.xz | 682.7 KiB | 87745759db5789c2d093836ace034a2a94955a27deb0fd3c8fe4af5577a8d9c8 |
| git_2.32.0-1ubuntu1.3.dsc | 2.9 KiB | bd3a8fc872f5b21ef85e043cf8984a7612bab4f6394a01e75704f7363d352185 |
Available diffs
Binary packages built by this source
- git: No summary available for git in ubuntu impish.
No description available for git in ubuntu impish.
- git-all: No summary available for git-all in ubuntu impish.
No description available for git-all in ubuntu impish.
- git-cvs: No summary available for git-cvs in ubuntu impish.
No description available for git-cvs in ubuntu impish.
- git-daemon-run: No summary available for git-daemon-run in ubuntu impish.
No description available for git-daemon-run in ubuntu impish.
- git-daemon-sysvinit: No summary available for git-daemon-sysvinit in ubuntu impish.
No description available for git-daemon-sysvinit in ubuntu impish.
- git-dbgsym: No summary available for git-dbgsym in ubuntu impish.
No description available for git-dbgsym in ubuntu impish.
- git-doc: No summary available for git-doc in ubuntu impish.
No description available for git-doc in ubuntu impish.
- git-email: No summary available for git-email in ubuntu impish.
No description available for git-email in ubuntu impish.
- git-gui: No summary available for git-gui in ubuntu impish.
No description available for git-gui in ubuntu impish.
- git-man: No summary available for git-man in ubuntu impish.
No description available for git-man in ubuntu impish.
- git-mediawiki: No summary available for git-mediawiki in ubuntu impish.
No description available for git-mediawiki in ubuntu impish.
- git-svn: No summary available for git-svn in ubuntu impish.
No description available for git-svn in ubuntu impish.
- gitk: No summary available for gitk in ubuntu impish.
No description available for gitk in ubuntu impish.
- gitweb: No summary available for gitweb in ubuntu impish.
No description available for gitweb in ubuntu impish.
