AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |
Back to Blog
Openjdk 11 jdk11/10/2023 gitattributes file to the repository, which contains a set of file patterns and the attributes that should be set for paths matching this pattern. These attributes can be defined by adding a. gitattributes are a mechanism to allow defining attributes for paths. Git is distributed revision control system. Upgrade Debian:11 git to version 1:2.30.2-1+deb11u1 or higher. ![]() If you expose git archive via git daemon, disable it by running git config -global daemon.uploadArch false. Users who are unable to upgrade should disable git archive in untrusted repositories. The problem has been patched in the versions published on, going back to v2.30.7. This integer overflow can result in arbitrary heap writes, which may result in arbitrary code execution. It may also be triggered indirectly through git archive via the export-subst mechanism, which expands format specifiers inside of files within the repository during a git archive. This overflow can be triggered directly by a user running a command which invokes the commit formatting machinery (e.g., git log -format=.). When processing the padding operators, there is a integer overflow in pretty.c::format_and_pad_commit() where a size_t is stored improperly as an int, and then added as an offset to a memcpy(). This functionality is also exposed to git archive via the export-subst gitattribute. git log can display commits in an arbitrary format using its -format specifiers. ![]() See How to fix? for Debian:11 relevant fixed versions and status. ![]() Note: Versions mentioned in the description apply only to the upstream git package and not the git package as distributed by Debian:11. Upgrade Debian:11 curl to version 7.74.0-1.3+deb11u5 or higher. The problem exists in the logic for a reused handle when it is changed from a PUT to a POST. This flaw may surprise the application and cause it to misbehave and either send off the wrong data or use memory after free or similar in the subsequent POST request. When doing HTTP(S) transfers, libcurl might erroneously use the read callback ( CURLOPT_READFUNCTION) to ask for data to send, even when the CURLOPT_POSTFIELDS option has been set, if the same handle previously was used to issue a PUT request which used that callback. Note: Versions mentioned in the description apply only to the upstream curl package and not the curl package as distributed by Debian:11.
0 Comments
Read More
Leave a Reply. |