delorie.com/archives/browse.cgi   search  
Mail Archives: cygwin/2016/03/18/04:42:36

X-Recipient: archive-cygwin AT delorie DOT com
DomainKey-Signature: a=rsa-sha1; c=nofws; d=sourceware.org; h=list-id
:list-unsubscribe:list-subscribe:list-archive:list-post
:list-help:sender:mime-version:in-reply-to:references:from:date
:message-id:subject:to:content-type; q=dns; s=default; b=sTdLgVE
YXx5BkWd2x+mxYFE2PuLvEbsCdNgdZ/h4X0/aHoanfvo73N27xmIqCEshXjUZom0
buwQSREEm6kgG3gwyQ9IyQfjNJo5rDFtfUQzU6780xleR0ooCOwEBnubR0WH7xae
1g69UHhCJcMguN1LE4JD6oQjJ2fU+XWPz6yM=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sourceware.org; h=list-id
:list-unsubscribe:list-subscribe:list-archive:list-post
:list-help:sender:mime-version:in-reply-to:references:from:date
:message-id:subject:to:content-type; s=default; bh=7KiYMKvRezIZ4
K21bGIgchfMUcI=; b=nlWnBaAXtxmf1i7LTowjKjFwRLt1TmTJLaiynPG1VP3JW
ei+gGCpZj9ohytCpyZor1gYgXAAv+6F0DsnzYSj9KiqUMVAUw6plI2EvaNBwIsse
WXIYrG7UKsVgvXpY+paGEMvDpsuAkbAc8FO1BxmXBuu3oY36sYjUQ96iQsNp1Y=
Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Id: <cygwin.cygwin.com>
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sourceware.org/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Mail-Followup-To: cygwin AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
Authentication-Results: sourceware.org; auth=none
X-Virus-Found: No
X-Spam-SWARE-Status: No, score=-1.2 required=5.0 tests=BAYES_05,RCVD_IN_DNSWL_LOW,SPF_PASS autolearn=ham version=3.3.2 spammy=D*dinwoodie.org, sk:adamdi, sk:adam AT di, adam AT dinwoodie DOT org
X-HELO: mail-wm0-f43.google.com
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to; bh=30unkMqe/sOjtsrWaqUVoMcJUzz4xeTjyuq4TmjfhzQ=; b=jMVaOjeWg1NWLDxoicTex3tQ56ZrM04lU1Z+vA67BgI9DOINJ/Pg2wGwotWWr0pf4A 8P7l+EeJZK2PTLb8RPjG03NTYz5CbM+ckgZjB/dTwpCoVZi60hkHlfVEyRkr8CkV4bKG 1hQFQuzu4rNed0a7u90QddKqlMzsv7FWaoXa9oCZkomdp6tw8CfRmbiuNESOzU0Ulwlq Stye06eSyNoaN5hkQUQ14p3pBqe5efphQlx4gwUEVulz4nz84zPko1y+RfJHHWzfC6mO quoD4hNmWbI7Ihn1o2Eu0PpD7r4ybOCjVLiHBGAfz6AShMFpPypW//QSTJmp+JwSmt3d s6Vw==
X-Gm-Message-State: AD7BkJJ95Rv0k85BJU0FbGt+pOP9Sal7eoVntzYIg3utJLN1acbLyidZKOCk5J643dBxAkXqZxrekimmpswbIw==
X-Received: by 10.28.134.137 with SMTP id i131mr42947274wmd.62.1458290531143; Fri, 18 Mar 2016 01:42:11 -0700 (PDT)
MIME-Version: 1.0
In-Reply-To: <20160316105010.GN29016@dinwoodie.org>
References: <CAFo71_6ZRGH6zkb7U2rDCf1vu0jz9-w1Cmv_ccW6aRDBszEhYw AT mail DOT gmail DOT com> <20160316105010 DOT GN29016 AT dinwoodie DOT org>
From: Ismail Donmez <ismail AT i10z DOT com>
Date: Fri, 18 Mar 2016 10:41:41 +0200
Message-ID: <CAFo71_43UGbDkvT9k+1n5KyvpUkeedd78CMUepFB3zzYwY4Kug@mail.gmail.com>
Subject: Re: [Attn] git maintainer: Remote Code Execution for git < 2.7.1
To: cygwin AT cygwin DOT com
X-IsSubscribed: yes 

Hi,

On Wed, Mar 16, 2016 at 12:50 PM, Adam Dinwoodie <adam AT dinwoodie DOT org> wrote:
> On Wed, Mar 16, 2016 at 07:43:54AM +0200, Ismail Donmez wrote:
>> Please see http://www.openwall.com/lists/oss-security/2016/03/15/5 .
>> Would be nice to update to just released 2.7.3 version.
>
> Ack, thanks for the heads up.  I've been holding off on making a release
> while investigating some test failures, but I'll try to make a new build
> available either today or tomorrow.

Now git 2.7.4 is released with more security fixes:
https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.7.4.txt
:(

ismail

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

- Raw text -


  webmaster     delorie software   privacy  
  Copyright © 2019   by DJ Delorie     Updated Jul 2019