|
|
Subscribe / Log in / New account

Fedora alert FEDORA-2018-7d993184f6 (libgit2)



From:
              updates@fedoraproject.org 


To:
              package-announce@lists.fedoraproject.org 


Subject:
              [SECURITY] Fedora 27 Update: libgit2-0.26.7-1.fc27 


Date:
              Sun, 14 Oct 2018 23:31:19 +0000 (UTC)


Message-ID:
              <20181014233119.AD7E26075DAB@bastion01.phx2.fedoraproject.org>


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-7d993184f6
2018-10-14 23:28:32.311485
--------------------------------------------------------------------------------

Name        : libgit2
Product     : Fedora 27
Version     : 0.26.7
Release     : 1.fc27
URL         : http://libgit2.github.com/
Summary     : C implementation of the Git core methods as a library with a solid API
Description :
libgit2 is a portable, pure C implementation of the Git core methods
provided as a re-entrant linkable library with a solid API, allowing
you to write native speed custom Git applications in any language
with bindings.

--------------------------------------------------------------------------------
Update Information:

Update to 0.26.7 (CVE-2018-17456)
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct  8 2018 Pete Walter <pwalter@fedoraproject.org> - 0.26.7-1
- Update to 0.26.7 (CVE-2018-17456)
* Tue Aug  7 2018 Pete Walter <pwalter@fedoraproject.org> - 0.26.6-1
- Update to 0.26.6
* Tue Jul 10 2018 Pete Walter <pwalter@fedoraproject.org> - 0.26.5-1
- Update to 0.26.5 (CVE-2018-10887, CVE-2018-10888)
* Mon Jun 25 2018 Pete Walter <pwalter@fedoraproject.org> - 0.26.4-1
- Update to 0.26.4 (CVE-2018-11235)
* Mon Mar 12 2018 Igor Gnatenko <ignatenkobrain@fedoraproject.org> - 0.26.3-1
- Update to 0.26.3
* Wed Feb  7 2018 Fedora Release Engineering <releng@fedoraproject.org> - 0.26.0-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Fri Feb  2 2018 Igor Gnatenko <ignatenkobrain@fedoraproject.org> - 0.26.0-4
- Switch to %ldconfig_scriptlets
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1636619 - CVE-2018-17456 git: arbitrary code execution via .gitmodules
        https://bugzilla.redhat.com/show_bug.cgi?id=1636619
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2018-7d993184f6' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgr...

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/package-ann...
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds