Format: 1.8
Date: Tue, 14 Aug 2018 15:57:15 -0400
Source: cgit
Binary: cgit
Architecture: armhf
Version: 1.1+git2.10.2-3ubuntu0.1
Distribution: bionic
Urgency: high
Maintainer: Launchpad Build Daemon <buildd@bos02-arm64-039.buildd>
Changed-By: Unit 193 <unit193@ubuntu.com>
Description:
 cgit       - hyperfast web frontend for git repositories written in C
Launchpad-Bugs-Fixed: 1787021
Changes:
 cgit (1.1+git2.10.2-3ubuntu0.1) bionic-security; urgency=high
 .
   * SECURITY UPDATE: Directory traversal vulnerability.
     - d/p/clone-fix-directory-traversal.patch:
       This fixes a directory traversal vulnerability in CGit
       before 1.2.1 when `enable-http-clone=1` is not turned off,
       as demonstrated by a cgit/cgit.cgi/git/objects/?path=../ request.
     - CVE-2018-14912 (LP: #1787021)
Checksums-Sha1:
 213f0d018f9d368546715c41ad0dd9ad857349b4 1950116 cgit-dbgsym_1.1+git2.10.2-3ubuntu0.1_armhf.ddeb
 01d1597b8b1a3a3b8beacad2ec34d28608b9cc98 7199 cgit_1.1+git2.10.2-3ubuntu0.1_armhf.buildinfo
 b6aaf5f2d0a0a744241f01c6667b51ccc9094799 440720 cgit_1.1+git2.10.2-3ubuntu0.1_armhf.deb
Checksums-Sha256:
 f7992c8cfd556b874bceb937a84e2879d27aa327c3910e27313c082786769595 1950116 cgit-dbgsym_1.1+git2.10.2-3ubuntu0.1_armhf.ddeb
 74a7a5b441fbbccf651198856a307f3f0da2d19c0790aac817c125f67a9e1295 7199 cgit_1.1+git2.10.2-3ubuntu0.1_armhf.buildinfo
 a96bb458f770c9a40011b034a52662355e6a1415dc85435d1f298bc69e5b6134 440720 cgit_1.1+git2.10.2-3ubuntu0.1_armhf.deb
Files:
 2cd9e8278fe43cced00ae4be689c27af 1950116 debug optional cgit-dbgsym_1.1+git2.10.2-3ubuntu0.1_armhf.ddeb
 02b78505b613465099a8dfc8ad73aa31 7199 net extra cgit_1.1+git2.10.2-3ubuntu0.1_armhf.buildinfo
 65d47ef729a0dbc8a4257e822b00e8bc 440720 net extra cgit_1.1+git2.10.2-3ubuntu0.1_armhf.deb
Original-Maintainer: Debian Cgit Packaging Team <pkg-cgit-devel@lists.alioth.debian.org>