Format: 1.8
Date: Tue, 14 Aug 2018 15:57:15 -0400
Source: cgit
Binary: cgit
Architecture: ppc64el
Version: 1.1+git2.10.2-3ubuntu0.1
Distribution: bionic
Urgency: high
Maintainer: Launchpad Build Daemon <buildd@bos02-ppc64el-013.buildd>
Changed-By: Unit 193 <unit193@ubuntu.com>
Description:
 cgit       - hyperfast web frontend for git repositories written in C
Launchpad-Bugs-Fixed: 1787021
Changes:
 cgit (1.1+git2.10.2-3ubuntu0.1) bionic-security; urgency=high
 .
   * SECURITY UPDATE: Directory traversal vulnerability.
     - d/p/clone-fix-directory-traversal.patch:
       This fixes a directory traversal vulnerability in CGit
       before 1.2.1 when `enable-http-clone=1` is not turned off,
       as demonstrated by a cgit/cgit.cgi/git/objects/?path=../ request.
     - CVE-2018-14912 (LP: #1787021)
Checksums-Sha1:
 e4d5677e1c529d7a10a492cb9afb9af39832e573 2604104 cgit-dbgsym_1.1+git2.10.2-3ubuntu0.1_ppc64el.ddeb
 0e440b25ad7f5f33392652dc247a951200cc51b0 7287 cgit_1.1+git2.10.2-3ubuntu0.1_ppc64el.buildinfo
 b1115753d05f1c1049b1c38dccc3cdd597b4ee1c 656672 cgit_1.1+git2.10.2-3ubuntu0.1_ppc64el.deb
Checksums-Sha256:
 154c0ea706a5976e20fccb45bce4390263df78dcce97fa09f411de93fa4a37b9 2604104 cgit-dbgsym_1.1+git2.10.2-3ubuntu0.1_ppc64el.ddeb
 eb48120d58749a0e60e66c2f5e59700d8bf8321e441f2a7a99c313aed9e83610 7287 cgit_1.1+git2.10.2-3ubuntu0.1_ppc64el.buildinfo
 4e448246555475603fd48aab9531cb465541050130b41bcf4592a7a28d8f35a6 656672 cgit_1.1+git2.10.2-3ubuntu0.1_ppc64el.deb
Files:
 fbf2283e47fedd85cc1416adebb2ebdc 2604104 debug optional cgit-dbgsym_1.1+git2.10.2-3ubuntu0.1_ppc64el.ddeb
 2097b7285fe1476e4105112ea0ae303c 7287 net extra cgit_1.1+git2.10.2-3ubuntu0.1_ppc64el.buildinfo
 dde6e40abb241f97e02eacb0ca034a2b 656672 net extra cgit_1.1+git2.10.2-3ubuntu0.1_ppc64el.deb
Original-Maintainer: Debian Cgit Packaging Team <pkg-cgit-devel@lists.alioth.debian.org>