Format: 1.8
Date: Fri, 14 Oct 2022 11:15:33 -0300
Source: git
Binary: git git-man git-doc git-cvs git-svn git-mediawiki git-email git-daemon-run git-daemon-sysvinit git-gui gitk git-el gitweb git-all
Architecture: all amd64 amd64_translations
Version: 1:2.17.1-1ubuntu0.13
Distribution: bionic
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@lcy02-amd64-001.buildd>
Changed-By: Leonidas Da Silva Barbosa <leo.barbosa@canonical.com>
Description:
 git        - fast, scalable, distributed revision control system
 git-all    - fast, scalable, distributed revision control system (all subpacka
 git-cvs    - fast, scalable, distributed revision control system (cvs interope
 git-daemon-run - fast, scalable, distributed revision control system (git-daemon s
 git-daemon-sysvinit - fast, scalable, distributed revision control system (git-daemon s
 git-doc    - fast, scalable, distributed revision control system (documentatio
 git-el     - fast, scalable, distributed revision control system (emacs suppor
 git-email  - fast, scalable, distributed revision control system (email add-on
 git-gui    - fast, scalable, distributed revision control system (GUI)
 git-man    - fast, scalable, distributed revision control system (manual pages
 git-mediawiki - fast, scalable, distributed revision control system (MediaWiki re
 git-svn    - fast, scalable, distributed revision control system (svn interope
 gitk       - fast, scalable, distributed revision control system (revision tre
 gitweb     - fast, scalable, distributed revision control system (web interfac
Changes:
 git (1:2.17.1-1ubuntu0.13) bionic-security; urgency=medium
 .
   * SECURITY UPDATE: Unexpected behavior
     - debian/patches/CVE-2022-39253-*.patch: disallow --local
       clones with symlinks and additionally changed the
       protocol.file.allow to be user by default in
       builtin/clone.c, transport.c, and modified tests in
       t/t5604-clone-reference.sh,
       lib-submodule-update.sh, t/t1091-sparse-checkout-builtin.sh,
       t/t1500-rev-parse.sh, t/t2400-worktree-add.sh,
       t/t2403-worktree-move.sh, t/t2405-worktree-submodule.sh,
       t/t3200-branch.sh, t/t3420-rebase-autostash.sh,
       t/t3426-rebase-submodule.sh, t/t3512-cherry-pick-submodule.sh,
       t/t3600-rm.sh, t/t3906-stash-submodule.sh,
       t/t4059-diff-submodule-not-initialized.sh,
       t/t4060-diff-submodule-option-diff-format.sh,
       t/t4067-diff-partial-clone.sh,
       t/t4208-log-magic-pathspec.sh, t/t5510-fetch.sh,
       t/t5526-fetch-submodules.sh, t/t5545-push-options.sh,
       t/t5572-pull-submodule.sh, t/t5601-clone.sh,
       t/t5614-clone-submodules-shallow.sh, t/t5616-partial-clone.sh,
       t/t5617-clone-submodules-remote.sh, t/t6008-rev-list-submodule.sh,
       t/t6134-pathspec-in-submodule.sh,
       t/t7001-mv.sh, t/t7064-wtstatus-pv2.sh,
       t/t7300-clean.sh, t/t7400-submodule-basic.sh,
       t/t7403-submodule-sync.sh, t/t7406-submodule-update.sh,
       t/t7407-submodule-foreach.sh, t/t7408-submodule-reference.sh,
       t/t7409-submodule-detached-work-tree.sh, t/t7411-submodule-config.sh,
       t/t7413-submodule-is-active.sh, t/t7414-submodule-mistakes.sh,
       t/t7415-submodule-names.sh, t/t7416-submodule-dash-url.sh,
       t/t7417-submodule-path-url.sh, t/t7418-submodule-sparse-gitmodules.sh,
       t/t7419-submodule-set-branch.sh, t/t7420-submodule-set-url.sh,
       t/t7421-submodule-summary-add.sh, t/t7506-status-submodule.sh,
       t/t7507-commit-verbose.sh, t/t7800-difftool.sh,
       t/t7814-grep-recurse-submodules.sh, t/t9304-fast-import-marks.sh,
       t/t9350-fast-export.sh, t/t1092-sparse-checkout-compatibility.sh,
       t/t2080-parallel-checkout-basics.sh, t/t7450-bad-git-dotfiles.sh.
     - CVE-2022-39253
   * SECURITY UPDATE: Arbitrary heap writes
     - debian/patches/CVE-2022-39260-*.patch: limit size of interactive
       commands and reject too-long cmdline strings in split cmdline()
       in shell.c, t/t9850-shell.sh, alias.c.
     - CVE-2022-39260
Checksums-Sha1:
 edcd5d2f320fa84d6445bcfe44bf671b7f7a1b08 6624 git-all_2.17.1-1ubuntu0.13_all.deb
 728be09c5c21a54b01380d35ff88447f8a557fd6 69612 git-cvs_2.17.1-1ubuntu0.13_all.deb
 eedb41715b4dc1d7331e47f407ddc836dfa9f017 8100 git-daemon-run_2.17.1-1ubuntu0.13_all.deb
 2f1f0a30d97890f63b31584d04b879d017608b76 9212 git-daemon-sysvinit_2.17.1-1ubuntu0.13_all.deb
 287aebdaf1cbae22ad30ffc8df96140510e2e8dc 37548772 git-dbgsym_2.17.1-1ubuntu0.13_amd64.ddeb
 22d2d9deb7d0fbbaa41443fa6f77c12d32cf944c 922788 git-doc_2.17.1-1ubuntu0.13_all.deb
 c947a32397b58d57ad41e0f5d5a8ab1a9cdd3136 25968 git-el_2.17.1-1ubuntu0.13_all.deb
 384ae05c3254133687ebfa22f05695107ce2e277 30632 git-email_2.17.1-1ubuntu0.13_all.deb
 4c23313af2fb94a0358446f4b1d43c76c0eafca2 215244 git-gui_2.17.1-1ubuntu0.13_all.deb
 e3a4c41ca8afd55c3de6223f7387837ce242fce4 804540 git-man_2.17.1-1ubuntu0.13_all.deb
 f3ffc7c135eab0a060bef2b2906b4b88f839f54e 22348 git-mediawiki_2.17.1-1ubuntu0.13_all.deb
 11e6a61b64700aa0922c2c02bb13be1edf73d0df 80896 git-svn_2.17.1-1ubuntu0.13_all.deb
 ef5d39802ed57f44d6b370eab8ceaf45637458c5 13046 git_2.17.1-1ubuntu0.13_amd64.buildinfo
 f666510ae89160a9acf8a024c9dc45df7dbb3752 3923148 git_2.17.1-1ubuntu0.13_amd64.deb
 de82ecdc3778d404392bc0d3a834cce8e02927d8 3379824 git_2.17.1-1ubuntu0.13_amd64_translations.tar.gz
 444da8b2562d25ceb974d7b47b39cd183d45295f 136672 gitk_2.17.1-1ubuntu0.13_all.deb
 64bfc335b4e2b87a36c3faefcd43021ca1455919 10660 gitweb_2.17.1-1ubuntu0.13_all.deb
Checksums-Sha256:
 dce19851e7af95d521d53f519416e709e7479b085e13911106c3999da1a71bb8 6624 git-all_2.17.1-1ubuntu0.13_all.deb
 2979b2fa2cfd079e13204d6133df6e34b798b925127efd995787ed43e8b61b7d 69612 git-cvs_2.17.1-1ubuntu0.13_all.deb
 716b7bd85e974924c5555f4f92739f97170722538c582deee54868f4bb07af6a 8100 git-daemon-run_2.17.1-1ubuntu0.13_all.deb
 5379dc3a73f55dd77267302454b4b8afcce63241ddfcb0881d29a872ae3bb882 9212 git-daemon-sysvinit_2.17.1-1ubuntu0.13_all.deb
 9e75b6d4266820875de196f81a1f208d5f569ff27372df7aa3c4db9f346d3f45 37548772 git-dbgsym_2.17.1-1ubuntu0.13_amd64.ddeb
 2018d05baad2ea07b80909cfbc8b8dcb355609954f71c39bdf84d33ace28882f 922788 git-doc_2.17.1-1ubuntu0.13_all.deb
 ab7c921623df8dd5b5396c5c0e656106c06e70056ceb9ced245566e49ba958df 25968 git-el_2.17.1-1ubuntu0.13_all.deb
 f071b1a1c372da9d83e75a697b5bd8e9f3aefe66b07f7586dd600f1ad06bac9e 30632 git-email_2.17.1-1ubuntu0.13_all.deb
 34df0a83b3072d70f0b725cc269cfef16edaaec031f5e8f218d4e04afc9bc900 215244 git-gui_2.17.1-1ubuntu0.13_all.deb
 ed068b4bb6c8f7b7ae83e25d0a4778f6c340d3c543a3601adadfbb0fe124409e 804540 git-man_2.17.1-1ubuntu0.13_all.deb
 eb64308dc046fcebeedaab6ff5aa418ce079f25c6cb77cbfaf2f6e1369af023a 22348 git-mediawiki_2.17.1-1ubuntu0.13_all.deb
 c8f50fb6dc33bd95bce508fe83683ab38d3deb942326778ced3ec5250f3dc262 80896 git-svn_2.17.1-1ubuntu0.13_all.deb
 dd2dc6737cb73abdd101f11123f1a226aa05b9bc4cbef103085e1502d010117a 13046 git_2.17.1-1ubuntu0.13_amd64.buildinfo
 f79d1077a935ef06221a115f9626f8458f4933903ef35c9edca1f29de99cee27 3923148 git_2.17.1-1ubuntu0.13_amd64.deb
 acc9aba739afec6f6b68c2975236d0368c5173df8b7396b3acf7f30f581860b0 3379824 git_2.17.1-1ubuntu0.13_amd64_translations.tar.gz
 1a3080d44e3c218dead201b01105787dbc22feb37686f9ba223b4f1d230275a1 136672 gitk_2.17.1-1ubuntu0.13_all.deb
 561519b1b74ce025269a6d22f78ec858aed63f6cb3ae94df96152e053d3fd168 10660 gitweb_2.17.1-1ubuntu0.13_all.deb
Files:
 f79a4e73af30801cfa09092c8128eead 6624 vcs optional git-all_2.17.1-1ubuntu0.13_all.deb
 be258846c7b52f1035b9e9e804052724 69612 vcs optional git-cvs_2.17.1-1ubuntu0.13_all.deb
 5c9f25eaeb4049392a5bbc8f290891df 8100 vcs optional git-daemon-run_2.17.1-1ubuntu0.13_all.deb
 6f375cb53caacec513fc8ccf75bcaf81 9212 vcs optional git-daemon-sysvinit_2.17.1-1ubuntu0.13_all.deb
 85961489809a0881f62310ebda4ae79e 37548772 debug optional git-dbgsym_2.17.1-1ubuntu0.13_amd64.ddeb
 f0bdd7dbf982d6d2d891725885ce1649 922788 doc optional git-doc_2.17.1-1ubuntu0.13_all.deb
 a400bbe2319512acafa41c86c4c1dd80 25968 vcs optional git-el_2.17.1-1ubuntu0.13_all.deb
 47cfec46a3438a0e9ede40650f1168e5 30632 vcs optional git-email_2.17.1-1ubuntu0.13_all.deb
 67a6973604833084f3103854c9040768 215244 vcs optional git-gui_2.17.1-1ubuntu0.13_all.deb
 a35f2e08ee89ea7d980e386a5ce510d5 804540 doc optional git-man_2.17.1-1ubuntu0.13_all.deb
 fea60606a57330b70a18e311d9206094 22348 vcs optional git-mediawiki_2.17.1-1ubuntu0.13_all.deb
 b7e3a8624700671b6246f1d6ca68b9b9 80896 vcs optional git-svn_2.17.1-1ubuntu0.13_all.deb
 cc6a6544e84b3c666c0df0b5b260f5b7 13046 vcs optional git_2.17.1-1ubuntu0.13_amd64.buildinfo
 dd9b6a0abc03135726ae7ee4fa3059b4 3923148 vcs optional git_2.17.1-1ubuntu0.13_amd64.deb
 93ddbf69a7538b1161b214ec06984142 3379824 raw-translations - git_2.17.1-1ubuntu0.13_amd64_translations.tar.gz
 388ed845fb2a7e5466d475c525cb71b2 136672 vcs optional gitk_2.17.1-1ubuntu0.13_all.deb
 2f2081d75fae2f8dfcc3941d6f840107 10660 vcs optional gitweb_2.17.1-1ubuntu0.13_all.deb
Original-Maintainer: Gerrit Pape <pape@smarden.org>