Format: 1.8
Date: Fri, 11 Dec 2015 12:48:13 -0500
Source: git
Binary: git git-man git-core git-doc git-arch git-cvs git-svn git-mediawiki git-email git-daemon-run git-daemon-sysvinit git-gui gitk git-el gitweb git-all
Architecture: armhf armhf_translations
Version: 1:2.5.0-1ubuntu0.1
Distribution: wily
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@kishi13.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 git        - fast, scalable, distributed revision control system
 git-all    - fast, scalable, distributed revision control system (all subpacka
 git-arch   - fast, scalable, distributed revision control system (arch interop
 git-core   - fast, scalable, distributed revision control system (obsolete)
 git-cvs    - fast, scalable, distributed revision control system (cvs interope
 git-daemon-run - fast, scalable, distributed revision control system (git-daemon s
 git-daemon-sysvinit - fast, scalable, distributed revision control system (git-daemon s
 git-doc    - fast, scalable, distributed revision control system (documentatio
 git-el     - fast, scalable, distributed revision control system (emacs suppor
 git-email  - fast, scalable, distributed revision control system (email add-on
 git-gui    - fast, scalable, distributed revision control system (GUI)
 git-man    - fast, scalable, distributed revision control system (manual pages
 git-mediawiki - fast, scalable, distributed revision control system (MediaWiki in
 git-svn    - fast, scalable, distributed revision control system (svn interope
 gitk       - fast, scalable, distributed revision control system (revision tre
 gitweb     - fast, scalable, distributed revision control system (web interfac
Changes:
 git (1:2.5.0-1ubuntu0.1) wily-security; urgency=medium
 .
   * SECURITY UPDATE: arbitrary code execution issues via URLs
     - debian/diff/0008-CVE-2015-7545-1.patch: add a protocol-whitelist
       environment variable.
     - debian/diff/0009-CVE-2015-7545-2.patch: allow only certain protocols
       for submodule fetches.
     - debian/diff/0010-CVE-2015-7545-3.patch: refactor protocol whitelist
       code.
     - debian/diff/0011-CVE-2015-7545-4.patch: limit redirection to
       protocol-whitelist.
     - debian/diff/0012-CVE-2015-7545-5.patch: limit redirection depth.
     - debian/rules: make new tests executable.
     - CVE-2015-7545
Checksums-Sha1:
 46317f9687c8016b3829ef67efdcf5b025966eb9 2130964 git_2.5.0-1ubuntu0.1_armhf.deb
 638480ab8d26ccbe46423d6e00de78d6937804e5 1888783 git_2.5.0-1ubuntu0.1_armhf_translations.tar.gz
Checksums-Sha256:
 223fd210396d4dee25ea0464d86e360ac0e7abfb951d1feeedeefef9544418c0 2130964 git_2.5.0-1ubuntu0.1_armhf.deb
 80fa1961d1f05002a3bebd1900accfdd1a875e6930256dda78428f302bec4cc2 1888783 git_2.5.0-1ubuntu0.1_armhf_translations.tar.gz
Files:
 54da53707fc2ab69bce2b6e9506456d6 2130964 vcs optional git_2.5.0-1ubuntu0.1_armhf.deb
 e104e8ec0389418f2443ca59af27f0aa 1888783 raw-translations - git_2.5.0-1ubuntu0.1_armhf_translations.tar.gz
Original-Maintainer: Gerrit Pape <pape@smarden.org>