oss-sec mailing list archives

Re: CVE id request: gitolite

From: Josh Bressers <bressers () redhat com>
Date: Mon, 11 Apr 2011 16:15:25 -0400 (EDT)



----- Original Message -----

https://github.com/sitaramc/gitolite/commit/4ce00aef84d1ff7c35f7adbbb99a6241cfda00cc
http://groups.google.com/group/gitolite/browse_thread/thread/797a93ec26e1dcbc?pli=1

I didn't find a CVE id for this, could I get one?


This appears to be an arbitrary command execution flaw (the patch appears
to limit the commands that can be run).

Use CVE-2011-1572

Thanks.

-- 
    JB

Current thread:

CVE id request: gitolite Nico Golde (Apr 09)
- Re: CVE id request: gitolite Josh Bressers (Apr 11)