cgit-1.0-1.3 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:10137 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z cgit-1.0-1.3 on GA media These are all security issues fixed in the cgit-1.0-1.3 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-10137 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:10137 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2011-2711/ SUSE CVE CVE-2011-2711 page https://www.suse.com/security/cve/CVE-2012-4465/ SUSE CVE CVE-2012-4465 page https://www.suse.com/security/cve/CVE-2012-4548/ SUSE CVE CVE-2012-4548 page https://www.suse.com/security/cve/CVE-2013-2117/ SUSE CVE CVE-2013-2117 page https://www.suse.com/security/cve/CVE-2016-1899/ SUSE CVE CVE-2016-1899 page https://www.suse.com/security/cve/CVE-2016-1900/ SUSE CVE CVE-2016-1900 page https://www.suse.com/security/cve/CVE-2016-1901/ SUSE CVE CVE-2016-1901 page https://www.suse.com/security/cve/CVE-2016-2315/ SUSE CVE CVE-2016-2315 page https://www.suse.com/security/cve/CVE-2016-2324/ SUSE CVE CVE-2016-2324 page openSUSE Tumbleweed cgit-1.0-1.3 cgit-1.0-1.3 as a component of openSUSE Tumbleweed Cross-site scripting (XSS) vulnerability in the print_fileinfo function in ui-diff.c in cgit 0.9.0.2 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the filename associated with the rename hint. CVE-2011-2711 openSUSE Tumbleweed:cgit-1.0-1.3 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2011-2711.html CVE-2011-2711 https://bugzilla.suse.com/707929 SUSE Bug 707929 Heap-based buffer overflow in the substr function in parsing.c in cgit 0.9.0.3 and earlier allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via an empty username in the "Author" field in a commit. CVE-2012-4465 openSUSE Tumbleweed:cgit-1.0-1.3 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-4465.html CVE-2012-4465 https://bugzilla.suse.com/783012 SUSE Bug 783012 Argument injection vulnerability in syntax-highlighting.sh in cgit 9.0.3 and earlier allows remote authenticated users with permissions to add files to execute arbitrary commands via the --plug-in argument to the highlight command. CVE-2012-4548 openSUSE Tumbleweed:cgit-1.0-1.3 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-4548.html CVE-2012-4548 https://bugzilla.suse.com/787074 SUSE Bug 787074 Directory traversal vulnerability in the cgit_parse_readme function in ui-summary.c in cgit before 0.9.2, when a readme file is set to a filesystem path, allows remote attackers to read arbitrary files via a .. (dot dot) in the url parameter. CVE-2013-2117 openSUSE Tumbleweed:cgit-1.0-1.3 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2013-2117.html CVE-2013-2117 https://bugzilla.suse.com/822166 SUSE Bug 822166 CRLF injection vulnerability in the ui-blob handler in CGit before 0.12 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks or cross-site scripting (XSS) attacks via CRLF sequences in the mimetype parameter, as demonstrated by a request to blob/cgit.c. CVE-2016-1899 openSUSE Tumbleweed:cgit-1.0-1.3 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-1899.html CVE-2016-1899 https://bugzilla.suse.com/961916 SUSE Bug 961916 CRLF injection vulnerability in the cgit_print_http_headers function in ui-shared.c in CGit before 0.12 allows remote attackers with permission to write to a repository to inject arbitrary HTTP headers and conduct HTTP response splitting attacks or cross-site scripting (XSS) attacks via newline characters in a filename. CVE-2016-1900 openSUSE Tumbleweed:cgit-1.0-1.3 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-1900.html CVE-2016-1900 https://bugzilla.suse.com/961916 SUSE Bug 961916 Integer overflow in the authenticate_post function in CGit before 0.12 allows remote attackers to have unspecified impact via a large value in the Content-Length HTTP header, which triggers a buffer overflow. CVE-2016-1901 openSUSE Tumbleweed:cgit-1.0-1.3 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-1901.html CVE-2016-1901 https://bugzilla.suse.com/961916 SUSE Bug 961916 revision.c in git before 2.7.4 uses an incorrect integer data type, which allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, leading to a heap-based buffer overflow. CVE-2016-2315 openSUSE Tumbleweed:cgit-1.0-1.3 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2315.html CVE-2016-2315 https://bugzilla.suse.com/971328 SUSE Bug 971328 Integer overflow in Git before 2.7.4 allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, which triggers a heap-based buffer overflow. CVE-2016-2324 openSUSE Tumbleweed:cgit-1.0-1.3 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2324.html CVE-2016-2324 https://bugzilla.suse.com/971328 SUSE Bug 971328