[3.1] cgit: Multiple vulnerabilities(CVE-2016-1899, CVE-2016-1900, CVE-2016-1901)
CVE-2016-1899: Reflected XSS and header injection in mimetype query string
http://git.zx2c4.com/cgit/commit/?id=1c581a072651524f3b0d91f33e22a42c4166dd96
CVE-2016-1900: Stored Cross Site Scripting & Header Injection in Filename Parameter
https://git.zx2c4.com/cgit/commit/?id=513b3863d999f91b47d7e9f26710390db55f9463
CVE-2016-1901: Integer Overflow resulting in Buffer Overflow
https://git.zx2c4.com/cgit/commit/?id=4458abf64172a62b92810c2293450106e6dfc763
Fixed In Version:
cgit 0.12
References:
http://openwall.com/lists/oss-security/2016/01/14/6
(from redmine: issue id 5098, created on 2016-02-09, closed on 2016-02-16)
- Relations:
- parent #5094 (closed)
- Changesets:
- Revision b4162b52 on 2016-02-11T14:43:56Z:
main/cgit: security fix CVE-2016-1899, CVE-2016-1900, CVE-2016-1901. Fixes #5098
(cherry picked from commit c8d5b3017f998d5284638c262ae52971c8b6c1cb)