[3.0] cgit: Multiple vulnerabilities(CVE-2016-1899, CVE-2016-1900, CVE-2016-1901)
CVE-2016-1899: Reflected XSS and header injection in mimetype query string
http://git.zx2c4.com/cgit/commit/?id=1c581a072651524f3b0d91f33e22a42c4166dd96
CVE-2016-1900: Stored Cross Site Scripting & Header Injection in Filename Parameter
https://git.zx2c4.com/cgit/commit/?id=513b3863d999f91b47d7e9f26710390db55f9463
CVE-2016-1901: Integer Overflow resulting in Buffer Overflow
https://git.zx2c4.com/cgit/commit/?id=4458abf64172a62b92810c2293450106e6dfc763
Fixed In Version:
cgit 0.12
References:
http://openwall.com/lists/oss-security/2016/01/14/6
(from redmine: issue id 5099, created on 2016-02-09, closed on 2016-02-16)
- Relations:
- parent #5094 (closed)
- Changesets:
- Revision 4e190684 on 2016-02-11T14:53:57Z:
main/cgit: upgrade to 0.10.2. Security fixes for CVE-2016-1899, CVE-2016-1900, CVE-2016-1901. Fixes #5099
(cherry picked from commit b4162b52de066db4f8df3ff8ceceac451f0c3c7e)