cgit: Multiple vulnerabilities(CVE-2016-1899, CVE-2016-1900, CVE-2016-1901)
CVE-2016-1899: Reflected XSS and header injection in mimetype query string
http://git.zx2c4.com/cgit/commit/?id=1c581a072651524f3b0d91f33e22a42c4166dd96
CVE-2016-1900: Stored Cross Site Scripting & Header Injection in Filename Parameter
https://git.zx2c4.com/cgit/commit/?id=513b3863d999f91b47d7e9f26710390db55f9463
CVE-2016-1901: Integer Overflow resulting in Buffer Overflow
https://git.zx2c4.com/cgit/commit/?id=4458abf64172a62b92810c2293450106e6dfc763
Fixed In Version:
cgit 0.12
References:
http://openwall.com/lists/oss-security/2016/01/14/6
(from redmine: issue id 5094, created on 2016-02-09, closed on 2016-02-16)
- Relations:
- child #5095 (closed)
- child #5096 (closed)
- child #5097 (closed)
- child #5098 (closed)
- child #5099 (closed)