CVE-2017-12976

This commit is contained in:
Joey Hess 2017-08-20 16:50:53 -04:00
parent e0d88e2d25
commit c76ba5a15e
No known key found for this signature in database
GPG key ID: DB12DB0FF05F8F38
3 changed files with 4 additions and 1 deletions

View file

@ -3,7 +3,7 @@ recommended. Attacks using this security hole will involve the attacker
either providing a ssh repository url to the user, or the user pulling from
a git-annex repository provided by an attacker and then running `git annex
enableremote`. For details about the security hole, see
[[bugs/dashed_ssh_hostname_security_hole]].
[[bugs/dashed_ssh_hostname_security_hole]]. CVE-2017-12976
git-annex 6.20170818 released with [[!toggle text="these changes"]]
[[!toggleable text="""