| dystie | hullo folks. quick question - is there a eta on https://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-17456.html for 16.0.4 and 18.0.4? | 18:19 |
|---|---|---|
| ubottu | Git before 2.14.5, 2.15.x before 2.15.3, 2.16.x before 2.16.5, 2.17.x before 2.17.2, 2.18.x before 2.18.1, and 2.19.x before 2.19.1 allows remote code execution during processing of a recursive "git clone" of a superproject if a .gitmodules file has a URL field beginning with a '-' character. (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17456) | 18:19 |
| teward | dystie: #ubuntu-hardened might be the better place to ask, since that's the SEcurity team's purview typically | 18:20 |
| dystie | cool beans, thanks. :) | 18:20 |
| dystie | i posted in there as well. | 18:21 |
| teward | then patience is what is left :) | 18:21 |
| dystie | yaaay! | 18:21 |
| teward | (I apparently wasn' tin the channel and I normally lurk :P) | 18:21 |
| dystie | and git is like. super important. | 18:30 |
| dystie | really actually is very important. | 18:30 |
| dystie | yay security! | 18:30 |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!