-
Bug
-
Resolution: Fixed
-
Medium
-
None
As outlined in http://seclists.org/oss-sec/2016/q1/645 , we are potentially vulnerable to remote code execution (the actual bugs trigger heap overflow) as sourcetree for mac bundles version 2.6.4 of git.
Update to a version of git that addresses CVE-2016-2324 and CVE‑2016‑2315 (git 2.4.11, 2.5.5, 2.6.6 and 2.7.4 all have the fix).
- relates to
-
-
- Closed
-
- is related to
-
SCT-2946 Failed to load
- mentioned in
-
Page
Failed to load
[SRCTREE-3641] Update to a version of git that contains a fix for CVE-2016-2324 and CVE‑2016‑2315
| Workflow | Original: JAC Bug Workflow v3 [ 3369980 ] | New: SRCTREE JAC Bug Workflow [ 3737118 ] |
| Workflow | Original: SourceTree Bug Workflow [ 1148817 ] | New: JAC Bug Workflow v3 [ 3369980 ] |
| Status | Original: Resolved [ 5 ] | New: Closed [ 6 ] |
| Assignee | Original: Manju [ mbasaralusrinivasa ] |
| Security | Original: Reporter and Atlassian Staff [ 10751 ] |
| Remote Link | New: This issue links to "SCT-2946 (Atlassian JIRA Extranet - Special Projects)" [ 167099 ] |
| Remote Link | Original: This issue links to "Page (Extranet)" [ 167115 ] |
| Remote Link | New: This issue links to "Page (Extranet)" [ 167115 ] |
| Security | New: Reporter and Atlassian Staff [ 10751 ] |
| Security | Original: Reporter and Atlassian Staff [ 10751 ] |
| Fix Version/s | New: 2.2.4 [ 61491 ] | |
| Resolution | New: Fixed [ 1 ] | |
| Status | Original: In Progress [ 3 ] | New: Resolved [ 5 ] |