Summary
The remote host is missing an update to git
announced via advisory FEDORA-2009-6809.
Solution
Apply the appropriate updates.
This update can be installed with the yum update program. Use su -c 'yum update git' at the command line.
For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/.
https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-6809
Insight
Update Information:
This update fixes a Denial of Service vulnerability in git-daemon. It also fixes minor issues when using git-cvsimport and the formatting of the git-daemon xinetd service description.
ChangeLog:
* Fri Jun 19 2009 Todd Zullinger - 1.6.0.6-4
- Fix git-daemon hang on invalid input (CVE-2009-2108, bug 505761) - Ignore Branches output from cvsps-2.2b1 (bug 490602) - Escape newline in git-daemon xinetd description (bug 502393)
References
Severity
Classification
-
CVE CVE-2009-2108 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities