DSA-3275 fusionforge - security update
|
System information
|
|
|
Affected software |
Debian |
Description
|
Ansgar Burchardt discovered that the Git plugin for FusionForge, aweb-based project-management and collaboration software, does notsufficiently validate user provided input as parameter to the method tocreate secondary Git repositories. A remote attacker can use this flawto execute arbitrary code as root via a specially crafted URL.
More info:
https://www.debian.org/security/2015/dsa-3275 |
Standar resources
|
Property |
Value |
CVE |
CVE-2015-0850 and DSA-3275. |