Skip to content
This repository has been archived by the owner on Oct 10, 2023. It is now read-only.

0.329.0
Compare
Choose a tag to compare
@cf-buildpacks-eng cf-buildpacks-eng released this 26 Oct 10:17
· 40 commits to main since this release
0.329.0
f32d068

Notably, this release addresses:

USN-5689-1 USN-5689-1: Perl vulnerability:

USN-5686-1 USN-5686-1: Git vulnerabilities:

  • CVE-2022-39253: [When relying on the --local clone optimization, Git dereferences symbolic links in the source repository before creating hardlinks (or copies) of the dereferenced link in the destination repository. This can lead to surprising behavior where arbitrary files are present in a repository's $GIT_DIR when cloning from a malicious repository.]
  • CVE-2022-39260: [An overly-long command string given to git shell can result in overflow in split_cmdline(), leading to arbitrary heap writes and remote code execution when git shell is exposed and the directory $HOME/git-shell-commands exists.]
  • CVE-2022-39260: [An overly-long command string given to git shell can result in overflow in split_cmdline(), leading to arbitrary heap writes and remote code execution when git shell is exposed and the directory $HOME/git-shell-commands exists.]
  • CVE-2022-39253: [When relying on the --local clone optimization, Git dereferences symbolic links in the source repository before creating hardlinks (or copies) of the dereferenced link in the destination repository. This can lead to surprising behavior where arbitrary files are present in a repository's $GIT_DIR when cloning from a malicious repository.]
-ii  git               1:2.17.1-1ubuntu0.12 amd64 fast, scalable, distributed revision control system
-ii  git-man           1:2.17.1-1ubuntu0.12 all   fast, scalable, distributed revision control system (manual pages)
+ii  git               1:2.17.1-1ubuntu0.13 amd64 fast, scalable, distributed revision control system
+ii  git-man           1:2.17.1-1ubuntu0.13 all   fast, scalable, distributed revision control system (manual pages)
-ii  libperl5.26:amd64 5.26.1-6ubuntu0.5    amd64 shared Perl library
+ii  libperl5.26:amd64 5.26.1-6ubuntu0.6    amd64 shared Perl library
-ii  perl              5.26.1-6ubuntu0.5    amd64 Larry Wall's Practical Extraction and Report Language
-ii  perl-base         5.26.1-6ubuntu0.5    amd64 minimal Perl system
-ii  perl-modules-5.26 5.26.1-6ubuntu0.5    all   Core Perl modules
+ii  perl              5.26.1-6ubuntu0.6    amd64 Larry Wall's Practical Extraction and Report Language
+ii  perl-base         5.26.1-6ubuntu0.6    amd64 minimal Perl system
+ii  perl-modules-5.26 5.26.1-6ubuntu0.6    all   Core Perl modules
Assets 3