This repository has been archived by the owner on Oct 10, 2023. It is now read-only.
0.329.0
cf-buildpacks-eng
released this
26 Oct 10:17
·
40 commits
to main
since this release
Notably, this release addresses:
USN-5689-1 USN-5689-1: Perl vulnerability:
- CVE-2020-16156: CPAN 2.28 allows Signature Verification Bypass.
USN-5686-1 USN-5686-1: Git vulnerabilities:
- CVE-2022-39253: [When relying on the
--local
clone optimization, Git dereferences symbolic links in the source repository before creating hardlinks (or copies) of the dereferenced link in the destination repository. This can lead to surprising behavior where arbitrary files are present in a repository's$GIT_DIR
when cloning from a malicious repository.] - CVE-2022-39260: [An overly-long command string given to
git shell
can result in overflow insplit_cmdline()
, leading to arbitrary heap writes and remote code execution whengit shell
is exposed and the directory$HOME/git-shell-commands
exists.] - CVE-2022-39260: [An overly-long command string given to
git shell
can result in overflow insplit_cmdline()
, leading to arbitrary heap writes and remote code execution whengit shell
is exposed and the directory$HOME/git-shell-commands
exists.] - CVE-2022-39253: [When relying on the
--local
clone optimization, Git dereferences symbolic links in the source repository before creating hardlinks (or copies) of the dereferenced link in the destination repository. This can lead to surprising behavior where arbitrary files are present in a repository's$GIT_DIR
when cloning from a malicious repository.]
-ii git 1:2.17.1-1ubuntu0.12 amd64 fast, scalable, distributed revision control system
-ii git-man 1:2.17.1-1ubuntu0.12 all fast, scalable, distributed revision control system (manual pages)
+ii git 1:2.17.1-1ubuntu0.13 amd64 fast, scalable, distributed revision control system
+ii git-man 1:2.17.1-1ubuntu0.13 all fast, scalable, distributed revision control system (manual pages)
-ii libperl5.26:amd64 5.26.1-6ubuntu0.5 amd64 shared Perl library
+ii libperl5.26:amd64 5.26.1-6ubuntu0.6 amd64 shared Perl library
-ii perl 5.26.1-6ubuntu0.5 amd64 Larry Wall's Practical Extraction and Report Language
-ii perl-base 5.26.1-6ubuntu0.5 amd64 minimal Perl system
-ii perl-modules-5.26 5.26.1-6ubuntu0.5 all Core Perl modules
+ii perl 5.26.1-6ubuntu0.6 amd64 Larry Wall's Practical Extraction and Report Language
+ii perl-base 5.26.1-6ubuntu0.6 amd64 minimal Perl system
+ii perl-modules-5.26 5.26.1-6ubuntu0.6 all Core Perl modules