CVE-2010-0394 in Ubuntu

CVE-2010-0394

Priority

Description

PyGIT.py in the Trac Git plugin (trac-git) before 0.0.20080710-3+lenny1 and
before 0.0.20090320-1 on Debian GNU/Linux, when enabled in Trac, allows
remote attackers to execute arbitrary commands via shell metacharacters in
a crafted HTTP query that is used to generate a certain git command.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0394

Notes

Package

Source: trac-git (LP Ubuntu Debian)

Upstream:	released (0.0.20090320-1)
Ubuntu 22.04 LTS (Jammy Jellyfish):	not-affected

Patches:

Debdiff:

https://bugs.launchpad.net/ubuntu/+source/trac-git/+bug/602948

More Information

Mitre
NVD
Launchpad
Debian

Updated: 2022-02-10 23:40:57 UTC (commit acb3d89ab51f1d5e5543fa993969c0eb13c71f04)