AVG-496 log
| Package | git-annex |
| Status | Fixed |
| Severity | Medium |
| Type | arbitrary command execution |
| Affected | 6.20170925-1 |
| Fixed | 6.20171003-1 |
| Current | 10.20251029-3 [extra] |
| Ticket | None |
| Created | Sun Nov 19 12:32:49 2017 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2017-12976 | Medium | Yes | Arbitrary command execution | git-annex before 6.20170818 allows remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname, as... |