CVE-2018-10857 log

Severity High
Remote Yes
Type Arbitrary filesystem access
Some uses of git-annex were vulnerable to a private data exposure and exfiltration attack. It could expose the content of files located outside the git-annex repository, or content from a private web server on localhost or the LAN.
Group Package Affected Fixed Severity Status Ticket
AVG-725 git-annex 6.20180529-18 6.20180626-1 High Fixed
Date Advisory Group Package Severity Type
04 Jul 2018 ASA-201807-2 AVG-725 git-annex High multiple issues