openSUSE Security Update: Security update for git ______________________________________________________________________________ Announcement ID: openSUSE-SU-2015:1968-1 Rating: moderate References: #948969 Affected Products: openSUSE 13.2 openSUSE 13.1 ______________________________________________________________________________ An update that contains security fixes can now be installed. Description: Git was updated to fix one security issue. The following vulnerability was fixed: * boo#948969: remote code execution with recursive fetch of submodules Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 13.2: zypper in -t patch openSUSE-2015-737=1 - openSUSE 13.1: zypper in -t patch openSUSE-2015-737=1 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 13.2 (i586 x86_64): git-2.1.4-16.2 git-arch-2.1.4-16.2 git-core-2.1.4-16.2 git-core-debuginfo-2.1.4-16.2 git-cvs-2.1.4-16.2 git-daemon-2.1.4-16.2 git-daemon-debuginfo-2.1.4-16.2 git-debugsource-2.1.4-16.2 git-email-2.1.4-16.2 git-gui-2.1.4-16.2 git-svn-2.1.4-16.2 git-svn-debuginfo-2.1.4-16.2 git-web-2.1.4-16.2 gitk-2.1.4-16.2 - openSUSE 13.2 (noarch): git-doc-2.1.4-16.2 - openSUSE 13.1 (i586 x86_64): git-1.8.4.5-3.11.2 git-arch-1.8.4.5-3.11.2 git-core-1.8.4.5-3.11.2 git-core-debuginfo-1.8.4.5-3.11.2 git-cvs-1.8.4.5-3.11.2 git-daemon-1.8.4.5-3.11.2 git-daemon-debuginfo-1.8.4.5-3.11.2 git-debugsource-1.8.4.5-3.11.2 git-email-1.8.4.5-3.11.2 git-gui-1.8.4.5-3.11.2 git-remote-helpers-1.8.4.5-3.11.2 git-svn-1.8.4.5-3.11.2 git-svn-debuginfo-1.8.4.5-3.11.2 git-web-1.8.4.5-3.11.2 gitk-1.8.4.5-3.11.2 References: https://bugzilla.suse.com/948969