Scientific Linux Security Update : git on SL6.x, SL7.x i386/x86_64
Critical Nessus Plugin ID 90143
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionAn integer truncation flaw and an integer overflow flaw, both leading to a heap-based buffer overflow, were found in the way Git processed certain path information. A remote attacker could create a specially crafted Git repository that would cause a Git client or server to crash or, possibly, execute arbitrary code. (CVE-2016-2315, CVE-2016-2324)
SolutionUpdate the affected packages.