1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
|
cgit (0.10.2.git2.0.1-3+deb8u1) jessie-security; urgency=high
* Non-maintainer upload by the Security Team.
* CVE-2016-1899: Reflected XSS and header injection in mimetype query
string (Closes: #812411)
* CVE-2016-1900: Stored cross site scripting and header injection in
filename parameter (Closes: #812411)
* CVE-2016-1901: Integer overflow resulting in buffer overflow
(Closes: #812411)
* filters: apply HTML escaping.
Addresses cross-site scripting vulnerability in via the
txt2html filter.
-- Salvatore Bonaccorso <carnil@debian.org> Mon, 04 Apr 2016 08:41:52 +0200
cgit (0.10.2.git2.0.1-3) unstable; urgency=medium
* Initial upload
-- Alexander Wirt <formorer@debian.org> Thu, 28 Aug 2014 16:26:24 -0700
cgit (0.10.2.git2.0.1-2) unstable; urgency=medium
[ Nicolas Dandrimont ]
* [c7b31d2] Return a 404 status code when a repo doesn't exist
* [c8837ea] Add missing b-d for tests
-- Alexander Wirt <formorer@debian.org> Fri, 01 Aug 2014 06:58:39 +0200
cgit (0.10.2.git2.0.1-1) unstable; urgency=low
* Initial packaging.
-- Alexander Wirt <formorer@debian.org> Fri, 01 Aug 2014 06:58:19 +0200
|
