Total vulnerabilities in the database
The build_index_from_tree function in index.py in Dulwich before 0.9.9 allows remote attackers to execute arbitrary code via a commit with a directory path starting with .git/, which is not properly handled when checking out a working tree.
Software | From | Fixed in |
---|---|---|
debian / debian_linux | 7.0 | 7.0.x |
dulwich_project / dulwich | - | 0.9.8.x |