Nixpkgs Security Tracker

Untriaged

Permalink CVE-2012-6114

created 1 month ago

The git-changelog utility in git-extras 1.7.0 allows local users to …

The git-changelog utility in git-extras 1.7.0 allows local users to overwrite arbitrary files via a symlink attack on (1) /tmp/changelog or (2) /tmp/.git-effort.

References

http://www.openwall.com/lists/oss-security/2013/01/22/8 x_refsource_MISC
http://www.openwall.com/lists/oss-security/2013/01/23/5 x_refsource_MISC
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=698490 x_refsource_MISC
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=698490 x_refsource_MISC x_transferred
http://www.openwall.com/lists/oss-security/2013/01/22/8 x_refsource_MISC x_transferred
http://www.openwall.com/lists/oss-security/2013/01/23/5 x_refsource_MISC x_transferred
http://www.openwall.com/lists/oss-security/2013/01/22/8 x_refsource_MISC
http://www.openwall.com/lists/oss-security/2013/01/23/5 x_refsource_MISC
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=698490 x_refsource_MISC
http://www.openwall.com/lists/oss-security/2013/01/22/8 x_refsource_MISC x_transferred
http://www.openwall.com/lists/oss-security/2013/01/23/5 x_refsource_MISC x_transferred
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=698490 x_refsource_MISC x_transferred

Affected products

git-extras

==1.7.0

Matching in nixpkgs

pkgs.git-extras

GIT utilities -- repo summary, repl, changelog population, author commit percentages and more

nixos-unstable 7.4.0
- nixpkgs-unstable 7.4.0
- nixos-unstable-small 7.4.0
nixos-25.11 7.4.0
- nixos-25.11-small 7.4.0
- nixpkgs-25.11-darwin 7.4.0

Package maintainers

@SuperSandro2000 Sandro Jäckel <sandro.jaeckel@gmail.com>

Suggestion detail

References

Affected products

Matching in nixpkgs

pkgs.git-extras

Package maintainers