CVE-2016-2324

Integer overflow in Git before 2.7.4 allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, which triggers a heap-based buffer overflow.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 95%
Affected Products (NVD)
VendorProductVersion
opensuseleap
42.1
opensuseopensuse
13.2
suselinux_enterprise_server
12.0:sp1
suselinux_enterprise_software_development_kit
12.0:sp1
git-scmgit
𝑥
≤ 2.7.3
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
cgit
bookworm
1.2.3+git20221219.50.91f2590+git2.39.1-1
fixed
bullseye
1.2.3+git2.25.1-1
fixed
sid
1.2.3+git20240802.70.09d24d7+git2.46.0-1
fixed
trixie
1.2.3+git20240802.70.09d24d7+git2.46.0-1
fixed
git
bookworm
1:2.39.2-1.1
fixed
bookworm (security)
1:2.39.5-0+deb12u1
fixed
bullseye
1:2.30.2-1+deb11u2
fixed
bullseye (security)
1:2.30.2-1+deb11u3
fixed
sid
1:2.45.2-1.1
fixed
trixie
1:2.45.2-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
git
precise
Fixed 1:1.7.9.5-1ubuntu0.3
released
trusty
Fixed 1:1.9.1-1ubuntu0.3
released
wily
Fixed 1:2.5.0-1ubuntu0.2
released
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
git
suse enterprise desktop 15
2.16.3-1.30
fixed
suse enterprise desktop 15 SP1
2.16.4-3.9.2
fixed
suse enterprise desktop 15 SP2
2.26.2-3.28.2
fixed
suse enterprise desktop 15 SP3
2.26.2-3.31.1
fixed
suse enterprise desktop 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise desktop 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise desktop 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise desktop 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise sap 15
2.16.3-1.30
fixed
suse enterprise sap 15 SP1
2.16.4-3.9.2
fixed
suse enterprise sap 15 SP2
2.26.2-3.28.2
fixed
suse enterprise sap 15 SP3
2.26.2-3.31.1
fixed
suse enterprise sap 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise sap 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise sap 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise sap 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise server 15
2.16.3-1.30
fixed
suse enterprise server 15 SP1
2.16.4-3.9.2
fixed
suse enterprise server 15 SP2
2.26.2-3.28.2
fixed
suse enterprise server 15 SP3
2.26.2-3.31.1
fixed
suse enterprise server 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise server 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise server 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise server 15 SP7
2.43.0-150600.3.9.1
fixed
git-arch
suse enterprise desktop 15
2.16.3-1.30
fixed
suse enterprise desktop 15 SP1
2.16.4-3.9.2
fixed
suse enterprise desktop 15 SP2
2.26.2-3.28.2
fixed
suse enterprise desktop 15 SP3
2.26.2-3.31.1
fixed
suse enterprise desktop 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise desktop 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise desktop 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise desktop 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise sap 15
2.16.3-1.30
fixed
suse enterprise sap 15 SP1
2.16.4-3.9.2
fixed
suse enterprise sap 15 SP2
2.26.2-3.28.2
fixed
suse enterprise sap 15 SP3
2.26.2-3.31.1
fixed
suse enterprise sap 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise sap 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise sap 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise sap 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise server 15
2.16.3-1.30
fixed
suse enterprise server 15 SP1
2.16.4-3.9.2
fixed
suse enterprise server 15 SP2
2.26.2-3.28.2
fixed
suse enterprise server 15 SP3
2.26.2-3.31.1
fixed
suse enterprise server 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise server 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise server 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise server 15 SP7
2.43.0-150600.3.9.1
fixed
git-cvs
suse enterprise desktop 15
2.16.3-1.30
fixed
suse enterprise desktop 15 SP1
2.16.4-3.9.2
fixed
suse enterprise desktop 15 SP2
2.26.2-3.28.2
fixed
suse enterprise desktop 15 SP3
2.26.2-3.31.1
fixed
suse enterprise desktop 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise desktop 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise desktop 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise desktop 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise sap 15
2.16.3-1.30
fixed
suse enterprise sap 15 SP1
2.16.4-3.9.2
fixed
suse enterprise sap 15 SP2
2.26.2-3.28.2
fixed
suse enterprise sap 15 SP3
2.26.2-3.31.1
fixed
suse enterprise sap 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise sap 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise sap 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise sap 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise server 15
2.16.3-1.30
fixed
suse enterprise server 15 SP1
2.16.4-3.9.2
fixed
suse enterprise server 15 SP2
2.26.2-3.28.2
fixed
suse enterprise server 15 SP3
2.26.2-3.31.1
fixed
suse enterprise server 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise server 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise server 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise server 15 SP7
2.43.0-150600.3.9.1
fixed
git-daemon
suse enterprise desktop 15
2.16.3-1.30
fixed
suse enterprise desktop 15 SP1
2.16.4-3.9.2
fixed
suse enterprise desktop 15 SP2
2.26.2-3.28.2
fixed
suse enterprise desktop 15 SP3
2.26.2-3.31.1
fixed
suse enterprise desktop 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise desktop 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise desktop 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise desktop 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise sap 15
2.16.3-1.30
fixed
suse enterprise sap 15 SP1
2.16.4-3.9.2
fixed
suse enterprise sap 15 SP2
2.26.2-3.28.2
fixed
suse enterprise sap 15 SP3
2.26.2-3.31.1
fixed
suse enterprise sap 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise sap 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise sap 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise sap 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise server 15
2.16.3-1.30
fixed
suse enterprise server 15 SP1
2.16.4-3.9.2
fixed
suse enterprise server 15 SP2
2.26.2-3.28.2
fixed
suse enterprise server 15 SP3
2.26.2-3.31.1
fixed
suse enterprise server 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise server 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise server 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise server 15 SP7
2.43.0-150600.3.9.1
fixed
git-doc
suse enterprise desktop 15
2.16.3-1.30
fixed
suse enterprise desktop 15 SP1
2.16.4-3.9.2
fixed
suse enterprise desktop 15 SP2
2.26.2-3.28.2
fixed
suse enterprise desktop 15 SP3
2.26.2-3.31.1
fixed
suse enterprise desktop 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise desktop 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise desktop 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise desktop 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise sap 15
2.16.3-1.30
fixed
suse enterprise sap 15 SP1
2.16.4-3.9.2
fixed
suse enterprise sap 15 SP2
2.26.2-3.28.2
fixed
suse enterprise sap 15 SP3
2.26.2-3.31.1
fixed
suse enterprise sap 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise sap 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise sap 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise sap 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise server 15
2.16.3-1.30
fixed
suse enterprise server 15 SP1
2.16.4-3.9.2
fixed
suse enterprise server 15 SP2
2.26.2-3.28.2
fixed
suse enterprise server 15 SP3
2.26.2-3.31.1
fixed
suse enterprise server 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise server 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise server 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise server 15 SP7
2.43.0-150600.3.9.1
fixed
git-email
suse enterprise desktop 15
2.16.3-1.30
fixed
suse enterprise desktop 15 SP1
2.16.4-3.9.2
fixed
suse enterprise desktop 15 SP2
2.26.2-3.28.2
fixed
suse enterprise desktop 15 SP3
2.26.2-3.31.1
fixed
suse enterprise desktop 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise desktop 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise desktop 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise desktop 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise sap 15
2.16.3-1.30
fixed
suse enterprise sap 15 SP1
2.16.4-3.9.2
fixed
suse enterprise sap 15 SP2
2.26.2-3.28.2
fixed
suse enterprise sap 15 SP3
2.26.2-3.31.1
fixed
suse enterprise sap 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise sap 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise sap 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise sap 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise server 15
2.16.3-1.30
fixed
suse enterprise server 15 SP1
2.16.4-3.9.2
fixed
suse enterprise server 15 SP2
2.26.2-3.28.2
fixed
suse enterprise server 15 SP3
2.26.2-3.31.1
fixed
suse enterprise server 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise server 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise server 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise server 15 SP7
2.43.0-150600.3.9.1
fixed
git-gui
suse enterprise desktop 15
2.16.3-1.30
fixed
suse enterprise desktop 15 SP1
2.16.4-3.9.2
fixed
suse enterprise desktop 15 SP2
2.26.2-3.28.2
fixed
suse enterprise desktop 15 SP3
2.26.2-3.31.1
fixed
suse enterprise desktop 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise desktop 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise desktop 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise desktop 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise sap 15
2.16.3-1.30
fixed
suse enterprise sap 15 SP1
2.16.4-3.9.2
fixed
suse enterprise sap 15 SP2
2.26.2-3.28.2
fixed
suse enterprise sap 15 SP3
2.26.2-3.31.1
fixed
suse enterprise sap 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise sap 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise sap 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise sap 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise server 15
2.16.3-1.30
fixed
suse enterprise server 15 SP1
2.16.4-3.9.2
fixed
suse enterprise server 15 SP2
2.26.2-3.28.2
fixed
suse enterprise server 15 SP3
2.26.2-3.31.1
fixed
suse enterprise server 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise server 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise server 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise server 15 SP7
2.43.0-150600.3.9.1
fixed
git-svn
suse enterprise desktop 15
2.16.3-1.30
fixed
suse enterprise desktop 15 SP1
2.16.4-3.9.2
fixed
suse enterprise desktop 15 SP2
2.26.2-3.28.2
fixed
suse enterprise desktop 15 SP3
2.26.2-3.31.1
fixed
suse enterprise desktop 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise desktop 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise desktop 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise desktop 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise sap 15
2.16.3-1.30
fixed
suse enterprise sap 15 SP1
2.16.4-3.9.2
fixed
suse enterprise sap 15 SP2
2.26.2-3.28.2
fixed
suse enterprise sap 15 SP3
2.26.2-3.31.1
fixed
suse enterprise sap 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise sap 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise sap 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise sap 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise server 15
2.16.3-1.30
fixed
suse enterprise server 15 SP1
2.16.4-3.9.2
fixed
suse enterprise server 15 SP2
2.26.2-3.28.2
fixed
suse enterprise server 15 SP3
2.26.2-3.31.1
fixed
suse enterprise server 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise server 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise server 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise server 15 SP7
2.43.0-150600.3.9.1
fixed
git-web
suse enterprise desktop 15
2.16.3-1.30
fixed
suse enterprise desktop 15 SP1
2.16.4-3.9.2
fixed
suse enterprise desktop 15 SP2
2.26.2-3.28.2
fixed
suse enterprise desktop 15 SP3
2.26.2-3.31.1
fixed
suse enterprise desktop 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise desktop 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise desktop 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise desktop 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise sap 15
2.16.3-1.30
fixed
suse enterprise sap 15 SP1
2.16.4-3.9.2
fixed
suse enterprise sap 15 SP2
2.26.2-3.28.2
fixed
suse enterprise sap 15 SP3
2.26.2-3.31.1
fixed
suse enterprise sap 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise sap 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise sap 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise sap 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise server 15
2.16.3-1.30
fixed
suse enterprise server 15 SP1
2.16.4-3.9.2
fixed
suse enterprise server 15 SP2
2.26.2-3.28.2
fixed
suse enterprise server 15 SP3
2.26.2-3.31.1
fixed
suse enterprise server 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise server 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise server 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise server 15 SP7
2.43.0-150600.3.9.1
fixed
gitk
suse enterprise desktop 15
2.16.3-1.30
fixed
suse enterprise desktop 15 SP1
2.16.4-3.9.2
fixed
suse enterprise desktop 15 SP2
2.26.2-3.28.2
fixed
suse enterprise desktop 15 SP3
2.26.2-3.31.1
fixed
suse enterprise desktop 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise desktop 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise desktop 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise desktop 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise sap 15
2.16.3-1.30
fixed
suse enterprise sap 15 SP1
2.16.4-3.9.2
fixed
suse enterprise sap 15 SP2
2.26.2-3.28.2
fixed
suse enterprise sap 15 SP3
2.26.2-3.31.1
fixed
suse enterprise sap 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise sap 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise sap 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise sap 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise server 15
2.16.3-1.30
fixed
suse enterprise server 15 SP1
2.16.4-3.9.2
fixed
suse enterprise server 15 SP2
2.26.2-3.28.2
fixed
suse enterprise server 15 SP3
2.26.2-3.31.1
fixed
suse enterprise server 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise server 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise server 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise server 15 SP7
2.43.0-150600.3.9.1
fixed
perl-Git
suse enterprise desktop 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise desktop 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise desktop 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise desktop 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise sap 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise sap 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise sap 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise sap 15 SP7
2.43.0-150600.3.9.1
fixed
suse enterprise server 15 SP4
2.35.3-150300.10.12.1
fixed
suse enterprise server 15 SP5
2.35.3-150300.10.27.1
fixed
suse enterprise server 15 SP6
2.43.0-150600.1.10
fixed
suse enterprise server 15 SP7
2.43.0-150600.3.9.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
emacs-git
RHEL 6
0:1.7.1-4.el6_7.1
fixed
RHEL 7
0:1.8.3.1-6.el7_2.1
fixed
emacs-git-el
RHEL 6
0:1.7.1-4.el6_7.1
fixed
RHEL 7
0:1.8.3.1-6.el7_2.1
fixed
git
RHEL 6
0:1.7.1-4.el6_7.1
fixed
RHEL 7
0:1.8.3.1-6.el7_2.1
fixed
git-all
RHEL 6
0:1.7.1-4.el6_7.1
fixed
RHEL 7
0:1.8.3.1-6.el7_2.1
fixed
git-bzr
RHEL 7
0:1.8.3.1-6.el7_2.1
fixed
git-cvs
RHEL 6
0:1.7.1-4.el6_7.1
fixed
RHEL 7
0:1.8.3.1-6.el7_2.1
fixed
git-daemon
RHEL 6
0:1.7.1-4.el6_7.1
fixed
RHEL 7
0:1.8.3.1-6.el7_2.1
fixed
git-email
RHEL 6
0:1.7.1-4.el6_7.1
fixed
RHEL 7
0:1.8.3.1-6.el7_2.1
fixed
git-gui
RHEL 6
0:1.7.1-4.el6_7.1
fixed
RHEL 7
0:1.8.3.1-6.el7_2.1
fixed
git-hg
RHEL 7
0:1.8.3.1-6.el7_2.1
fixed
git-p4
RHEL 7
0:1.8.3.1-6.el7_2.1
fixed
git-svn
RHEL 6
0:1.7.1-4.el6_7.1
fixed
RHEL 7
0:1.8.3.1-6.el7_2.1
fixed
gitk
RHEL 6
0:1.7.1-4.el6_7.1
fixed
RHEL 7
0:1.8.3.1-6.el7_2.1
fixed
gitweb
RHEL 6
0:1.7.1-4.el6_7.1
fixed
RHEL 7
0:1.8.3.1-6.el7_2.1
fixed
perl-Git
RHEL 6
0:1.7.1-4.el6_7.1
fixed
RHEL 7
0:1.8.3.1-6.el7_2.1
fixed
perl-Git-SVN
RHEL 7
0:1.8.3.1-6.el7_2.1
fixed
Common Weakness Enumeration
References
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183147.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179121.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-March/180763.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00059.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00060.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00061.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00062.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00071.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00074.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00076.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00077.html
http://lists.opensuse.org/opensuse-updates/2016-04/msg00011.html
http://pastebin.com/UX2P2jjg
http://rhn.redhat.com/errata/RHSA-2016-0496.html
http://www.debian.org/security/2016/dsa-3521
http://www.openwall.com/lists/oss-security/2016/03/15/5
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
http://www.securityfocus.com/bid/84355
http://www.securitytracker.com/id/1035290
http://www.ubuntu.com/usn/USN-2938-1
https://github.com/git/git/commit/de1e67d0703894cb6ea782e36abb63976ab07e60
https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.7.4.txt
https://security.gentoo.org/glsa/201605-01
http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183147.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179121.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-March/180763.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00059.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00060.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00061.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00062.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00071.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00074.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00076.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00077.html
http://lists.opensuse.org/opensuse-updates/2016-04/msg00011.html
http://pastebin.com/UX2P2jjg
http://rhn.redhat.com/errata/RHSA-2016-0496.html
http://www.debian.org/security/2016/dsa-3521
http://www.openwall.com/lists/oss-security/2016/03/15/5
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
http://www.securityfocus.com/bid/84355
http://www.securitytracker.com/id/1035290
http://www.ubuntu.com/usn/USN-2938-1
https://github.com/git/git/commit/de1e67d0703894cb6ea782e36abb63976ab07e60
https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.7.4.txt
https://security.gentoo.org/glsa/201605-01