-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 30 Jul 2025 21:10:52 +0300
Source: git
Binary: git git-dbgsym
Architecture: ppc64el
Version: 1:2.47.3-0+deb13u1
Distribution: trixie
Urgency: medium
Maintainer: ppc64el Build Daemon (ppc64el-conova-01) <buildd_ppc64el-ppc64el-conova-01@buildd.debian.org>
Changed-By: Adrian Bunk <bunk@debian.org>
Description:
 git        - fast, scalable, distributed revision control system
Closes: 1108983
Changes:
 git (1:2.47.3-0+deb13u1) trixie; urgency=medium
 .
   * Non-maintainer upload.
   * New upstream release.
     - CVE-2025-27613: gitk: file creation/truncation after cloning
       untrusted repository
     - CVE-2025-27614: gitk: user can be tricked into running any
       script after cloning untrusted repository
     - CVE-2025-46835: git-gui: file creation/overwriting after
       cloning untrusted repository
     - CVE-2025-48384: script execution after cloning untrusted
       repository
     - CVE-2025-48385: protocol injection when fetching
     - Closes: #1108983
Checksums-Sha1:
 57e65a996d18428b6871c9835bb57fe1aa36457f 45534232 git-dbgsym_2.47.3-0+deb13u1_ppc64el.deb
 9fc44ceac0314d9e7f2260bade6f82b1de115597 9339 git_2.47.3-0+deb13u1_ppc64el-buildd.buildinfo
 b54d553aaac6f53697cbcf4bb90c1cff742dcafe 9235932 git_2.47.3-0+deb13u1_ppc64el.deb
Checksums-Sha256:
 a3a034c80841a65c10ff790caa267f29aec910a400a8fff9febf233e23bb0bc1 45534232 git-dbgsym_2.47.3-0+deb13u1_ppc64el.deb
 6b16f9749acd2cad5a791c82851839fecfdf124024b69a14e791dee3c52bc0cb 9339 git_2.47.3-0+deb13u1_ppc64el-buildd.buildinfo
 dbb7ace798270dbd18d0c01cff73db4422d1b653b89ec4078d3a8eb7347c618e 9235932 git_2.47.3-0+deb13u1_ppc64el.deb
Files:
 87e05dadf998c7f4af3350deded709d3 45534232 debug optional git-dbgsym_2.47.3-0+deb13u1_ppc64el.deb
 2a05df3f6c071368c373192d975b560f 9339 vcs optional git_2.47.3-0+deb13u1_ppc64el-buildd.buildinfo
 77e1d9d84df0bb9794dd9222ffb7ba9e 9235932 vcs optional git_2.47.3-0+deb13u1_ppc64el.deb

-----BEGIN PGP SIGNATURE-----
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=wvZA
-----END PGP SIGNATURE-----