Backport CVE-2018-17456 fixes that are in 1:2.11.0-3+deb9u4

The backport was mostly straightforward.  More details are in the
patches themselves.

Signed-off-by: Jonathan Nieder <jrnieder@gmail.com>
8 files changed
tree: cf125c83bebdd6ea52453f3a610cc2ee01dc9058
  1. .gitattributes
  2. .gitignore
  3. .mailmap
  4. COPYING
  5. Documentation/
  6. GIT-VERSION-GEN
  7. INSTALL
  8. LGPL-2.1
  9. Makefile
  10. README
  11. abspath.c
  12. aclocal.m4
  13. advice.c
  14. advice.h
  15. alias.c
  16. alloc.c
  17. archive-tar.c
  18. archive-zip.c
  19. archive.c
  20. archive.h
  21. argv-array.c
  22. argv-array.h
  23. attr.c
  24. attr.h
  25. base85.c
  26. bisect.c
  27. bisect.h
  28. blob.c
  29. blob.h
  30. block-sha1/
  31. branch.c
  32. branch.h
  33. builtin.h
  34. builtin/
  35. bulk-checkin.c
  36. bulk-checkin.h
  37. bundle.c
  38. bundle.h
  39. cache-tree.c
  40. cache-tree.h
  41. cache.h
  42. check-builtins.sh
  43. check-racy.c
  44. check_bindir
  45. color.c
  46. color.h
  47. column.c
  48. column.h
  49. combine-diff.c
  50. command-list.txt
  51. commit-slab.h
  52. commit.c
  53. commit.h
  54. compat/
  55. config.c
  56. config.mak.in
  57. config.mak.uname
  58. configure.ac
  59. connect.c
  60. connect.h
  61. connected.c
  62. connected.h
  63. contrib/
  64. convert.c
  65. convert.h
  66. copy.c
  67. credential-cache--daemon.c
  68. credential-cache.c
  69. credential-store.c
  70. credential.c
  71. credential.h
  72. csum-file.c
  73. csum-file.h
  74. ctype.c
  75. daemon.c
  76. date.c
  77. debian/
  78. decorate.c
  79. decorate.h
  80. delta.h
  81. diff-delta.c
  82. diff-lib.c
  83. diff-no-index.c
  84. diff.c
  85. diff.h
  86. diffcore-break.c
  87. diffcore-delta.c
  88. diffcore-order.c
  89. diffcore-pickaxe.c
  90. diffcore-rename.c
  91. diffcore.h
  92. dir.c
  93. dir.h
  94. editor.c
  95. entry.c
  96. environment.c
  97. ewah/
  98. exec_cmd.c
  99. exec_cmd.h
  100. fast-import.c
  101. fetch-pack.c
  102. fetch-pack.h
  103. fmt-merge-msg.h
  104. fsck.c
  105. fsck.h
  106. generate-cmdlist.sh
  107. gettext.c
  108. gettext.h
  109. git-add--interactive.perl
  110. git-am.sh
  111. git-archimport.perl
  112. git-bisect.sh
  113. git-compat-util.h
  114. git-cvsexportcommit.perl
  115. git-cvsimport.perl
  116. git-cvsserver.perl
  117. git-difftool--helper.sh
  118. git-difftool.perl
  119. git-filter-branch.sh
  120. git-gui/
  121. git-instaweb.sh
  122. git-merge-octopus.sh
  123. git-merge-one-file.sh
  124. git-merge-resolve.sh
  125. git-mergetool--lib.sh
  126. git-mergetool.sh
  127. git-p4.py
  128. git-parse-remote.sh
  129. git-pull.sh
  130. git-quiltimport.sh
  131. git-rebase--am.sh
  132. git-rebase--interactive.sh
  133. git-rebase--merge.sh
  134. git-rebase.sh
  135. git-relink.perl
  136. git-remote-testgit.sh
  137. git-request-pull.sh
  138. git-send-email.perl
  139. git-sh-i18n.sh
  140. git-sh-setup.sh
  141. git-stash.sh
  142. git-submodule.sh
  143. git-svn.perl
  144. git-web--browse.sh
  145. git.c
  146. git.rc
  147. git.spec.in
  148. gitk-git/
  149. gitweb/
  150. gpg-interface.c
  151. gpg-interface.h
  152. graph.c
  153. graph.h
  154. grep.c
  155. grep.h
  156. hashmap.c
  157. hashmap.h
  158. help.c
  159. help.h
  160. hex.c
  161. http-backend.c
  162. http-fetch.c
  163. http-push.c
  164. http-walker.c
  165. http.c
  166. http.h
  167. ident.c
  168. imap-send.c
  169. khash.h
  170. kwset.c
  171. kwset.h
  172. levenshtein.c
  173. levenshtein.h
  174. line-log.c
  175. line-log.h
  176. line-range.c
  177. line-range.h
  178. list-objects.c
  179. list-objects.h
  180. ll-merge.c
  181. ll-merge.h
  182. lockfile.c
  183. log-tree.c
  184. log-tree.h
  185. mailmap.c
  186. mailmap.h
  187. match-trees.c
  188. merge-blobs.c
  189. merge-blobs.h
  190. merge-recursive.c
  191. merge-recursive.h
  192. merge.c
  193. mergesort.c
  194. mergesort.h
  195. mergetools/
  196. name-hash.c
  197. notes-cache.c
  198. notes-cache.h
  199. notes-merge.c
  200. notes-merge.h
  201. notes-utils.c
  202. notes-utils.h
  203. notes.c
  204. notes.h
  205. object.c
  206. object.h
  207. pack-bitmap-write.c
  208. pack-bitmap.c
  209. pack-bitmap.h
  210. pack-check.c
  211. pack-objects.c
  212. pack-objects.h
  213. pack-revindex.c
  214. pack-revindex.h
  215. pack-write.c
  216. pack.h
  217. pager.c
  218. parse-options-cb.c
  219. parse-options.c
  220. parse-options.h
  221. patch-delta.c
  222. patch-ids.c
  223. patch-ids.h
  224. path.c
  225. pathspec.c
  226. pathspec.h
  227. perl/
  228. pkt-line.c
  229. pkt-line.h
  230. po/
  231. ppc/
  232. preload-index.c
  233. pretty.c
  234. prio-queue.c
  235. prio-queue.h
  236. progress.c
  237. progress.h
  238. prompt.c
  239. prompt.h
  240. quote.c
  241. quote.h
  242. reachable.c
  243. reachable.h
  244. read-cache.c
  245. reflog-walk.c
  246. reflog-walk.h
  247. refs.c
  248. refs.h
  249. remote-curl.c
  250. remote-testsvn.c
  251. remote.c
  252. remote.h
  253. replace_object.c
  254. rerere.c
  255. rerere.h
  256. resolve-undo.c
  257. resolve-undo.h
  258. revision.c
  259. revision.h
  260. run-command.c
  261. run-command.h
  262. send-pack.c
  263. send-pack.h
  264. sequencer.c
  265. sequencer.h
  266. server-info.c
  267. setup.c
  268. sh-i18n--envsubst.c
  269. sha1-array.c
  270. sha1-array.h
  271. sha1-lookup.c
  272. sha1-lookup.h
  273. sha1_file.c
  274. sha1_name.c
  275. shallow.c
  276. shell.c
  277. shortlog.h
  278. show-index.c
  279. sideband.c
  280. sideband.h
  281. sigchain.c
  282. sigchain.h
  283. split-index.c
  284. split-index.h
  285. strbuf.c
  286. strbuf.h
  287. streaming.c
  288. streaming.h
  289. string-list.c
  290. string-list.h
  291. submodule.c
  292. submodule.h
  293. symlinks.c
  294. t/
  295. tag.c
  296. tag.h
  297. tar.h
  298. templates/
  299. test-chmtime.c
  300. test-ctype.c
  301. test-date.c
  302. test-delta.c
  303. test-dump-cache-tree.c
  304. test-dump-split-index.c
  305. test-genrandom.c
  306. test-hashmap.c
  307. test-index-version.c
  308. test-line-buffer.c
  309. test-match-trees.c
  310. test-mergesort.c
  311. test-mktemp.c
  312. test-parse-options.c
  313. test-path-utils.c
  314. test-prio-queue.c
  315. test-read-cache.c
  316. test-regex.c
  317. test-revision-walking.c
  318. test-run-command.c
  319. test-scrap-cache-tree.c
  320. test-sha1.c
  321. test-sha1.sh
  322. test-sigchain.c
  323. test-string-list.c
  324. test-subprocess.c
  325. test-svn-fe.c
  326. test-urlmatch-normalization.c
  327. test-wildmatch.c
  328. thread-utils.c
  329. thread-utils.h
  330. trace.c
  331. trace.h
  332. transport-helper.c
  333. transport.c
  334. transport.h
  335. tree-diff.c
  336. tree-walk.c
  337. tree-walk.h
  338. tree.c
  339. tree.h
  340. unicode_width.h
  341. unimplemented.sh
  342. unix-socket.c
  343. unix-socket.h
  344. unpack-trees.c
  345. unpack-trees.h
  346. update_unicode.sh
  347. upload-pack.c
  348. url.c
  349. url.h
  350. urlmatch.c
  351. urlmatch.h
  352. usage.c
  353. userdiff.c
  354. userdiff.h
  355. utf8.c
  356. utf8.h
  357. varint.c
  358. varint.h
  359. vcs-svn/
  360. version.c
  361. version.h
  362. versioncmp.c
  363. walker.c
  364. walker.h
  365. wildmatch.c
  366. wildmatch.h
  367. wrap-for-bin.sh
  368. wrapper.c
  369. write_or_die.c
  370. ws.c
  371. wt-status.c
  372. wt-status.h
  373. xdiff-interface.c
  374. xdiff-interface.h
  375. xdiff/
  376. zlib.c