From e709c89e63a1c9156bf78258a0363ff86d1893c4 Mon Sep 17 00:00:00 2001
From: Pedro Alvarez <palvarez89@gmail.com>
Date: Wed, 15 Aug 2018 13:04:27 +0100
Subject: Set enable-http-clone=0 to avoid Cgit vulerability

More information at https://nvd.nist.gov/vuln/detail/CVE-2018-14912
---
 share/etc/cgitrc | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'share/etc/cgitrc')

diff --git a/share/etc/cgitrc b/share/etc/cgitrc
index 36e37f4..1071e9a 100644
--- a/share/etc/cgitrc
+++ b/share/etc/cgitrc
@@ -15,6 +15,8 @@ enable-commit-graph=1
 enable-log-filecount=1
 enable-log-linecount=1
 
+enable-http-clone=0
+
 mimetype.gif=image/gif
 mimetype.html=text/html
 mimetype.jpg=image/jpeg
-- 
cgit v1.2.1