Debian Linux Security Advisory 1990-1 – Stefan Goebel discovered that the Debian version of trac-git, the Git add-on for the Trac issue tracking system, contains a flaw which enables attackers to execute code on the web server running trac-git by sending crafted HTTP queries.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/85922/dsa-1990-1.txt
Source: https://packetstormsecurity.com/files/85922/Debian-Linux-Security-Advisory-1990-1.html