Description: "A security issue has been reported in GIT, which can be exploited by malicious, local users to gain escalated privileges. The security issue is caused due to the "gitweb" implementation improperly verifying repository configuration variables. This can be exploited to execute arbitrary commands with the privileges of the "gitweb" user via a specially crafted "diff.external" configuration variable. Solution: Update to version 1.5.4.7, 1.5.5.6, 1.5.6.6, or 1.6.0.6."
*** This bug has been marked as a duplicate of bug 251343 ***
Bruno, this is actually not your fault since the bug has been reported a few days ago already and was not public.