Directory traversal vulnerability in the Admin Defined Commands (ADC)
feature in gitolite before 18.104.22.168 allows remote attackers to execute
arbitrary commands via .. (dot dot) sequences in admin-defined commands.
GLSA request filed.
This issue was resolved and addressed in
GLSA 201412-09 at http://security.gentoo.org/glsa/glsa-201412-09.xml
by GLSA coordinator Sean Amoss (ackle).