Lucene search
MicrosoftCVELIST:CVE-2019-1354HistoryJan 24, 2020 - 8:50 p.m.
CVE-2019-1354
2020-01-2420:50:26
microsoft
www.cve.org
A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka ‘Git for Visual Studio Remote Code Execution Vulnerability’. This CVE ID is unique from CVE-2019-1349, CVE-2019-1350, CVE-2019-1352, CVE-2019-1387.
CNA Affected
[
{
"product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.1 - 15.8)",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "unspecified"
}
]
},
{
"product": "Microsoft Visual Studio 2017",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "15.0"
}
]
},
{
"product": "Microsoft Visual Studio 2019",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "16.0"
}
]
}
]References
lists.opensuse.org/opensuse-security-announce/2020-01/msg00056.html
lists.opensuse.org/opensuse-security-announce/2020-05/msg00003.html
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1354
public-inbox.org/git/xmqqr21cqcn9.fsf%40gitster-ct.c.googlers.com/
security.gentoo.org/glsa/202003-30
Related
cve
cve
debiancve
debiancve
alpinelinux
alpinelinux
prion
prion
Remote code execution
2020-01-24 21:15:00
Remote code execution
2020-01-24 21:15:00
Remote code execution
2020-01-24 21:15:00
osv
osv
cvelist
cvelist
nvd
nvd
ubuntucve
ubuntucve
redhatcve
redhatcve
nessus
nessus
SUSE SLES15 Security Update : libgit2 (SUSE-SU-2022:3495-1)
2022-10-05 00:00:00
Security Updates for Microsoft Visual Studio Products (December 2019)
2019-12-10 00:00:00
Fedora 31 : libgit2 (2019-9c3d054f39)
2019-12-17 00:00:00
kaspersky
kaspersky
KLA11618 Multiple vulnerabilities in Microsoft Developer Tools
2019-12-10 00:00:00
qualysblog
qualysblog
fedora
fedora
[SECURITY] Fedora 31 Update: libgit2-0.28.4-1.fc31
2019-12-17 01:46:03
[SECURITY] Fedora 30 Update: git-2.21.1-1.fc30
2020-01-04 22:16:13
[SECURITY] Fedora 31 Update: git-2.24.1-1.fc31
2019-12-18 01:56:26
oraclelinux
oraclelinux
git security update
2019-12-19 00:00:00
git security update
2020-01-16 00:00:00
openvas
openvas
Fedora Update for libgit2 FEDORA-2019-9c3d054f39
2020-01-09 00:00:00
Huawei EulerOS: Security Advisory for git (EulerOS-SA-2020-1361)
2020-04-01 00:00:00
Huawei EulerOS: Security Advisory for git (EulerOS-SA-2020-1151)
2020-02-25 00:00:00
ubuntu
ubuntu
Git vulnerabilities
2019-12-10 00:00:00
amazon
amazon
gentoo
gentoo
Git: Multiple vulnerabilities
2020-03-15 00:00:00
libgit2: Multiple vulnerabilities
2020-03-19 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package git version 2.24.1-alt1
2019-12-12 00:00:00
Security fix for the ALT Linux 10 package git version 2.24.1-alt1
2019-12-08 00:00:00
archlinux
archlinux
[ASA-201912-5] libgit2: arbitrary code execution
2019-12-18 00:00:00
[ASA-201912-6] git: arbitrary code execution
2019-12-18 00:00:00
redhat
redhat
(RHSA-2020:0002) Important: rh-git218-git security update
2020-01-02 08:21:54
(RHSA-2019:4356) Important: git security update
2019-12-19 18:18:24
(RHSA-2020:0228) Important: git security update
2020-01-27 08:04:40
cloudfoundry
cloudfoundry
USN-4220-1: Git vulnerabilities | Cloud Foundry
2019-12-18 00:00:00
suse
suse
Security update for git (important)
2020-01-29 00:00:00
Security update for git (moderate)
2020-05-02 00:00:00
Security update for libgit2 (important)
2022-10-04 00:00:00
debian
debian
[SECURITY] [DLA 2059-1] git security update
2020-01-23 14:27:34
[SECURITY] [DSA 4581-1] git security update
2019-12-10 19:56:55
[SECURITY] [DSA 4581-1] git security update
2019-12-10 19:56:55
threatpost
threatpost
Microsoft Zaps Actively Exploited Zero-Day Bug
2019-12-10 21:21:24
mageia
mageia
Updated libgit2 packages fix security vulnerabilities
2019-12-15 21:03:05
Updated git packages fix security vulnerabilities
2019-12-15 21:03:05
symantec
symantec
veracode
veracode
Remote Code Execution (RCE)
2020-05-10 23:22:09
Arbitrary Files Overwrite
2019-12-20 00:15:19
Authorization Bypass
2019-12-20 00:15:19
mscve
mscve
Git for Visual Studio Remote Code Execution Vulnerability
2019-12-10 08:00:00
Git for Visual Studio Remote Code Execution Vulnerability
2019-12-10 08:00:00
Git for Visual Studio Remote Code Execution Vulnerability
2019-12-10 08:00:00
centos
centos
emacs, git, gitk, gitweb, perl security update
2020-01-18 14:51:34
ibm
ibm
rosalinux
rosalinux
Advisory ROSA-SA-2021-1843
2021-07-02 16:45:45