malicious URLs may present credentials to wrong server

2020-04-1400:00:00

vuxml.freebsd.org

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

69.7%

JSON

git security advisory reports:

Git uses external “credential helper” programs to store and retrieve passwords or
other credentials from secure storage provided by the operating system.
Specially-crafted URLs that contain an encoded newline can inject unintended values
into the credential helper protocol stream, causing the credential helper to retrieve
the password for one server for an HTTP request being made to another
server, resulting in credentials for the former being sent to the
latter.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchgit= 2.26.0UNKNOWN
FreeBSDanynoarchgit< 2.26.1UNKNOWN
FreeBSDanynoarchgit-lite= 2.26.0UNKNOWN
FreeBSDanynoarchgit-lite< 2.26.1UNKNOWN
FreeBSDanynoarchgit-gui= 2.26.0UNKNOWN
FreeBSDanynoarchgit-gui< 2.26.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
FreeBSD	any	noarch	git	= 2.26.0	UNKNOWN
FreeBSD	any	noarch	git	< 2.26.1	UNKNOWN
FreeBSD	any	noarch	git-lite	= 2.26.0	UNKNOWN
FreeBSD	any	noarch	git-lite	< 2.26.1	UNKNOWN
FreeBSD	any	noarch	git-gui	= 2.26.0	UNKNOWN
FreeBSD	any	noarch	git-gui	< 2.26.1	UNKNOWN