Lucene search
HiveForce LabHIVEPRO:6B14B2070CCD3CC9B198D097F8BB20EAHistoryJan 19, 2023 - 12:24 p.m.
GitLab releases new CE and EE versions to address integer overflow vulnerabilities
2023-01-1912:24:06
HiveForce Lab
www.hivepro.com
19
Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary The GitLab CE and EE have two security issues in Git. One of them is CVE-2022-41903, which is an integer overflow in the ‘git-log’ and ‘git-archive’ commands that can result in arbitrary heap writes and remote code execution. Additionally, there is another security issue named CVE-2022-23521, which is an integer overflow in ‘.gitattributes’ that can result in arbitrary heap reads and writes, and remote code execution.
Related
nessus
nessus
Oracle Linux 7 : git (ELSA-2023-0978)
2023-02-28 00:00:00
RHEL 9 : git (RHSA-2023:0627)
2023-02-07 00:00:00
AlmaLinux 8 : git (ALSA-2023:0610)
2023-02-08 00:00:00
thn
thn
Git Users Urged to Update Software to Prevent Remote Code Execution Attacks
2023-01-18 09:28:00
Atlassian Releases Patches for Critical Flaws in Confluence and Bamboo
2023-07-25 04:17:00
openvas
openvas
Ubuntu: Security Advisory (USN-5810-4)
2023-03-02 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:0110-1)
2023-01-23 00:00:00
Fedora: Security Advisory for git (FEDORA-2023-9718cc6113)
2023-01-22 00:00:00
osv
osv
git vulnerabilities
2023-02-07 16:07:05
git - security update
2023-01-26 00:00:00
git vulnerabilities
2023-01-17 18:36:01
rocky
rocky
git security update
2023-02-06 19:25:41
git security update
2023-02-06 19:26:44
slackware
slackware
[slackware-security] git
2023-01-18 06:22:27
altlinux
altlinux
Security fix for the ALT Linux 10 package git version 2.33.6-alt1
2023-01-20 00:00:00
almalinux
almalinux
Important: git security update
2023-02-06 00:00:00
Important: git security update
2023-02-06 00:00:00
redhat
redhat
(RHSA-2023:0597) Important: rh-git227-git security update
2023-02-06 16:23:31
(RHSA-2023:0627) Important: git security update
2023-02-07 15:25:58
(RHSA-2023:0978) Important: git security update
2023-02-28 09:05:49
cloudfoundry
cloudfoundry
USN-5810-2: Git regression | Cloud Foundry
2023-02-24 00:00:00
USN-5810-1: Git vulnerabilities | Cloud Foundry
2023-02-23 00:00:00
oraclelinux
oraclelinux
git security update
2023-02-28 00:00:00
git security update
2023-02-07 00:00:00
git security update
2023-02-07 00:00:00
centos
centos
emacs, git, gitk, gitweb, perl security update
2023-03-01 14:01:43
amazon
amazon
Important: git
2023-01-30 16:02:00
Important: git
2023-01-31 20:44:00
fedora
fedora
[SECURITY] Fedora 37 Update: git-2.39.1-1.fc37
2023-01-21 03:35:26
[SECURITY] Fedora 36 Update: git-2.39.1-1.fc36
2023-01-21 03:44:31
ubuntu
ubuntu
Git vulnerabilities
2023-03-01 00:00:00
Git vulnerabilities
2023-02-07 00:00:00
Git regression
2023-01-19 00:00:00
hivepro
hivepro
debian
debian
[SECURITY] [DLA 3282-1] git security update
2023-01-26 13:00:35
[SECURITY] [DSA 5332-1] git security update
2023-01-29 16:59:53
redos
redos
ROS-20230418-03
2023-04-18 00:00:00
mageia
mageia
Updated git packages fix security vulnerability
2023-02-07 03:06:39
rosalinux
rosalinux
Advisory ROSA-SA-2023-2130
2023-03-07 12:33:13
Advisory ROSA-SA-2024-2398
2024-04-11 08:08:00
kaspersky
kaspersky
KLA20182 Multiple vulnerabilities in Git for Windows
2023-01-17 00:00:00
KLA20235 Multiple vulnerabilities in Microsoft Developer Tools
2023-02-14 00:00:00
github
github
Git security vulnerabilities announced
2023-01-17 18:31:50
malwarebytes
malwarebytes
Update now! Two critical flaws in Git's code found, patched
2023-01-19 04:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-3.0-0526
2023-02-03 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0327
2023-02-06 00:00:00
redhatcve
redhatcve
CVE-2022-23521
2023-01-18 17:05:12
CVE-2022-41903
2023-02-06 20:54:43
cgr
cgr
CVE-2022-23521 vulnerabilities
2024-04-29 03:36:01
CVE-2022-41903 vulnerabilities
2024-04-29 03:36:01
veracode
veracode
Integer Overflow
2023-01-18 20:22:07
Remote Code Execution(RCE)
2023-01-20 20:06:05
freebsd
freebsd
git -- Heap overflow in `git archive`, `git log --format` leading to RCE
2023-01-17 00:00:00
git -- gitattributes parsing integer overflow
2023-01-17 00:00:00
cbl_mariner
cbl_mariner
CVE-2022-41903 affecting package git 2.33.4-1
2023-09-27 18:02:50
CVE-2022-41903 affecting package git 2.23.4-2
2023-02-14 02:36:00
CVE-2022-23521 affecting package git 2.33.4-1
2023-09-27 18:02:50
ubuntucve
ubuntucve
CVE-2022-41903
2023-01-17 00:00:00
CVE-2022-23521
2023-01-17 00:00:00
ibm
ibm
Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to arbitrary code execution in Git [CVE-2022-41903]
2023-04-06 19:28:48
prion
prion
Integer overflow
2023-01-17 23:15:00
Integer overflow
2023-01-17 23:15:00
cve
cve
CVE-2022-41903
2023-01-17 23:15:15
CVE-2022-23521
2023-01-17 23:15:15
debiancve
debiancve
CVE-2022-41903
2023-01-17 23:15:15
CVE-2022-23521
2023-01-17 23:15:15
mscve
mscve
GitHub: CVE-2022-23521 gitattributes parsing integer overflow
2023-02-14 08:00:00
alpinelinux
alpinelinux
CVE-2022-23521
2023-01-17 23:15:15
CVE-2022-41903
2023-01-17 23:15:15
wolfi
wolfi
CVE-2022-41903 vulnerabilities
2024-04-29 03:06:13
CVE-2022-23521 vulnerabilities
2024-04-29 03:06:13
gentoo
gentoo
Git: Multiple Vulnerabilities
2023-12-27 00:00:00
cloudlinux
cloudlinux
git: Fix of 4 CVEs
2023-02-24 09:34:40
ics
ics
Siemens SCALANCE XCM-/XRM-300
2024-02-15 12:00:00
Related for HIVEPRO:6B14B2070CCD3CC9B198D097F8BB20EA