Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.AL2_ALAS-2024-2548.NASL
HistoryMay 31, 2024 - 12:00 a.m.

Amazon Linux 2 : git (ALAS-2024-2548)

2024-05-3100:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
2
git version vulnerabilities
files writing vulnerability
arbitrary code execution
hardlinking vulnerability

9 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

8.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

41.7%

JSON

The version of git installed on the remote host is prior to 2.40.1-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2548 advisory.

Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and     2.39.4, repositories with submodules can be crafted in a way that exploits a bug in Git whereby it can be     fooled into writing files not into the submodule's worktree but into a `.git/` directory. This allows     writing a hook that will be executed while the clone operation is still running, giving the user no     opportunity to inspect the code that is being executed. The problem has been patched in versions 2.45.1,     2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. If symbolic link support is disabled in Git (e.g. via     `git config --global core.symlinks false`), the described attack won't work. As always, it is best to     avoid cloning repositories from untrusted sources. (CVE-2024-32002)

Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and     2.39.4, an attacker can prepare a local repository in such a way that, when cloned, will execute arbitrary     code during the operation. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2,     2.41.1, 2.40.2, and 2.39.4. As a workaround, avoid cloning repositories from untrusted sources.
(CVE-2024-32004)

Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and     2.39.4, local clones may end up hardlinking files into the target repository's object database when source     and target repository reside on the same disk. If the source repository is owned by a different user, then     those hardlinked files may be rewritten at any point in time by the untrusted user. Cloning local     repositories will cause Git to either copy or hardlink files of the source repository into the target     repository. This significantly speeds up such local clones compared to doing a proper clone and saves     both disk space and compute time. When cloning a repository located on the same disk that is owned by a     different user than the current user we also end up creating such hardlinks. These files will continue to     be owned and controlled by the potentially-untrusted user and can be rewritten by them at will in the     future. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and     2.39.4. (CVE-2024-32020)

Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and     2.39.4, when cloning a local source repository that contains symlinks via the filesystem, Git may create     hardlinks to arbitrary user-readable files on the same filesystem as the target repository in the     `objects/` directory. Cloning a local repository over the filesystem may creating hardlinks to arbitrary     user-owned files on the same filesystem in the target Git repository's `objects/` directory. When cloning     a repository over the filesystem (without explicitly specifying the `file://` protocol or `--no-local`),     the optimizations for local cloningwill be used, which include attempting to hard link the object files     instead of copying them. While the code includes checks against symbolic links in the source repository,     which were added during the fix for CVE-2022-39253, these checks can still be raced because the hard link     operation ultimately follows symlinks. If the object on the filesystem appears as a file during the check,     and then a symlink during the operation, this will allow the adversary to bypass the check and create     hardlinks in the destination objects directory to arbitrary, user-readable files. The problem has been     patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. (CVE-2024-32021)

Git is a revision control system. The Git project recommends to avoid working in untrusted repositories,     and instead to clone it first with `git clone --no-local` to obtain a clean copy. Git has specific     protections to make that a safe operation even with an untrusted source repository, but vulnerabilities     allow those protections to be bypassed. In the context of cloning local repositories owned by other users,     this vulnerability has been covered in CVE-2024-32004. But there are circumstances where the fixes for     CVE-2024-32004 are not enough: For example, when obtaining a `.zip` file containing a full copy of a Git     repository, it should not be trusted by default to be safe, as e.g. hooks could be configured to run     within the context of that repository. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4,     2.42.2, 2.41.1, 2.40.2, and 2.39.4. As a workaround, avoid using Git in repositories that have been     obtained via archives from untrusted sources. (CVE-2024-32465)

Tenable has extracted the preceding description block directly from the tested product security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Amazon Linux 2 Security Advisory ALAS-2024-2548.
##

include('compat.inc');

if (description)
{
  script_id(198267);
  script_version("1.2");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/06/03");

  script_cve_id(
    "CVE-2024-32002",
    "CVE-2024-32004",
    "CVE-2024-32020",
    "CVE-2024-32021",
    "CVE-2024-32465"
  );

  script_name(english:"Amazon Linux 2 : git (ALAS-2024-2548)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Amazon Linux 2 host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"The version of git installed on the remote host is prior to 2.40.1-1. It is, therefore, affected by multiple
vulnerabilities as referenced in the ALAS2-2024-2548 advisory.

    Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and
    2.39.4, repositories with submodules can be crafted in a way that exploits a bug in Git whereby it can be
    fooled into writing files not into the submodule's worktree but into a `.git/` directory. This allows
    writing a hook that will be executed while the clone operation is still running, giving the user no
    opportunity to inspect the code that is being executed. The problem has been patched in versions 2.45.1,
    2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. If symbolic link support is disabled in Git (e.g. via
    `git config --global core.symlinks false`), the described attack won't work. As always, it is best to
    avoid cloning repositories from untrusted sources. (CVE-2024-32002)

    Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and
    2.39.4, an attacker can prepare a local repository in such a way that, when cloned, will execute arbitrary
    code during the operation. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2,
    2.41.1, 2.40.2, and 2.39.4. As a workaround, avoid cloning repositories from untrusted sources.
    (CVE-2024-32004)

    Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and
    2.39.4, local clones may end up hardlinking files into the target repository's object database when source
    and target repository reside on the same disk. If the source repository is owned by a different user, then
    those hardlinked files may be rewritten at any point in time by the untrusted user. Cloning local
    repositories will cause Git to either copy or hardlink files of the source repository into the target
    repository. This significantly speeds up such local clones compared to doing a proper clone and saves
    both disk space and compute time. When cloning a repository located on the same disk that is owned by a
    different user than the current user we also end up creating such hardlinks. These files will continue to
    be owned and controlled by the potentially-untrusted user and can be rewritten by them at will in the
    future. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and
    2.39.4. (CVE-2024-32020)

    Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and
    2.39.4, when cloning a local source repository that contains symlinks via the filesystem, Git may create
    hardlinks to arbitrary user-readable files on the same filesystem as the target repository in the
    `objects/` directory. Cloning a local repository over the filesystem may creating hardlinks to arbitrary
    user-owned files on the same filesystem in the target Git repository's `objects/` directory. When cloning
    a repository over the filesystem (without explicitly specifying the `file://` protocol or `--no-local`),
    the optimizations for local cloningwill be used, which include attempting to hard link the object files
    instead of copying them. While the code includes checks against symbolic links in the source repository,
    which were added during the fix for CVE-2022-39253, these checks can still be raced because the hard link
    operation ultimately follows symlinks. If the object on the filesystem appears as a file during the check,
    and then a symlink during the operation, this will allow the adversary to bypass the check and create
    hardlinks in the destination objects directory to arbitrary, user-readable files. The problem has been
    patched in versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4. (CVE-2024-32021)

    Git is a revision control system. The Git project recommends to avoid working in untrusted repositories,
    and instead to clone it first with `git clone --no-local` to obtain a clean copy. Git has specific
    protections to make that a safe operation even with an untrusted source repository, but vulnerabilities
    allow those protections to be bypassed. In the context of cloning local repositories owned by other users,
    this vulnerability has been covered in CVE-2024-32004. But there are circumstances where the fixes for
    CVE-2024-32004 are not enough: For example, when obtaining a `.zip` file containing a full copy of a Git
    repository, it should not be trusted by default to be safe, as e.g. hooks could be configured to run
    within the context of that repository. The problem has been patched in versions 2.45.1, 2.44.1, 2.43.4,
    2.42.2, 2.41.1, 2.40.2, and 2.39.4. As a workaround, avoid using Git in repositories that have been
    obtained via archives from untrusted sources. (CVE-2024-32465)

Tenable has extracted the preceding description block directly from the tested product security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://alas.aws.amazon.com/AL2/ALAS-2024-2548.html");
  script_set_attribute(attribute:"see_also", value:"https://alas.aws.amazon.com/cve/html/CVE-2024-32002.html");
  script_set_attribute(attribute:"see_also", value:"https://alas.aws.amazon.com/cve/html/CVE-2024-32004.html");
  script_set_attribute(attribute:"see_also", value:"https://alas.aws.amazon.com/cve/html/CVE-2024-32020.html");
  script_set_attribute(attribute:"see_also", value:"https://alas.aws.amazon.com/cve/html/CVE-2024-32021.html");
  script_set_attribute(attribute:"see_also", value:"https://alas.aws.amazon.com/cve/html/CVE-2024-32465.html");
  script_set_attribute(attribute:"see_also", value:"https://alas.aws.amazon.com/faqs.html");
  script_set_attribute(attribute:"solution", value:
"Run 'yum update git' to update your system.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-32002");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2024/05/14");
  script_set_attribute(attribute:"patch_publication_date", value:"2024/05/23");
  script_set_attribute(attribute:"plugin_publication_date", value:"2024/05/31");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:git");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:git-all");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:git-core");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:git-core-doc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:git-credential-libsecret");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:git-cvs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:git-daemon");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:git-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:git-email");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:git-gui");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:git-instaweb");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:git-p4");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:git-subtree");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:git-svn");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:gitk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:gitweb");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:perl-Git");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:perl-Git-SVN");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:amazon:linux:2");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Amazon Linux Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/AmazonLinux/release", "Host/AmazonLinux/rpm-list");

  exit(0);
}

include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

var alas_release = get_kb_item("Host/AmazonLinux/release");
if (isnull(alas_release) || !strlen(alas_release)) audit(AUDIT_OS_NOT, "Amazon Linux");
var os_ver = pregmatch(pattern: "^AL(A|\d+|-\d+)", string:alas_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Amazon Linux");
os_ver = os_ver[1];
if (os_ver != "2")
{
  if (os_ver == 'A') os_ver = 'AMI';
  audit(AUDIT_OS_NOT, "Amazon Linux 2", "Amazon Linux " + os_ver);
}

if (!get_kb_item("Host/AmazonLinux/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

var pkgs = [
    {'reference':'git-2.40.1-1.amzn2.0.3', 'cpu':'aarch64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-2.40.1-1.amzn2.0.3', 'cpu':'i686', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-2.40.1-1.amzn2.0.3', 'cpu':'x86_64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-all-2.40.1-1.amzn2.0.3', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-core-2.40.1-1.amzn2.0.3', 'cpu':'aarch64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-core-2.40.1-1.amzn2.0.3', 'cpu':'i686', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-core-2.40.1-1.amzn2.0.3', 'cpu':'x86_64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-core-doc-2.40.1-1.amzn2.0.3', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-credential-libsecret-2.40.1-1.amzn2.0.3', 'cpu':'aarch64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-credential-libsecret-2.40.1-1.amzn2.0.3', 'cpu':'i686', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-credential-libsecret-2.40.1-1.amzn2.0.3', 'cpu':'x86_64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-cvs-2.40.1-1.amzn2.0.3', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-daemon-2.40.1-1.amzn2.0.3', 'cpu':'aarch64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-daemon-2.40.1-1.amzn2.0.3', 'cpu':'i686', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-daemon-2.40.1-1.amzn2.0.3', 'cpu':'x86_64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-debuginfo-2.40.1-1.amzn2.0.3', 'cpu':'aarch64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-debuginfo-2.40.1-1.amzn2.0.3', 'cpu':'i686', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-debuginfo-2.40.1-1.amzn2.0.3', 'cpu':'x86_64', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-email-2.40.1-1.amzn2.0.3', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-gui-2.40.1-1.amzn2.0.3', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-instaweb-2.40.1-1.amzn2.0.3', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-p4-2.40.1-1.amzn2.0.3', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-subtree-2.40.1-1.amzn2.0.3', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'git-svn-2.40.1-1.amzn2.0.3', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'gitk-2.40.1-1.amzn2.0.3', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'gitweb-2.40.1-1.amzn2.0.3', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'perl-Git-2.40.1-1.amzn2.0.3', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE},
    {'reference':'perl-Git-SVN-2.40.1-1.amzn2.0.3', 'release':'AL2', 'rpm_spec_vers_cmp':TRUE}
];

var flag = 0;
foreach var package_array ( pkgs ) {
  var reference = NULL;
  var _release = NULL;
  var sp = NULL;
  var _cpu = NULL;
  var el_string = NULL;
  var rpm_spec_vers_cmp = NULL;
  var epoch = NULL;
  var allowmaj = NULL;
  var exists_check = NULL;
  if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
  if (!empty_or_null(package_array['release'])) _release = package_array['release'];
  if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
  if (!empty_or_null(package_array['cpu'])) _cpu = package_array['cpu'];
  if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];
  if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
  if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];
  if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];
  if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];
  if (reference && _release && (!exists_check || rpm_exists(release:_release, rpm:exists_check))) {
    if (rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;
  }
}

if (flag)
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_HOLE,
      extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "git / git-all / git-core / etc");
}
VendorProductVersionCPE
amazonlinuxgit-subtreep-cpe:/a:amazon:linux:git-subtree
amazonlinuxgit-svnp-cpe:/a:amazon:linux:git-svn
amazonlinuxgitwebp-cpe:/a:amazon:linux:gitweb
amazonlinux2cpe:/o:amazon:linux:2
amazonlinuxgitkp-cpe:/a:amazon:linux:gitk
amazonlinuxgit-instawebp-cpe:/a:amazon:linux:git-instaweb
amazonlinuxgit-credential-libsecretp-cpe:/a:amazon:linux:git-credential-libsecret
amazonlinuxgit-daemonp-cpe:/a:amazon:linux:git-daemon
amazonlinuxgit-allp-cpe:/a:amazon:linux:git-all
amazonlinuxgit-debuginfop-cpe:/a:amazon:linux:git-debuginfo
Rows per page:
1-10 of 191

Related

nessus 41
amazon 5
fedora 6
openvas 28
ubuntu 5
kaspersky 3
osv 17
slackware 3
mageia 2
redos 2
photon 3
alpinelinux 7
ubuntucve 7
cvelist 7
cve 7
debiancve 7
nvd 7
vulnrichment 4
redhatcve 7
cbl_mariner 5
wolfi 6
mscve 3
githubexploit 7
prion 2
cgr 1
veracode 1
github 2
freebsd 2
cloudfoundry 1
altlinux 1
nessus
nessus
Amazon Linux 2023 : git, git-all, git-core (ALAS2023-2024-623)
2024-05-28 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS / 23.10 / 24.04 LTS : Git vulnerabilities (USN-6793-1)
2024-05-28 00:00:00
Slackware Linux 15.0 / current git Multiple Vulnerabilities (SSA:2024-136-02)
2024-05-16 00:00:00
amazon
amazon
Important: git
2024-05-23 21:37:00
Important: git
2024-05-23 22:04:00
Important: git
2022-12-01 17:34:00
fedora
fedora
[SECURITY] Fedora 40 Update: git-2.45.1-1.fc40
2024-05-17 01:09:13
[SECURITY] Fedora 37 Update: moby-engine-20.10.20-1.fc37
2022-11-10 22:49:47
[SECURITY] Fedora 36 Update: moby-engine-20.10.20-1.fc36
2022-10-22 13:52:03
openvas
openvas
Fedora: Security Advisory for git (FEDORA-2024-ecba8476e2)
2024-05-27 00:00:00
Slackware: Security Advisory (SSA:2024-136-02)
2024-05-16 00:00:00
Mageia: Security Advisory (MGASA-2024-0204)
2024-06-04 00:00:00
ubuntu
ubuntu
Git vulnerabilities
2024-05-28 00:00:00
Git vulnerability
2024-06-18 00:00:00
Git vulnerability
2023-03-28 00:00:00
kaspersky
kaspersky
KLA67449 Multiple vulnerabilities in Git for Windows
2024-05-14 00:00:00
KLA67403 Multiple vulnerabilities in Microsoft Developer Tools
2024-05-14 00:00:00
KLA20184 Multiple vulnerabilities in Git for Windows
2022-10-18 00:00:00
osv
osv
git vulnerabilities
2024-05-28 13:39:27
CVE-2024-32465
2024-05-14 20:15:14
BIT-git-2024-32021
2024-05-24 07:18:34
slackware
slackware
[slackware-security] git
2024-05-16 02:33:18
[slackware-security] git
2022-10-18 20:40:51
[slackware-security] git
2023-02-15 19:51:52
mageia
mageia
Updated git packages fix security vulnerabilities
2024-06-03 21:30:48
Updated git packages fix security vulnerability
2022-10-28 09:54:08
redos
redos
ROS-20240527-04
2024-05-27 00:00:00
ROS-20240529-03
2024-05-29 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2024-5.0-0271
2024-05-15 00:00:00
Critical Photon OS Security Update - PHSA-2024-4.0-0611
2024-05-15 00:00:00
Critical Photon OS Security Update - PHSA-2024-3.0-0761
2024-05-29 00:00:00
alpinelinux
alpinelinux
CVE-2024-32465
2024-05-14 20:15:14
CVE-2024-32021
2024-05-14 20:15:13
CVE-2024-32020
2024-05-14 19:15:12
ubuntucve
ubuntucve
CVE-2024-32465
2024-05-14 00:00:00
CVE-2024-32021
2024-05-14 00:00:00
CVE-2024-32020
2024-05-14 00:00:00
cvelist
cvelist
CVE-2024-32465 Git's protections for cloning untrusted repositories can be bypassed
2024-05-14 19:18:33
CVE-2024-32021 Local Git clone may hardlink arbitrary user-readable files into the new repository's "objects/" directory
2024-05-14 19:15:28
CVE-2024-32020 Cloning local Git repository by untrusted user allows the untrusted user to modify objects in the cloned repository at will
2024-05-14 18:54:08
cve
cve
CVE-2024-32465
2024-05-14 20:15:14
CVE-2024-32021
2024-05-14 20:15:13
CVE-2024-32020
2024-05-14 19:15:12
debiancve
debiancve
CVE-2024-32465
2024-05-14 20:15:14
CVE-2024-32021
2024-05-14 20:15:13
CVE-2024-32020
2024-05-14 19:15:12
nvd
nvd
CVE-2024-32465
2024-05-14 20:15:14
CVE-2024-32021
2024-05-14 20:15:13
CVE-2024-32004
2024-05-14 19:15:11
vulnrichment
vulnrichment
CVE-2024-32465 Git's protections for cloning untrusted repositories can be bypassed
2024-05-14 19:18:33
CVE-2024-32021 Local Git clone may hardlink arbitrary user-readable files into the new repository's "objects/" directory
2024-05-14 19:15:28
CVE-2024-32020 Cloning local Git repository by untrusted user allows the untrusted user to modify objects in the cloned repository at will
2024-05-14 18:54:08
redhatcve
redhatcve
CVE-2024-32465
2024-05-14 23:56:59
CVE-2024-32004
2024-05-14 23:56:55
CVE-2024-32020
2024-05-15 00:25:29
cbl_mariner
cbl_mariner
CVE-2024-32021 affecting package git for versions less than 2.39.4-1
2024-05-28 18:18:21
CVE-2024-32465 affecting package git for versions less than 2.39.4-1
2024-05-28 18:18:21
CVE-2024-32020 affecting package git for versions less than 2.39.4-1
2024-05-28 18:18:21
wolfi
wolfi
CVE-2024-32465 vulnerabilities
2024-06-21 15:32:02
CVE-2024-32020 vulnerabilities
2024-06-21 15:32:02
CVE-2024-32021 vulnerabilities
2024-06-21 15:32:02
mscve
mscve
GitHub: CVE-2024-32004 Remote Code Execution while cloning special-crafted local repositories
2024-05-14 07:00:00
GitHub: CVE-2022-39253 Local clone optimization dereferences symbolic links by default
2022-11-08 08:00:00
GitHub: CVE-2024-32002 Recursive clones on case-insensitive filesystems that support symlinks are susceptible to Remote Code Execution
2024-05-14 07:00:00
githubexploit
githubexploit
Exploit for CVE-2024-32004
2024-05-20 14:59:16
Exploit for Link Following in Git
2024-05-18 15:05:28
Exploit for Link Following in Git
2024-05-20 02:58:57
prion
prion
Design/Logic Flaw
2022-10-19 11:15:00
Design/Logic Flaw
2023-02-14 20:15:00
cgr
cgr
CVE-2022-39253 vulnerabilities
2024-05-19 03:07:16
veracode
veracode
Information Disclosure
2022-10-20 19:55:20
github
github
Container build can leak any path on the host into the container
2022-11-11 00:03:31
Git security vulnerabilities announced
2022-10-18 17:11:45
freebsd
freebsd
git -- Multiple vulnerabilities
2022-06-09 00:00:00
git -- Local clone-based data exfiltration with non-local transports
2023-02-14 00:00:00
cloudfoundry
cloudfoundry
USN-5686-1: Git vulnerabilities | Cloud Foundry
2022-12-07 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package git version 2.33.5-alt1
2022-10-22 00:00:00

9 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

8.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

41.7%

JSON
Related for AL2_ALAS-2024-2548.NASL
nessus41amazon5fedora6openvas28ubuntu5kaspersky3osv17slackware3mageia2redos2photon3alpinelinux7ubuntucve7cvelist7cve7debiancve7nvd7vulnrichment4redhatcve7cbl_mariner5wolfi6mscve3githubexploit7prion2cgr1veracode1github2freebsd2cloudfoundry1altlinux1