Linux Distros Unpatched Vulnerability : CVE-2024-45305

🗓️ 18 Aug 2025 00:00:00Reported by TenableType

Linux/Unix unpatched CVE-2024-45305 in gix-path may leak config data between repos; upgrade 0.10.10

Reporter	Title	Published	Views	Family All 25
Chainguard	CVE-2024-45305 vulnerabilities	2 Sep 202418:15	–	cgr
Circl	CVE-2024-45305	31 Aug 202408:23	–	circl
CNNVD	gitoxide 安全漏洞	2 Sep 202400:00	–	cnnvd
CVE	CVE-2024-45305	2 Sep 202416:30	–	cve
Cvelist	CVE-2024-45305 gix-path uses local config across repos when it is the highest scope	2 Sep 202416:30	–	cvelist
Debian CVE	CVE-2024-45305	2 Sep 202416:30	–	debiancve
EUVD	EUVD-2024-2874	3 Oct 202520:07	–	euvd
Github Security Blog	gix-path uses local config across repos when it is the highest scope	3 Sep 202420:21	–	github
NVD	CVE-2024-45305	2 Sep 202418:15	–	nvd
OpenVAS	Fedora: Security Advisory (FEDORA-2024-1b3089c689)	26 May 202500:00	–	openvas

Source	Link
ubuntu	www.ubuntu.com/security/CVE-2024-45305
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(250425);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2025/08/18");

  script_cve_id("CVE-2024-45305");

  script_name(english:"Linux Distros Unpatched Vulnerability : CVE-2024-45305");

  script_set_attribute(attribute:"synopsis", value:
"The Linux/Unix host has one or more packages installed with a vulnerability that the vendor indicates will not be
patched.");
  script_set_attribute(attribute:"description", value:
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied
patch available.

  - gix-path is a crate of the gitoxide project dealing with git paths and their conversions. `gix-path`
    executes `git` to find the path of a configuration file that belongs to the `git` installation itself, but
    mistakenly treats the local repository's configuration as system-wide if no higher scoped configuration is
    found. In rare cases, this causes a less trusted repository to be treated as more trusted, or leaks
    sensitive information from one repository to another, such as sending credentials to another repository's
    remote. In `gix_path::env`, the underlying implementation of the `installation_config` and
    `installation_config_prefix` functions calls `git config -l --show-origin` and parses the first line of
    the output to extract the path to the configuration file holding the configuration variable of highest
    scope. It is believed to be very difficult to exploit this vulnerability deliberately, due to the need
    either to anticipate a situation in which higher-scoped configuration variables would be absent, or to
    arrange for this to happen. Although any operating system may be affected, users running Apple Git on
    macOS are much less likely to be affected. This issue has been addressed in release version 0.10.10. All
    users are advised to upgrade. (CVE-2024-45305)

Note that Nessus relies on the presence of the package as reported by the vendor.");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/CVE-2024-45305");
  script_set_attribute(attribute:"solution", value:
"There is no known solution at this time.");
  script_set_attribute(attribute:"agent", value:"unix");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-45305");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_set_attribute(attribute:"vendor_unpatched", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2024/09/02");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/08/18");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:24.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:rust-gix-path");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2025 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info2.nasl", "set_linux_os_id.nasl");
  script_require_keys("Host/cpu", "Host/local_checks_enabled", "global_settings/vendor_unpatched", "Host/OS/identifier");
  script_require_ports("Host/OS/Ubuntu Linux-24.04");

  exit(0);
}

if (!get_kb_item("global_settings/vendor_unpatched")) exit(0, "Unpatched Vulnerabilities Detection not active.");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (empty_or_null(get_one_kb_item("Host/Debian/dpkg-l"))) audit(AUDIT_PACKAGE_LIST_MISSING);

include('linux_unpatched.inc');

var distro_constraints_array = {
  "Ubuntu Linux-24.04": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "24.04",
        "pkgs": [
          {"reference": "rust-gix-path"}
        ]
      }
    ]
  }
};

var distro_constraints_values = linux_unpatched::get_distro_constraints(distro_constraints_arr:distro_constraints_array);
if (empty_or_null(distro_constraints_values)) audit(AUDIT_HOST_NOT, 'affected');
var report = linux_unpatched::check_unpatched_constraints(distro_constraints_values:distro_constraints_values);

if (!empty_or_null(report))
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_WARNING,
      extra      : report
  );
  exit(0);
}
else
{
  audit(AUDIT_HOST_NOT, 'affected');
}

18 Aug 2025 00:00Current

5.4Medium risk

Vulners AI Score5.4

CVSS 3.12.5

EPSS0.00033

SSVC