Linux Distros Unpatched Vulnerability : CVE-2025-27613

🗓️ 15 Aug 2025 00:00:00Reported by TenableType

Gitk CVE-2025-27613 unpatched gitk may create writable files from untrusted repos;fixes in versions.

Reporter	Title	Published	Views	Family All 154
FreeBSD	git -- multiple vulnerabilities	11 Apr 202500:00	–	freebsd
Tenable Nessus	Amazon Linux 2023 : git, git-all, git-core (ALAS2023-2025-1108)	4 Aug 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2 : git (ALAS-2025-2941)	31 Jul 202500:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0122: git (ALINUX3-SA-2025:0122)	25 Jul 202500:00	–	nessus
Tenable Nessus	AlmaLinux 9 : git (ALSA-2025:11462)	23 Jul 202500:00	–	nessus
Tenable Nessus	AlmaLinux 10 : git (ALSA-2025:11533)	9 Oct 202500:00	–	nessus
Tenable Nessus	AlmaLinux 8 : git (ALSA-2025:11534)	23 Jul 202500:00	–	nessus
Tenable Nessus	Debian dla-4323 : git - security update	6 Oct 202500:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP11 : git (EulerOS-SA-2025-2192)	11 Oct 202500:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP11 : git (EulerOS-SA-2025-2224)	11 Oct 202500:00	–	nessus

Source	Link
security-tracker	www.security-tracker.debian.org/tracker/CVE-2025-27613
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(249801);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2025/10/08");

  script_cve_id("CVE-2025-27613");

  script_name(english:"Linux Distros Unpatched Vulnerability : CVE-2025-27613");

  script_set_attribute(attribute:"synopsis", value:
"The Linux/Unix host has one or more packages installed with a vulnerability that the vendor indicates will not be
patched.");
  script_set_attribute(attribute:"description", value:
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied
patch available.

  - Gitk is a Tcl/Tk based Git history browser. Starting with 1.7.0, when a user clones an untrusted
    repository and runs gitk without additional command arguments, files for which the user has write
    permission can be created and truncated. The option Support per-file encoding must have been enabled
    before in Gitk's Preferences. This option is disabled by default. The same happens when Show origin of
    this line is used in the main window (regardless of whether Support per-file encoding is enabled or not).
    This vulnerability is fixed in 2.43.7, 2.44.4, 2.45.4, 2.46.4, 2.47.3, 2.48.2, 2.49.1, and 2.50.1.
    (CVE-2025-27613)

Note that Nessus relies on the presence of the package as reported by the vendor.");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2025-27613");
  script_set_attribute(attribute:"solution", value:
"There is no known solution at this time.");
  script_set_attribute(attribute:"agent", value:"unix");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2025-27613");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_set_attribute(attribute:"vendor_unpatched", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2025/07/08");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/08/15");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:12.0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:git");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Misc.");

  script_copyright(english:"This script is Copyright (C) 2025 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info2.nasl", "set_linux_os_id.nasl");
  script_require_keys("Host/cpu", "Host/local_checks_enabled", "global_settings/vendor_unpatched", "Host/OS/identifier");
  script_require_ports("Host/OS/Debian Linux-12");

  exit(0);
}

if (!get_kb_item("global_settings/vendor_unpatched")) exit(0, "Unpatched Vulnerabilities Detection not active.");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (empty_or_null(get_one_kb_item("Host/Debian/dpkg-l"))) audit(AUDIT_PACKAGE_LIST_MISSING);

include('linux_unpatched.inc');

var distro_constraints_array = {
  "Debian Linux-12": {
    "package_manager": "dpkg-l",
    "constraints": [
      {
        "release": "12",
        "pkgs": [
          {"reference": "git"},
          {"reference": "git-all"},
          {"reference": "git-cvs"},
          {"reference": "git-daemon-run"},
          {"reference": "git-daemon-sysvinit"},
          {"reference": "git-doc"},
          {"reference": "git-email"},
          {"reference": "git-gui"},
          {"reference": "git-man"},
          {"reference": "git-mediawiki"},
          {"reference": "git-svn"},
          {"reference": "gitk"},
          {"reference": "gitweb"}
        ]
      }
    ]
  }
};

var distro_constraints_values = linux_unpatched::get_distro_constraints(distro_constraints_arr:distro_constraints_array);
if (empty_or_null(distro_constraints_values)) audit(AUDIT_HOST_NOT, 'affected');
var report = linux_unpatched::check_unpatched_constraints(distro_constraints_values:distro_constraints_values);

if (!empty_or_null(report))
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_NOTE,
      extra      : report
  );
  exit(0);
}
else
{
  audit(AUDIT_HOST_NOT, 'affected');
}

08 Oct 2025 00:00Current

6.8Medium risk

Vulners AI Score6.8

CVSS 3.13.6

EPSS0.00034

SSVC