Lucene search
Copyright (C) 2024 Greenbone AGOPENVAS:1361412562310856281HistoryJul 10, 2024 - 12:00 a.m.
openSUSE: Security Advisory for git (SUSE-SU-2024:2277-1)
2024-07-1000:00:00
Copyright (C) 2024 Greenbone AG
plugins.openvas.org
9
opensuse leap
git package
security update
cve-2024-32002
cve-2024-32004
cve-2024-32020
cve-2024-32021
cve-2024-32465
package vulnerability
CVSS3
9
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
AI Score
7.3
Confidence
Low
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2024 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.856281");
script_version("2024-07-24T05:06:37+0000");
script_cve_id("CVE-2024-32002", "CVE-2024-32004", "CVE-2024-32020", "CVE-2024-32021", "CVE-2024-32465");
script_tag(name:"cvss_base", value:"7.6");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:H/Au:N/C:C/I:C/A:C");
script_tag(name:"last_modification", value:"2024-07-24 05:06:37 +0000 (Wed, 24 Jul 2024)");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2024-05-23 20:40:28 +0000 (Thu, 23 May 2024)");
script_tag(name:"creation_date", value:"2024-07-10 04:00:38 +0000 (Wed, 10 Jul 2024)");
script_name("openSUSE: Security Advisory for git (SUSE-SU-2024:2277-1)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2024 Greenbone AG");
script_family("SuSE Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/suse", "ssh/login/rpms", re:"ssh/login/release=openSUSELeap15\.6");
script_xref(name:"Advisory-ID", value:"SUSE-SU-2024:2277-1");
script_xref(name:"URL", value:"https://lists.opensuse.org/archives/list/[email protected]/thread/J5SWMTNXKDI77J6QUGRIVVB7X7AEOJNV");
script_tag(name:"summary", value:"The remote host is missing an update for the 'git'
package(s) announced via the SUSE-SU-2024:2277-1 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"This update for git fixes the following issues:
* CVE-2024-32002: Fix recursive clones on case-insensitive filesystems that
support symbolic links are susceptible to case confusion. (bsc#1224168)
* CVE-2024-32004: Fixed arbitrary code execution during local clones.
(bsc#1224170)
* CVE-2024-32020: Fix file overwriting vulnerability during local clones.
(bsc#1224171)
* CVE-2024-32021: Git may create hardlinks to arbitrary user-readable files.
(bsc#1224172)
* CVE-2024-32465: Fixed arbitrary code execution during clone operations.
(bsc#1224173)
##");
script_tag(name:"affected", value:"'git' package(s) on openSUSE Leap 15.6.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "openSUSELeap15.6") {
if(!isnull(res = isrpmvuln(pkg:"gitk", rpm:"gitk~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-email", rpm:"git-email~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-web", rpm:"git-web~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-core", rpm:"git-core~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-svn", rpm:"git-svn~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-arch", rpm:"git-arch~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-cvs", rpm:"git-cvs~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-gui", rpm:"git-gui~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-daemon-debuginfo", rpm:"git-daemon-debuginfo~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-debugsource", rpm:"git-debugsource~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-p4", rpm:"git-p4~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-daemon", rpm:"git-daemon~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-debuginfo", rpm:"git-debuginfo~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-core-debuginfo", rpm:"git-core-debuginfo~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"perl-Git", rpm:"perl-Git~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-credential-libsecret-debuginfo", rpm:"git-credential-libsecret-debuginfo~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-credential-libsecret", rpm:"git-credential-libsecret~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git", rpm:"git~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-doc", rpm:"git-doc~2.43.0~150600.3.3.1##", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"gitk", rpm:"gitk~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-email", rpm:"git-email~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-web", rpm:"git-web~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-core", rpm:"git-core~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-svn", rpm:"git-svn~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-arch", rpm:"git-arch~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-cvs", rpm:"git-cvs~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-gui", rpm:"git-gui~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-daemon-debuginfo", rpm:"git-daemon-debuginfo~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-debugsource", rpm:"git-debugsource~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-p4", rpm:"git-p4~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-daemon", rpm:"git-daemon~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-debuginfo", rpm:"git-debuginfo~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-core-debuginfo", rpm:"git-core-debuginfo~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"perl-Git", rpm:"perl-Git~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-credential-libsecret-debuginfo", rpm:"git-credential-libsecret-debuginfo~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-credential-libsecret", rpm:"git-credential-libsecret~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git", rpm:"git~2.43.0~150600.3.3.1", rls:"openSUSELeap15.6"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"git-doc", rpm:"git-doc~2.43.0~150600.3.3.1##", rls:"openSUSELeap15.6"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);Related
nessus
nessus
Oracle Linux 9 : git (ELSA-2024-4083)
2024-06-25 00:00:00
AlmaLinux 8 : git (ALSA-2024:4084)
2024-06-25 00:00:00
Rocky Linux 8 : git (RLSA-2024:4084)
2024-07-02 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0204)
2024-06-04 00:00:00
Huawei EulerOS: Security Advisory for git (EulerOS-SA-2024-1882)
2024-07-16 00:00:00
Slackware: Security Advisory (SSA:2024-136-02)
2024-05-16 00:00:00
osv
osv
Important: git security update
2024-07-02 14:10:24
Important: git security update
2024-06-25 00:00:00
git vulnerabilities
2024-05-28 13:39:27
almalinux
almalinux
Important: git security update
2024-06-25 00:00:00
Important: git security update
2024-06-25 00:00:00
ubuntu
ubuntu
Git vulnerabilities
2024-05-28 00:00:00
Git vulnerability
2024-06-18 00:00:00
rocky
rocky
git security update
2024-07-02 14:11:35
git security update
2024-07-02 14:10:24
kaspersky
kaspersky
KLA67449 Multiple vulnerabilities in Git for Windows
2024-05-14 00:00:00
KLA67403 Multiple vulnerabilities in Microsoft Developer Tools
2024-05-14 00:00:00
mageia
mageia
Updated git packages fix security vulnerabilities
2024-06-03 21:30:48
slackware
slackware
[slackware-security] git
2024-05-16 02:33:18
cloudfoundry
cloudfoundry
USN-6793-1: Git vulnerabilities | Cloud Foundry
2024-07-25 00:00:00
oraclelinux
oraclelinux
git security update
2024-06-25 00:00:00
git security update
2024-06-25 00:00:00
redhat
redhat
(RHSA-2024:4084) Important: git security update
2024-06-25 07:52:08
(RHSA-2024:4083) Important: git security update
2024-06-25 07:52:01
fedora
fedora
[SECURITY] Fedora 40 Update: git-2.45.1-1.fc40
2024-05-17 01:09:13
redos
redos
ROS-20240527-04
2024-05-27 00:00:00
ROS-20240529-03
2024-05-29 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2024-4.0-0611
2024-05-15 00:00:00
Critical Photon OS Security Update - PHSA-2024-5.0-0271
2024-05-15 00:00:00
Critical Photon OS Security Update - PHSA-2024-3.0-0761
2024-05-29 00:00:00
amazon
amazon
Important: git
2024-05-23 21:37:00
Important: git
2024-05-23 22:04:00
nvd
nvd
vulnrichment
vulnrichment
debiancve
debiancve
redhatcve
redhatcve
ubuntucve
ubuntucve
cve
cve
cvelist
cvelist
alpinelinux
alpinelinux
cbl_mariner
cbl_mariner
CVE-2024-32465 affecting package git for versions less than 2.45.2-1
2024-07-22 23:01:50
CVE-2024-32020 affecting package git for versions less than 2.45.2-1
2024-07-22 23:01:50
CVE-2024-32021 affecting package git for versions less than 2.39.4-1
2024-05-28 18:18:21
wolfi
wolfi
CVE-2024-32020 vulnerabilities
2024-09-16 09:11:42
CVE-2024-32465 vulnerabilities
2024-09-16 09:11:42
CVE-2024-32021 vulnerabilities
2024-09-16 09:11:42
mscve
mscve
githubexploit
githubexploit
Exploit for CVE-2024-32004
2024-05-20 14:59:16
Exploit for Unrestricted Upload of File with Dangerous Type in Git
2024-08-02 18:44:00
Exploit for Link Following in Git
2024-07-02 13:02:50
cloudlinux
cloudlinux
git: Fix of CVE-2024-32004
2024-09-06 20:50:55
ibm
ibm
Security Bulletin: Vulnerabilities in axios affect IBM Voice Gateway
2024-07-11 18:02:29
Security Bulletin: Multiple Vulnerabilities in IBM CloudPak for AIOps
2024-07-31 19:41:25
Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities
2024-07-31 12:54:26
CVSS3
9
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
AI Score
7.3
Confidence
Low
Related for OPENVAS:1361412562310856281