Lucene search
OracleLinuxELSA-2023-0611HistoryFeb 07, 2023 - 12:00 a.m.
git security update
2023-02-0700:00:00
linux.oracle.com
6
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
68.1%
[2.31.1-3]
- Fixes CVE-2022-23521 and CVE-2022-41903
- Tests: try harder to find open ports for apache, git, and svn
- Resolves: #2162069
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 9 | src | git | < 2.31.1-3.el9_1 | git-2.31.1-3.el9_1.src.rpm |
| oracle linux | 9 | aarch64 | git | < 2.31.1-3.el9_1 | git-2.31.1-3.el9_1.aarch64.rpm |
| oracle linux | 9 | noarch | git-all | < 2.31.1-3.el9_1 | git-all-2.31.1-3.el9_1.noarch.rpm |
| oracle linux | 9 | aarch64 | git-core | < 2.31.1-3.el9_1 | git-core-2.31.1-3.el9_1.aarch64.rpm |
| oracle linux | 9 | noarch | git-core-doc | < 2.31.1-3.el9_1 | git-core-doc-2.31.1-3.el9_1.noarch.rpm |
| oracle linux | 9 | aarch64 | git-credential-libsecret | < 2.31.1-3.el9_1 | git-credential-libsecret-2.31.1-3.el9_1.aarch64.rpm |
| oracle linux | 9 | aarch64 | git-daemon | < 2.31.1-3.el9_1 | git-daemon-2.31.1-3.el9_1.aarch64.rpm |
| oracle linux | 9 | noarch | git-email | < 2.31.1-3.el9_1 | git-email-2.31.1-3.el9_1.noarch.rpm |
| oracle linux | 9 | noarch | git-gui | < 2.31.1-3.el9_1 | git-gui-2.31.1-3.el9_1.noarch.rpm |
| oracle linux | 9 | noarch | git-instaweb | < 2.31.1-3.el9_1 | git-instaweb-2.31.1-3.el9_1.noarch.rpm |
Related
nessus
nessus
Debian DLA-3282-1 : git - LTS security update
2023-01-26 00:00:00
Fedora 37 : git (2023-9718cc6113)
2023-01-21 00:00:00
AlmaLinux 9 : git (ALSA-2023:0611)
2023-02-08 00:00:00
hivepro
hivepro
altlinux
altlinux
Security fix for the ALT Linux 10 package git version 2.33.6-alt1
2023-01-20 00:00:00
redhat
redhat
(RHSA-2023:0597) Important: rh-git227-git security update
2023-02-06 16:23:31
(RHSA-2023:0627) Important: git security update
2023-02-07 15:25:58
(RHSA-2023:0978) Important: git security update
2023-02-28 09:05:49
almalinux
almalinux
Important: git security update
2023-02-06 00:00:00
Important: git security update
2023-02-06 00:00:00
openvas
openvas
Fedora: Security Advisory for git (FEDORA-2023-9718cc6113)
2023-01-22 00:00:00
Ubuntu: Security Advisory (USN-5810-3)
2023-02-08 00:00:00
openSUSE: Security Advisory for git (SUSE-SU-2023:0110-1)
2024-03-04 00:00:00
cloudfoundry
cloudfoundry
USN-5810-2: Git regression | Cloud Foundry
2023-02-24 00:00:00
USN-5810-1: Git vulnerabilities | Cloud Foundry
2023-02-23 00:00:00
osv
osv
Important: git security update
2023-02-06 00:00:00
git vulnerabilities
2023-02-07 16:07:05
git - security update
2023-01-26 00:00:00
thn
thn
Git Users Urged to Update Software to Prevent Remote Code Execution Attacks
2023-01-18 09:28:00
Atlassian Releases Patches for Critical Flaws in Confluence and Bamboo
2023-07-25 04:17:00
slackware
slackware
[slackware-security] git
2023-01-18 06:22:27
rocky
rocky
git security update
2023-02-06 19:25:41
git security update
2023-02-06 19:26:44
oraclelinux
oraclelinux
git security update
2023-02-28 00:00:00
git security update
2023-02-07 00:00:00
centos
centos
emacs, git, gitk, gitweb, perl security update
2023-03-01 14:01:43
amazon
amazon
Important: git
2023-01-30 16:02:00
Important: git
2023-01-31 20:44:00
fedora
fedora
[SECURITY] Fedora 37 Update: git-2.39.1-1.fc37
2023-01-21 03:35:26
[SECURITY] Fedora 36 Update: git-2.39.1-1.fc36
2023-01-21 03:44:31
ubuntu
ubuntu
Git vulnerabilities
2023-03-01 00:00:00
Git vulnerabilities
2023-01-17 00:00:00
Git vulnerabilities
2023-02-07 00:00:00
debian
debian
[SECURITY] [DLA 3282-1] git security update
2023-01-26 13:00:35
[SECURITY] [DSA 5332-1] git security update
2023-01-29 16:59:53
rosalinux
rosalinux
Advisory ROSA-SA-2023-2130
2023-03-07 12:33:13
Advisory ROSA-SA-2024-2398
2024-04-11 08:08:00
redos
redos
ROS-20230418-03
2023-04-18 00:00:00
mageia
mageia
Updated git packages fix security vulnerability
2023-02-07 03:06:39
kaspersky
kaspersky
KLA20182 Multiple vulnerabilities in Git for Windows
2023-01-17 00:00:00
KLA20235 Multiple vulnerabilities in Microsoft Developer Tools
2023-02-14 00:00:00
github
github
Git security vulnerabilities announced
2023-01-17 18:31:50
malwarebytes
malwarebytes
Update now! Two critical flaws in Git's code found, patched
2023-01-19 04:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-3.0-0526
2023-02-03 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0327
2023-02-06 00:00:00
cgr
cgr
CVE-2022-23521 vulnerabilities
2024-04-28 09:06:10
CVE-2022-41903 vulnerabilities
2024-04-28 09:06:10
cve
cve
CVE-2022-41903
2023-01-17 23:15:15
CVE-2022-23521
2023-01-17 23:15:15
cbl_mariner
cbl_mariner
CVE-2022-41903 affecting package git 2.23.4-2
2023-02-14 02:36:00
CVE-2022-41903 affecting package git 2.33.4-1
2023-09-27 18:02:50
CVE-2022-23521 affecting package git 2.33.4-1
2023-09-27 18:02:50
debiancve
debiancve
CVE-2022-41903
2023-01-17 23:15:15
CVE-2022-23521
2023-01-17 23:15:15
veracode
veracode
Integer Overflow
2023-01-18 20:22:07
Remote Code Execution(RCE)
2023-01-20 20:06:05
freebsd
freebsd
git -- Heap overflow in `git archive`, `git log --format` leading to RCE
2023-01-17 00:00:00
git -- gitattributes parsing integer overflow
2023-01-17 00:00:00
redhatcve
redhatcve
CVE-2022-23521
2023-01-18 17:05:12
CVE-2022-41903
2023-02-06 20:54:43
ubuntucve
ubuntucve
CVE-2022-41903
2023-01-17 00:00:00
CVE-2022-23521
2023-01-17 00:00:00
ibm
ibm
Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to arbitrary code execution in Git [CVE-2022-41903]
2023-04-06 19:28:48
prion
prion
Integer overflow
2023-01-17 23:15:00
Integer overflow
2023-01-17 23:15:00
mscve
mscve
GitHub: CVE-2022-23521 gitattributes parsing integer overflow
2023-02-14 08:00:00
wolfi
wolfi
CVE-2022-41903 vulnerabilities
2024-04-28 09:06:10
CVE-2022-23521 vulnerabilities
2024-04-28 09:06:10
alpinelinux
alpinelinux
CVE-2022-41903
2023-01-17 23:15:15
CVE-2022-23521
2023-01-17 23:15:15
gentoo
gentoo
Git: Multiple Vulnerabilities
2023-12-27 00:00:00
cloudlinux
cloudlinux
git: Fix of 4 CVEs
2023-02-24 09:34:40
ics
ics
Siemens SCALANCE XCM-/XRM-300
2024-02-15 12:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
68.1%
Related for ELSA-2023-0611