Lucene search
Redhat.comRH:CVE-2024-32020HistoryMay 15, 2024 - 12:25 a.m.
CVE-2024-32020
2024-05-1500:25:29
redhat.com
access.redhat.com
5
git
cloning
hardlinking
object database
security vulnerability
patch
A vulnerability was found in Git. This flaw allows an unauthenticated attacker to place a specialized repository on their target’s local system. For performance reasons, Git uses hardlinks when cloning a repository located on the same disk. However, if the repo being cloned is owned by a different user, this can introduce a security risk. At any time in the future, the original repo owner could rewrite the hardlinked files in the cloned user’s repo.
Mitigation
Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Related
osv
osv
BIT-git-2024-32020
2024-05-24 07:18:47
CVE-2024-32020
2024-05-14 19:15:12
git vulnerabilities
2024-05-28 13:39:27
cvelist
cvelist
debiancve
debiancve
CVE-2024-32020
2024-05-14 19:15:12
ubuntucve
ubuntucve
CVE-2024-32020
2024-05-14 00:00:00
cve
cve
CVE-2024-32020
2024-05-14 19:15:12
alpinelinux
alpinelinux
CVE-2024-32020
2024-05-14 19:15:12
wolfi
wolfi
CVE-2024-32020 vulnerabilities
2024-05-28 21:07:31
redos
redos
ROS-20240527-04
2024-05-27 00:00:00
fedora
fedora
[SECURITY] Fedora 40 Update: git-2.45.1-1.fc40
2024-05-17 01:09:13
openvas
openvas
Slackware: Security Advisory (SSA:2024-136-02)
2024-05-16 00:00:00
ubuntu
ubuntu
Git vulnerabilities
2024-05-28 00:00:00
slackware
slackware
[slackware-security] git
2024-05-16 02:33:18
nessus
nessus
Fedora 40 : git (2024-ecba8476e2)
2024-05-17 00:00:00