Lucene search
K

21 matches found

OSV
OSV
added 2023/08/31 12:13 p.m.1 views

BELL-CVE-2018-11233 CVE-2018-11233 does not affect BellSoft software

Bulletin has no description...

7.5CVSS5.8AI score0.04309EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.32 views

Mageia: Security Advisory (MGASA-2018-0267)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.1AI score0.49188EPSS
Exploits10References4
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2018:1872-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.1AI score0.49188EPSS
Exploits10References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2018:1566-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.1AI score0.49188EPSS
Exploits10References5
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.29 views

Fedora 28 : git (2018-75f7624a9f)

Upstream security fixes related to .gitmodules handling. From the upstream announcement : - Submodule 'names' come from the untrusted .gitmodules file, but we blindly append them to $GITDIR/modules to create our on-disk repo paths. This means you can do bad things by putting '../' into the name. ...

7.8CVSS7.5AI score0.49188EPSS
Exploits10References3
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.36 views

SUSE SLED15 / SLES15 Security Update : git (SUSE-SU-2018:1872-1)

This update for git to version 2.16.4 fixes several issues. These security issues were fixed : - CVE-2018-11233: Path sanity-checks on NTFS allowed attackers to read arbitrary memory bsc1095218 - CVE-2018-11235: Arbitrary code execution when recursively cloning a malicious repository bsc1095219...

7.8CVSS8.2AI score0.49188EPSS
Exploits10References7
Tenable Nessus
Tenable Nessus
added 2018/10/22 12:0 a.m.35 views

SUSE SLES12 Security Update : git (SUSE-SU-2018:1566-2)

This update for git fixes several issues. These security issues were fixed : CVE-2018-11233: Path sanity-checks on NTFS allowed attackers to read arbitrary memory bsc1095218 CVE-2018-11235: Arbitrary code execution when recursively cloning a malicious repository bsc1095219 Note that Tenable Netwo...

7.8CVSS8AI score0.49188EPSS
Exploits10References7
Tenable Nessus
Tenable Nessus
added 2018/07/24 12:0 a.m.27 views

Photon OS update (deprecated)

An update of 'git' packages of Photon OS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-1.0-0145. The text itself is copyright C VMware, Inc...

0.1AI score0.49188EPSS
Exploits10References3
Cloud Foundry
Cloud Foundry
added 2018/06/14 12:0 a.m.49 views

USN-3671-1: Git vulnerabilities | Cloud Foundry

Severity High Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Description Etienne Stalmans discovered that git did not properly validate git submodules files. A remote attacker could possibly use this to craft a git repo that causes arbitrary code execution when “git clone...

7.8CVSS8.5AI score0.49188EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2018/06/12 12:0 a.m.42 views

Amazon Linux 2 : git (ALAS-2018-1035)

In Git before 2.13.7, 2.14.x before 2.14.4, 2.15.x before 2.15.2, 2.16.x before 2.16.4, and 2.17.x before 2.17.1, code to sanity-check pathnames on NTFS can result in reading out-of-bounds memory.CVE-2018-11233 In Git before 2.13.7, 2.14.x before 2.14.4, 2.15.x before 2.15.2, 2.16.x before 2.16.4...

7.8CVSS8AI score0.49188EPSS
Exploits10References3
Tenable Nessus
Tenable Nessus
added 2018/06/12 12:0 a.m.50 views

Amazon Linux AMI : git (ALAS-2018-1035)

In Git before 2.13.7, 2.14.x before 2.14.4, 2.15.x before 2.15.2, 2.16.x before 2.16.4, and 2.17.x before 2.17.1, code to sanity-check pathnames on NTFS can result in reading out-of-bounds memory.CVE-2018-11233 In Git before 2.13.7, 2.14.x before 2.14.4, 2.15.x before 2.15.2, 2.16.x before 2.16.4...

7.8CVSS8AI score0.49188EPSS
Exploits10References3
Amazon
Amazon
added 2018/06/08 12:0 a.m.36 views

Important: git

Issue Overview: In Git before 2.13.7, 2.14.x before 2.14.4, 2.15.x before 2.15.2, 2.16.x before 2.16.4, and 2.17.x before 2.17.1, code to sanity-check pathnames on NTFS can result in reading out-of-bounds memory.CVE-2018-11233 In Git before 2.13.7, 2.14.x before 2.14.4, 2.15.x before 2.15.2, 2.16...

7.8CVSS8.6AI score0.49188EPSS
Exploits10
OpenVAS
OpenVAS
added 2018/06/07 12:0 a.m.38 views

Ubuntu: Security Advisory (USN-3671-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.1AI score0.49188EPSS
Exploits10References2
Tenable Nessus
Tenable Nessus
added 2018/06/04 12:0 a.m.35 views

Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / 14.2 / current : git (SSA:2018-152-01)

New git packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2018-152-01. The text itself is copyright ...

7.8CVSS7.4AI score0.49188EPSS
Exploits10References3
Tenable Nessus
Tenable Nessus
added 2018/06/04 12:0 a.m.33 views

FreeBSD : Git -- Fix memory out-of-bounds and remote code execution vulnerabilities (CVE-2018-11233 and CVE-2018-11235) (c7a135f4-66a4-11e8-9e63-3085a9a47796)

The Git community reports : - In affected versions of Git, code to sanity-check pathnames on NTFS can result in reading out-of-bounds memory. - In affected versions of Git, remote code execution can occur. With a crafted .gitmodules file, a malicious project can execute an arbitrary script on a...

7.8CVSS8.3AI score0.49188EPSS
Exploits10References3
OSV
OSV
added 2018/06/03 11:2 a.m.10 views

MGASA-2018-0267 Updated git packages fix security vulnerabilities

It was possible to trick the code that sanity-checks paths on NTFS into reading random piece of memory CVE-2018-11233. Submodule "names" come from the untrusted .gitmodules file, but we blindly append them to $GITDIR/modules to create our on-disk repo paths. This means you can do bad things by...

7.8CVSS7.6AI score0.49188EPSS
Exploits10References3
OpenVAS
OpenVAS
added 2018/06/02 12:0 a.m.34 views

Fedora Update for git FEDORA-2018-080a3d7866

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.49188EPSS
Exploits10References2
Slackware Linux
Slackware Linux
added 2018/06/01 9:57 p.m.50 views

[slackware-security] git

New git packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/git-2.14.4-i586-1slack14.2.txz: Upgraded. This update fixes security issues: Submodule "names" come from...

7.8CVSS0.3AI score0.49188EPSS
Exploits10
OpenVAS
OpenVAS
added 2018/05/31 12:0 a.m.47 views

Git 2.13.x, 2.14.x, 2.15.x, 2.16.x, 2.17.x Multiple Vulnerabilities - Windows

Git is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description scriptoid"1.3.6.1.4.1.25623.1.0.113205...

7.5CVSS8.1AI score0.04309EPSS
Exploits0References3
CVE
CVE
added 2018/05/30 4:0 a.m.283 views

CVE-2018-11233

CVE-2018-11233 affects Git on NTFS pathname sanity checking, causing potential out-of-bounds reads. Affected: Git versions before 2.13.7, and 2.14.x/2.15.x/2.16.x/2.17.x before the listed patch levels. Impact: potential information disclosure and/or memory access concerns; no explicit exploitatio...

7.5CVSS7.5AI score0.04309EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder