17 matches found
CVE-2015-7545
creationtimestamp| type| source ---|---|--- 2025-03-25 14:25:18+00:00| seen| https://gist.github.com/GokilaSundar/1679c554e14e01bae055aadf83cc46f9...
Oracle Linux 6 / 7 : git19-git (ELSA-2015-2515)
The remote Oracle Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2015-2515 advisory. 1.9.4-3.1 - fix arbitrary code execution via crafted URLs Resolves: 1273889 1.9.4-3 - fix CVE-2014-9390 Resolves: rhbz1220552 Tenable has extracted the...
Security Bulletin: A vulnerability in git affects PowerKVM (CVE-2015-7545)
Summary PowerKVM is affected by a vulnerability in git. This vulnerability is now fixed. Vulnerability Details CVEID: CVE-2015-7545 DESCRIPTION: GIT could allow a remote attacker to execute arbitrary commands on the system, caused by the failure to properly handle recursive clones of git...
Gentoo Security Advisory GLSA 201605-01
Gentoo Linux Local Security Checks GLSA 201605-01 SPDX-FileCopyrightText: 2016 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
mercurial: arbitrary code execution
Mercurial prior to 3.8 allowed arbitrary code execution when using the convert extension on Git repos with hostile names. This could affect automated code conversion services that allow arbitrary repository names. This is a further side-effect of Git CVE-2015-7545. Reported and fixed by Blake...
CVE-2015-7545
The 1 git-remote-ext and 2 unspecified other remote helper programs in Git before 2.3.10, 2.4.x before 2.4.10, 2.5.x before 2.5.4, and 2.6.x before 2.6.1 do not properly restrict the allowed protocols, which might allow remote attackers to execute arbitrary code via a URL in a a .gitmodules file ...
CVE-2015-7545
The CVE-2015-7545 issue affects Git’s remote helpers (notably git-remote-ext) and other remote helpers. Git prior to 2.3.10, 2.4.x prior to 2.4.10, 2.5.x prior to 2.5.4, and 2.6.x prior to 2.6.1 do not properly restrict allowed protocols, which could let remote attackers execute arbitrary code vi...
[SECURITY] [DSA 3435-1] git security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3435-1 [email protected] https://www.debian.org/security/ Laszlo Boszormenyi GCS January 05, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3435-1] git security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3435-1 [email protected] https://www.debian.org/security/ Laszlo Boszormenyi GCS January 05, 2016 https://www.debian.org/security/faq -...
Debian Security Advisory DSA 3435-1 (git - security update)
Blake Burkhart discovered that the Git git-remote-ext helper incorrectly handled recursive clones of git repositories. A remote attacker could possibly use this issue to execute arbitrary code by injecting commands via crafted URLs. OpenVAS Vulnerability Test $Id: deb3435.nasl 6608 2017-07-07...
SUSE SLES12 Security Update : Recommended update for git (SUSE-SU-2015:2325-1)
The git package was updated to fix the following security issue : - CVE-2015-7545: Fix remote code execution with recursive fetch of submodules bsc948969. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempt...
SUSE-SU-2015:2025-1 Recommended update for git
The git package was updated to fix the following security issue: - CVE-2015-7545: Fix remote code execution with recursive fetch of submodules bsc948969...
SUSE-SU-2015:2325-1 Recommended update for git
The git package was updated to fix the following security issue: - CVE-2015-7545: Fix remote code execution with recursive fetch of submodules bsc948969...
Medium: git
Issue Overview: A flaw was found in the way the git-remote-ext helper processed certain URLs. If a user had Git configured to automatically clone submodules from untrusted repositories, an attacker could inject commands into the URL of a submodule, allowing them to execute arbitrary code on the...
Square Open Source: git-fastclone allows arbitrary command execution through usage of ext remote URLs in submodules
I recently discovered a security vulnerability in git that also affects other programs that manually reimplement submodule-like operations. The recent security update to git0 concerning git-remote-ext URLs in submodules affects git-fastclone similarly. This bug was patched in Git v2.6.1, v2.5.4,...
Oracle Linux 7 : git (ELSA-2015-2561)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2015-2561 advisory. 1.8.3.1-6 - fix arbitrary code execution via crafted URLs Resolves: 1274737 Tenable has extracted the preceding description block directly from the Oracle Linux...
RedHat Update for git RHSA-2015:2561-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...