Lucene search
K

38 matches found

Amazon
Amazon
added 2025/04/16 12:0 a.m.9 views

Important: git

Issue Overview: A flaw was found in the git fast-import command where it provides the export-marks feature that may unexpectedly overwrite arbitrary paths. An attacker can abuse this flaw if they can control the input passed to the fast-import command by using the export-marks feature and overwri...

9.8CVSS9.3AI score0.34007EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.295 views

RHEL 6 : git (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - git: cvsserver command injection CVE-2017-14867 - git: Heap overflow in git archive, git log --format...

8.8AI score0.88644EPSS
Exploits14References16
Tenable Nessus
Tenable Nessus
added 2023/02/23 12:0 a.m.46 views

Amazon Linux 2 : git (ALAS-2023-1943)

The version of git installed on the remote host is prior to 2.23.1-0. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-1943 advisory. A flaw was found in the git fast-import command where it provides the export-marks feature that may unexpectedly overwrite...

9.8CVSS8.6AI score0.34007EPSS
Exploits1References20
Tenable Nessus
Tenable Nessus
added 2023/01/23 12:0 a.m.45 views

RHEL 7 : rh-git218-git (RHSA-2020:0002)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:0002 advisory. Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a...

9.3CVSS7.8AI score0.34007EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.22 views

Mageia: Security Advisory (MGASA-2019-0391)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.8AI score0.25666EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.25 views

Mageia: Security Advisory (MGASA-2019-0393)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.7AI score0.34007EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2020:0045-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.5AI score0.34007EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2019:3311-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.34007EPSS
Exploits1References13
Tenable Nessus
Tenable Nessus
added 2020/05/04 12:0 a.m.44 views

openSUSE Security Update : git (openSUSE-2020-598)

This update for git fixes the following issues : Security issues fixed : - CVE-2020-11008: Specially crafted URLs may have tricked the credentials helper to providing credential information that is not appropriate for the protocol in use and host being contacted bsc1169936 git was updated to 2.26...

9.8CVSS8.4AI score0.97356EPSS
Exploits24References38
Tenable Nessus
Tenable Nessus
added 2020/05/01 12:0 a.m.46 views

EulerOS Virtualization for ARM 64 3.0.2.0 : git (EulerOS-SA-2020-1537)

According to the versions of the git packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - Arbitrary command execution is possible in Git before 2.20.2, 2.21.x before 2.21.1, 2.22.x before 2.22.2, 2.23.x before...

9.8CVSS8.6AI score0.34007EPSS
Exploits3References11
OpenVAS
OpenVAS
added 2020/04/01 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for git (EulerOS-SA-2020-1361)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.34007EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/03/20 12:0 a.m.30 views

GLSA-202003-42 : libgit2: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202003-42 libgit2: Multiple vulnerabilities Multiple vulnerabilities have been discovered in libgit2. Please review the CVE identifiers referenced below for details. Impact : An attacker could possibly overwrite arbitrary paths,...

9.3CVSS7.4AI score0.25666EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2020/02/24 12:0 a.m.40 views

Huawei EulerOS: Security Advisory for git (EulerOS-SA-2020-1101)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.34007EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/02/24 12:0 a.m.38 views

EulerOS 2.0 SP5 : git (EulerOS-SA-2020-1101)

According to the versions of the git packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Executio...

9.8CVSS8.1AI score0.34007EPSS
Exploits1References10
Apple
Apple
added 2020/02/03 9:54 a.m.41 views

About the security content of Xcode 11.2 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

7.8CVSS1.4AI score0.0098EPSS
Exploits0Affected Software2
Tenable Nessus
Tenable Nessus
added 2020/01/30 12:0 a.m.45 views

openSUSE Security Update : git (openSUSE-2020-123)

This update for git fixes the following issues : Security issues fixed : - CVE-2019-1349: Fixed issue on Windows, when submodules are cloned recursively, under certain circumstances Git could be fooled into using the same Git directory twice bsc1158787. - CVE-2019-19604: Fixed a recursive clone...

9.8CVSS7.7AI score0.34007EPSS
Exploits1References20
Tenable Nessus
Tenable Nessus
added 2020/01/28 12:0 a.m.50 views

RHEL 8 : git (RHSA-2020:0228)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:0228 advisory. Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a...

9.3CVSS7.8AI score0.34007EPSS
Exploits0References10
OSV
OSV
added 2020/01/24 10:15 p.m.4 views

ALPINE-CVE-2019-1348

An issue was found in Git before v2.24.1, v2.23.1, v2.22.2, v2.21.1, v2.20.2, v2.19.3, v2.18.2, v2.17.3, v2.16.6, v2.15.4, and v2.14.6. The --export-marks option of git fast-import is exposed also via the in-stream command feature export-marks=... and it allows overwriting arbitrary paths...

3.3CVSS7.2AI score0.00427EPSS
Exploits0References1
NVD
NVD
added 2020/01/24 10:15 p.m.19 views

CVE-2019-1348

An issue was found in Git before v2.24.1, v2.23.1, v2.22.2, v2.21.1, v2.20.2, v2.19.3, v2.18.2, v2.17.3, v2.16.6, v2.15.4, and v2.14.6. The --export-marks option of git fast-import is exposed also via the in-stream command feature export-marks=... and it allows overwriting arbitrary paths...

3.6CVSS6.6AI score0.00427EPSS
Exploits0References8
CVE
CVE
added 2020/01/24 9:14 p.m.264 views

CVE-2019-1348

CVE-2019-1348 affects Git prior to 2.24.1 (including 2.23.1, 2.22.2, 2.21.1, etc.). The root cause is that the --export-marks feature of git fast-import is exposed through the in-stream command export-marks=... mechanism, which can overwrite arbitrary paths. This creates a local-attack surface wh...

3.6CVSS6.7AI score0.00427EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder