Fedora: Security Advisory for rubygem-git (FEDORA-2022-1aa40056fc)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for rubygem-git (FEDORA-2022-353e1cf8b6)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 34 Update: rubygem-git-1.11.0-1.fc34

Ruby/Git is a Ruby library that can be used to create, read and manipulate Git repositories by wrapping system calls to the git binary...

[SECURITY] Fedora 35 Update: rubygem-git-1.11.0-1.fc35

Ruby/Git is a Ruby library that can be used to create, read and manipulate Git repositories by wrapping system calls to the git binary...

[SECURITY] Fedora 36 Update: rubygem-git-1.11.0-1.fc36

Ruby/Git is a Ruby library that can be used to create, read and manipulate Git repositories by wrapping system calls to the git binary...

CVE-2022-25648

A flaw was found in ruby-git, where the package is vulnerable to command injection via the git argument. This flaw allows an attacker to set additional flags, which leads to performing command injections...

Command injection in ruby-git

The package prior to v1.11.0 is vulnerable to Command Injection via git argument injection. When calling the fetchremote = 'origin', opts = function, the remote parameter is passed to the git fetch subcommand in a way such that additional flags can be set. The additional flags can be used to...

GHSA-69P6-WVMQ-27GG Command injection in ruby-git

The package prior to v1.11.0 is vulnerable to Command Injection via git argument injection. When calling the fetchremote = 'origin', opts = function, the remote parameter is passed to the git fetch subcommand in a way such that additional flags can be set. The additional flags can be used to...

PT-2022-7288

Name of the Vulnerable Software and Affected Versions ruby-git versions prior to v1.13.0 Description The issue is related to incorrect code generation management in the Ruby/Git library, allowing a remote authenticated attacker to execute arbitrary Ruby code. This can be achieved by having a user...

PT-2022-7287

Name of the Vulnerable Software and Affected Versions ruby-git versions prior to v1.13.0 Description The issue is related to incorrect code generation management in the Ruby/Git library, allowing a remote authenticated attacker to execute arbitrary Ruby code. This can be achieved by having a user...