Lucene search
SuseOPENSUSE-SU-2017:2331-1HistorySep 02, 2017 - 6:07 p.m.
Security update for git (important)
2017-09-0218:07:39
lists.opensuse.org
166
0.599 Medium
EPSS
Percentile
97.5%
This update for git fixes the following issues:
- CVE-2017-1000117: A client side code execution via shell injection when
receiving special submodule strings from a malicious server was fixed
(bsc#1052481)
This update was imported from the SUSE:SLE-12:Update update project.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 42.2 | x86_64 | git-credential-gnome-keyring | < 2.12.3-5.10.1 | git-credential-gnome-keyring-2.12.3-5.10.1.x86_64.rpm |
| openSUSE Leap | 42.2 | x86_64 | git-web | < 2.12.3-5.10.1 | git-web-2.12.3-5.10.1.x86_64.rpm |
| openSUSE Leap | 42.2 | x86_64 | git-gui | < 2.12.3-5.10.1 | git-gui-2.12.3-5.10.1.x86_64.rpm |
| openSUSE Leap | 42.2 | x86_64 | gitk | < 2.12.3-5.10.1 | gitk-2.12.3-5.10.1.x86_64.rpm |
| openSUSE Leap | 42.2 | x86_64 | git-arch | < 2.12.3-5.10.1 | git-arch-2.12.3-5.10.1.x86_64.rpm |
| openSUSE Leap | 42.2 | x86_64 | git-cvs | < 2.12.3-5.10.1 | git-cvs-2.12.3-5.10.1.x86_64.rpm |
| openSUSE Leap | 42.2 | x86_64 | git-email | < 2.12.3-5.10.1 | git-email-2.12.3-5.10.1.x86_64.rpm |
| openSUSE Leap | 42.2 | x86_64 | git-core | < 2.12.3-5.10.1 | git-core-2.12.3-5.10.1.x86_64.rpm |
| openSUSE Leap | 42.2 | x86_64 | git-svn-debuginfo | < 2.12.3-5.10.1 | git-svn-debuginfo-2.12.3-5.10.1.x86_64.rpm |
| openSUSE Leap | 42.2 | x86_64 | git-core-debuginfo | < 2.12.3-5.10.1 | git-core-debuginfo-2.12.3-5.10.1.x86_64.rpm |
References
Related
suse
suse
Security update for git (important)
2017-08-17 00:08:53
Security update for git (important)
2017-08-21 18:07:57
Security update for git (important)
2017-09-01 03:10:54
fedora
fedora
[SECURITY] Fedora 25 Update: git-2.9.5-1.fc25
2017-08-14 00:56:27
[SECURITY] Fedora 26 Update: git-2.13.5-1.fc26
2017-08-13 20:56:31
nessus
nessus
Scientific Linux Security Update : git on SL6.x i386/x86_64 (20170817)
2017-08-18 00:00:00
CentOS 6 : git (CESA-2017:2485)
2017-08-18 00:00:00
Oracle Linux 7 : git (ELSA-2017-2484)
2017-08-17 00:00:00
osv
osv
CVE-2017-1000117
2017-10-05 01:29:04
git - security update
2017-08-27 00:00:00
git - security update
2017-08-10 00:00:00
centos
centos
emacs, git, gitk, gitweb, perl security update
2017-08-17 10:26:34
emacs, git, gitk, gitweb, perl security update
2017-08-24 09:43:50
alpinelinux
alpinelinux
CVE-2017-1000117
2017-10-05 01:29:00
openvas
openvas
Ubuntu: Security Advisory (USN-3387-1)
2017-08-11 00:00:00
Git Remote Code Execution Vulnerability - Windows
2017-08-17 00:00:00
CentOS Update for emacs-git CESA-2017:2485 centos6
2017-08-18 00:00:00
ubuntu
ubuntu
Git vulnerability
2017-08-11 00:00:00
redhat
redhat
(RHSA-2017:2485) Important: git security update
2017-08-16 21:46:48
(RHSA-2017:2484) Important: git security update
2017-08-16 21:46:19
(RHSA-2017:2491) Important: rh-git29-git security update
2017-08-17 21:33:27
checkpoint_advisories
checkpoint_advisories
Git ssh URL Processing Command Execution (CVE-2017-1000117)
2018-05-02 00:00:00
debian
debian
[SECURITY] [DSA 3934-1] git security update
2017-08-10 19:05:06
[SECURITY] [DLA 1068-1] git security update
2017-08-27 18:18:58
[SECURITY] [DSA 3934-1] git security update
2017-08-10 19:05:25
cloudfoundry
cloudfoundry
USN-3387-1: Git vulnerability | Cloud Foundry
2017-08-17 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2019-01-15 09:18:24
Arbitrary Command Execution
2017-10-30 00:47:04
slackware
slackware
[slackware-security] git
2017-08-11 23:10:53
mageia
mageia
Updated git packages fix security vulnerability
2017-08-14 01:19:29
prion
prion
Security feature bypass
2017-10-05 01:29:00
Code injection
2018-02-15 13:29:00
Sql injection
2017-08-20 20:29:00
packetstorm
packetstorm
Malicious GIT HTTP Server
2017-08-30 00:00:00
oraclelinux
oraclelinux
git security update
2017-08-17 00:00:00
git security update
2017-08-16 00:00:00
ubuntucve
ubuntucve
CVE-2017-1000117
2017-08-10 00:00:00
CVE-2017-12976
2017-08-20 00:00:00
CVE-2017-16228
2017-10-29 00:00:00
amazon
amazon
Important: git
2017-08-31 16:00:00
archlinux
archlinux
[ASA-201708-6] git: arbitrary command execution
2017-08-12 00:00:00
[ASA-201708-7] mercurial: multiple issues
2017-08-12 00:00:00
redhatcve
redhatcve
CVE-2017-1000117
2021-03-20 20:53:20
CVE-2017-16228
2017-11-03 14:19:26
CVE-2017-14176
2017-09-12 07:48:25
gentoo
gentoo
Git: Command injection
2017-09-17 00:00:00
debiancve
debiancve
CVE-2017-1000117
2017-10-05 01:29:00
CVE-2017-12976
2017-08-20 20:29:00
CVE-2017-16228
2017-10-29 20:29:00
cve
cve
CVE-2017-1000117
2017-10-05 01:29:00
CVE-2017-18087
2018-02-15 13:29:00
CVE-2017-12976
2017-08-20 20:29:00
metasploit
metasploit
Malicious Git HTTP Server For CVE-2017-1000117
2017-08-13 03:47:44
exploitdb
exploitdb
Git < 2.7.5 - Command Injection (Metasploit)
2017-08-31 00:00:00
atlassian
atlassian
ibm
ibm
Security Bulletin: Vulnerabilities in git affect PowerKVM
2018-06-18 01:38:04
hackerone
hackerone
Internet Bug Bounty: RCE via ssh:// URIs in multiple VCS
2017-08-14 20:53:18
myhack58
myhack58
freebsd
freebsd
Mercurial -- multiple vulnerabilities
2017-08-10 00:00:00
github
github
Dulwich RCE Vulnerability
2022-05-13 01:44:04
apple
apple
About the security content of Xcode 9 - Apple Support
2017-11-02 11:30:54
About the security content of Xcode 9
2017-09-19 00:00:00