Project

General

Profile

Bug #9511

Git RCE vulnerability regarding submodules (CVE-2018-17456)

Added by Kevin Daudt 8 months ago. Updated 18 days ago.

Status:
Resolved
Priority:
Normal
Assignee:
Category:
Aports
Target version:
-
Start date:
10/07/2018
Due date:
% Done:

100%

Estimated time:
(Total: 0.00 h)
Affected versions:
Security IDs:

Description

Git before 2.14.5, 2.15.x before 2.15.3, 2.16.x before 2.16.5, 2.17.x before 2.17.2, 2.18.x before 2.18.1, and 2.19.x before 2.19.1 allows remote code execution during processing of a recursive "git clone" of a superproject if a .gitmodules file has a URL field beginning with a '-' character.


Subtasks

Bug #9541: [3.8] Git RCE vulnerability regarding submodules (CVE-2018-17456)ClosedNatanael Copa

Bug #9542: [3.7] Git RCE vulnerability regarding submodules (CVE-2018-17456)ClosedNatanael Copa

Bug #9543: [3.6] Git RCE vulnerability regarding submodules (CVE-2018-17456)ClosedNatanael Copa

Bug #9544: [3.5] Git RCE vulnerability regarding submodules (CVE-2018-17456)ClosedNatanael Copa

Associated revisions

Revision 8c7a4f5f (diff)
Added by prs pkt 8 months ago

main/git: security upgrade to 2.19.1

ref #9511

History

#1 Updated by Kevin Daudt 8 months ago

  • Subject changed from Update git to latest versions (CVE-2018-17456) to Git RCE vulnerability regarding submodules (CVE-2018-17456)

#2 Updated by Rasmus Thomsen 18 days ago

  • Status changed from New to Resolved

Also available in: Atom PDF