GLSA
Advocate
Joined: 12 May 2004
Posts: 2663
|
 Posted: Wed May 30, 2018 2:26 am Post subject: [ GLSA 201805-13 ] Git |
 |
|
Gentoo Linux Security Advisory
Title: Git: Multiple vulnerabilities (GLSA 201805-13)
Severity: high
Exploitable: remote
Date: 2018-05-30
Bug(s): #656868
ID: 201805-13
Synopsis
Git contains multiple vulnerabilities that allow for the remote
execution of arbitrary code.
Background
Git is a free and open source distributed version control system
designed to handle everything from small to very large projects with
speed and efficiency.
Affected Packages
Package: dev-vcs/git
Vulnerable: < 2.16.4
Unaffected: >= 2.16.4
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in Git. Please review the
CVE identifiers referenced below for details.
Impact
Remote attackers could execute arbitrary code on both client and server.
Workaround
There is no known workaround at this time.
Resolution
All Git users should upgrade to the latest version: | Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=dev-vcs/git-2.16.4"
|
References
CVE-2018-11233
CVE-2018-11235 |
|
News & Announcements
