CVE-2022-23521

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2022-23521
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-23521.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-23521
Aliases
  • GHSA-c738-c5qq-xg89
Downstream
Related
Published
2023-01-17T22:17:17.765Z
Modified
2026-02-21T01:32:23.128422Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
gitattributes parsing integer overflow in git
Details

Git is distributed revision control system. gitattributes are a mechanism to allow defining attributes for paths. These attributes can be defined by adding a .gitattributes file to the repository, which contains a set of file patterns and the attributes that should be set for paths matching this pattern. When parsing gitattributes, multiple integer overflows can occur when there is a huge number of path patterns, a huge number of attributes for a single pattern, or when the declared attribute names are huge. These overflows can be triggered via a crafted .gitattributes file that may be part of the commit history. Git silently splits lines longer than 2KB when parsing gitattributes from a file, but not when parsing them from the index. Consequentially, the failure mode depends on whether the file exists in the working tree, the index or both. This integer overflow can result in arbitrary heap reads and writes, which may result in remote code execution. The problem has been patched in the versions published on 2023-01-17, going back to v2.30.7. Users are advised to upgrade. There are no known workarounds for this issue.

Database specific 
{
    "cna_assigner": "GitHub_M",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/23xxx/CVE-2022-23521.json",
    "cwe_ids": [
        "CWE-190"
    ]
}
References

Affected packages

Git / github.com/git-for-windows/git

Affected ranges

Type
GIT
Repo
https://github.com/git-for-windows/git
Events
Introduced
853373155dce195a91e6e41a58c8b8e5c5a94652
Last affected
2d2fc8ce733f75f497faabab85c273658c9a5f81

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-23521.json"

Git / github.com/git/git

Affected ranges

Type
GIT
Repo
https://github.com/git/git
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
abd4d67ab0f84fff703fa14d9eebfd287b42daeb
Introduced
225bc32a989d7a22fa6addafd4ce7dcd04675dbf
Last affected
7800e1dccf622ba8d490b4c1c92af734be6242ff
Introduced
3dcec76d9df911ed8321007b1d197c1a206dc164
Last affected
8706a59933d09354c5e3eb09a543453655a97183
Introduced
6cd33dceed60949e2dbc32e3f0f5e67c4c882e1e
Last affected
fcdaa211e6127eeba69a121844e08aec67da2131
Introduced
89bece5c8c96f0b962cfc89e63f82d603fd60bed
Last affected
868154bb1c08a547afaf74ed8bafdf9bf55d1fd5
Introduced
a5828ae6b52137b913b978e16cd2334482eb4c1f
Last affected
ecf9b4a443ecd2c7dc759e5d18f226694bc3eced
Introduced
cd3e606211bb1cf8bc57f7d76bab98cc17a150bc
Last affected
be85cfc4dbef9ffa177770f8607fd4a85445565e
Introduced
e4a4b31577c7419497ac30cebe30d755b97752c5
Last affected
83d5e3341b69b3116675f13d2fab208a12c79e27
Introduced
ebf3c04b262aa27fbb97f8a0156c2347fecafafb
Last affected
af778cd9be6307e34f9f900fd42eb826c65b32da

Affected versions

v2.*
v2.30.3
v2.30.4
v2.30.5
v2.30.6
v2.33.0

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-23521.json"