SUSE-SU-2018:4088-3
See a problem?- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2018:4088-3.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2018:4088-3
- Related
- Published
- 2019-10-03T08:38:07Z
- Modified
- 2019-10-03T08:38:07Z
- Summary
- Security update for git
- Details
-
This update for git fixes the following issue:
- CVE-2018-17456: Git allowed remote code execution during processing of a recursive 'git clone' of a superproject if a .gitmodules file has a URL field beginning with a '-' character. (boo#1110949).
- References
Affected packages
SUSE:Linux Enterprise Software Development Kit 12 SP4 / git
Package
- Name
- git
- Purl
- purl:rpm/suse/git&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP4
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.12.3-27.17.2
Ecosystem specific
{
"binaries": [
{
"git-core": "2.12.3-27.17.2",
"git-email": "2.12.3-27.17.2",
"git": "2.12.3-27.17.2",
"git-svn": "2.12.3-27.17.2",
"gitk": "2.12.3-27.17.2",
"git-cvs": "2.12.3-27.17.2",
"git-daemon": "2.12.3-27.17.2",
"git-doc": "2.12.3-27.17.2",
"git-gui": "2.12.3-27.17.2",
"git-arch": "2.12.3-27.17.2",
"git-web": "2.12.3-27.17.2"
}
]
}
SUSE:Linux Enterprise Server 12 SP4 / git
Package
- Name
- git
- Purl
- purl:rpm/suse/git&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4