SUSE-SU-2020:0991-1
See a problem?- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2020:0991-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2020:0991-1
- Related
- Published
- 2020-04-14T18:07:30Z
- Modified
- 2020-04-14T18:07:30Z
- Summary
- Security update for git
- Details
-
This update for git fixes the following issues:
- CVE-2020-5260: With a crafted URL that contains a newline in it, the credential helper machinery can be fooled to give credential information for a wrong host (bsc#1168930).
- References
Affected packages
SUSE:Linux Enterprise Module for Basesystem 15 SP1 / git
Package
- Name
- git
- Purl
- purl:rpm/suse/git&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1
SUSE:Linux Enterprise Module for Development Tools 15 SP1 / git
Package
- Name
- git
- Purl
- purl:rpm/suse/git&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.16.4-3.20.1
Ecosystem specific
{
"binaries": [
{
"git-email": "2.16.4-3.20.1",
"git": "2.16.4-3.20.1",
"git-svn": "2.16.4-3.20.1",
"gitk": "2.16.4-3.20.1",
"git-cvs": "2.16.4-3.20.1",
"git-daemon": "2.16.4-3.20.1",
"git-doc": "2.16.4-3.20.1",
"git-gui": "2.16.4-3.20.1",
"git-arch": "2.16.4-3.20.1",
"git-web": "2.16.4-3.20.1"
}
]
}
SUSE:Linux Enterprise High Performance Computing 15-ESPOS / git
Package
- Name
- git
- Purl
- purl:rpm/suse/git&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.16.4-3.20.1
Ecosystem specific
{
"binaries": [
{
"git-core": "2.16.4-3.20.1",
"git-email": "2.16.4-3.20.1",
"git": "2.16.4-3.20.1",
"git-svn": "2.16.4-3.20.1",
"gitk": "2.16.4-3.20.1",
"git-cvs": "2.16.4-3.20.1",
"git-daemon": "2.16.4-3.20.1",
"git-doc": "2.16.4-3.20.1",
"git-gui": "2.16.4-3.20.1",
"git-arch": "2.16.4-3.20.1",
"git-web": "2.16.4-3.20.1"
}
]
}
SUSE:Linux Enterprise High Performance Computing 15-LTSS / git
Package
- Name
- git
- Purl
- purl:rpm/suse/git&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.16.4-3.20.1
Ecosystem specific
{
"binaries": [
{
"git-core": "2.16.4-3.20.1",
"git-email": "2.16.4-3.20.1",
"git": "2.16.4-3.20.1",
"git-svn": "2.16.4-3.20.1",
"gitk": "2.16.4-3.20.1",
"git-cvs": "2.16.4-3.20.1",
"git-daemon": "2.16.4-3.20.1",
"git-doc": "2.16.4-3.20.1",
"git-gui": "2.16.4-3.20.1",
"git-arch": "2.16.4-3.20.1",
"git-web": "2.16.4-3.20.1"
}
]
}
SUSE:Linux Enterprise Server 15-LTSS / git
Package
- Name
- git
- Purl
- purl:rpm/suse/git&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.16.4-3.20.1
Ecosystem specific
{
"binaries": [
{
"git-core": "2.16.4-3.20.1",
"git-email": "2.16.4-3.20.1",
"git": "2.16.4-3.20.1",
"git-svn": "2.16.4-3.20.1",
"gitk": "2.16.4-3.20.1",
"git-cvs": "2.16.4-3.20.1",
"git-daemon": "2.16.4-3.20.1",
"git-doc": "2.16.4-3.20.1",
"git-gui": "2.16.4-3.20.1",
"git-arch": "2.16.4-3.20.1",
"git-web": "2.16.4-3.20.1"
}
]
}
SUSE:Linux Enterprise Server for SAP Applications 15 / git
Package
- Name
- git
- Purl
- purl:rpm/suse/git&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.16.4-3.20.1
Ecosystem specific
{
"binaries": [
{
"git-core": "2.16.4-3.20.1",
"git-email": "2.16.4-3.20.1",
"git": "2.16.4-3.20.1",
"git-svn": "2.16.4-3.20.1",
"gitk": "2.16.4-3.20.1",
"git-cvs": "2.16.4-3.20.1",
"git-daemon": "2.16.4-3.20.1",
"git-doc": "2.16.4-3.20.1",
"git-gui": "2.16.4-3.20.1",
"git-arch": "2.16.4-3.20.1",
"git-web": "2.16.4-3.20.1"
}
]
}