SUSE-SU-2022:3931-1
- Source
- https://www.suse.com/support/update/announcement/2022/suse-su-20223931-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:3931-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2022:3931-1
- Upstream
- Related
- Published
- 2022-11-10T10:26:32Z
- Modified
- 2025-05-02T04:33:32.478511Z
- Summary
- Security update for git
- Details
-
This update for git fixes the following issues:
- CVE-2022-39260: Fixed overflow in split_cmdline() (bsc#1204456).
- CVE-2022-39253: Fixed dereference issue with symbolic links via the
--localclone mechanism (bsc#1204455).
- References
Affected packages
openSUSE:Leap 15.3
git
Package
- Name
- git
- Purl
- pkg:rpm/opensuse/git&distro=openSUSE%20Leap%2015.3
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.35.3-150300.10.18.1
Ecosystem specific
{
"binaries": [
{
"git": "2.35.3-150300.10.18.1",
"git-gui": "2.35.3-150300.10.18.1",
"git-doc": "2.35.3-150300.10.18.1",
"git-core": "2.35.3-150300.10.18.1",
"git-credential-gnome-keyring": "2.35.3-150300.10.18.1",
"git-daemon": "2.35.3-150300.10.18.1",
"git-email": "2.35.3-150300.10.18.1",
"git-arch": "2.35.3-150300.10.18.1",
"perl-Git": "2.35.3-150300.10.18.1",
"git-p4": "2.35.3-150300.10.18.1",
"git-svn": "2.35.3-150300.10.18.1",
"git-web": "2.35.3-150300.10.18.1",
"gitk": "2.35.3-150300.10.18.1",
"git-cvs": "2.35.3-150300.10.18.1",
"git-credential-libsecret": "2.35.3-150300.10.18.1"
}
]
}openSUSE:Leap 15.4
git
Package
- Name
- git
- Purl
- pkg:rpm/opensuse/git&distro=openSUSE%20Leap%2015.4
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.35.3-150300.10.18.1
Ecosystem specific
{
"binaries": [
{
"git": "2.35.3-150300.10.18.1",
"git-gui": "2.35.3-150300.10.18.1",
"git-doc": "2.35.3-150300.10.18.1",
"git-core": "2.35.3-150300.10.18.1",
"git-credential-gnome-keyring": "2.35.3-150300.10.18.1",
"git-daemon": "2.35.3-150300.10.18.1",
"git-email": "2.35.3-150300.10.18.1",
"git-arch": "2.35.3-150300.10.18.1",
"perl-Git": "2.35.3-150300.10.18.1",
"git-p4": "2.35.3-150300.10.18.1",
"git-svn": "2.35.3-150300.10.18.1",
"git-web": "2.35.3-150300.10.18.1",
"gitk": "2.35.3-150300.10.18.1",
"git-cvs": "2.35.3-150300.10.18.1",
"git-credential-libsecret": "2.35.3-150300.10.18.1"
}
]
}SUSE:Linux Enterprise Module for Basesystem 15 SP3
git
SUSE:Linux Enterprise Module for Basesystem 15 SP4
git
SUSE:Linux Enterprise Module for Development Tools 15 SP3
git
Package
- Name
- git
- Purl
- pkg:rpm/suse/git&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP3
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.35.3-150300.10.18.1
Ecosystem specific
{
"binaries": [
{
"git": "2.35.3-150300.10.18.1",
"git-doc": "2.35.3-150300.10.18.1",
"git-gui": "2.35.3-150300.10.18.1",
"git-svn": "2.35.3-150300.10.18.1",
"git-web": "2.35.3-150300.10.18.1",
"gitk": "2.35.3-150300.10.18.1",
"git-cvs": "2.35.3-150300.10.18.1",
"git-daemon": "2.35.3-150300.10.18.1",
"git-email": "2.35.3-150300.10.18.1",
"git-arch": "2.35.3-150300.10.18.1"
}
]
}SUSE:Linux Enterprise Module for Development Tools 15 SP4
git
Package
- Name
- git
- Purl
- pkg:rpm/suse/git&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP4
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.35.3-150300.10.18.1
Ecosystem specific
{
"binaries": [
{
"git": "2.35.3-150300.10.18.1",
"git-daemon": "2.35.3-150300.10.18.1",
"git-doc": "2.35.3-150300.10.18.1",
"git-gui": "2.35.3-150300.10.18.1",
"git-svn": "2.35.3-150300.10.18.1",
"git-web": "2.35.3-150300.10.18.1",
"gitk": "2.35.3-150300.10.18.1",
"git-cvs": "2.35.3-150300.10.18.1",
"git-email": "2.35.3-150300.10.18.1",
"perl-Git": "2.35.3-150300.10.18.1",
"git-arch": "2.35.3-150300.10.18.1"
}
]
}