openSUSE-SU-2021:0405-1
See a problem?- Import Source
- https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2021:0405-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/openSUSE-SU-2021:0405-1
- Related
- Published
- 2021-03-14T14:08:26Z
- Modified
- 2021-03-14T14:08:26Z
- Summary
- Security update for git
- Details
-
This update for git fixes the following issues:
- On case-insensitive filesystems, with support for symbolic links, if Git is configured globally to apply delay-capable clean/smudge filters (such as Git LFS), Git could be fooled into running remote code during a clone. (bsc#1183026, CVE-2021-21300)
This update was imported from the SUSE:SLE-15:Update update project.
- References
Affected packages
openSUSE:Leap 15.2 / git
Package
- Name
- git
- Purl
- purl:rpm/suse/git&distro=openSUSE%20Leap%2015.2
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.26.2-lp152.2.6.1
Ecosystem specific
{
"binaries": [
{
"git-core": "2.26.2-lp152.2.6.1",
"git-email": "2.26.2-lp152.2.6.1",
"git": "2.26.2-lp152.2.6.1",
"gitk": "2.26.2-lp152.2.6.1",
"git-credential-gnome-keyring": "2.26.2-lp152.2.6.1",
"git-daemon": "2.26.2-lp152.2.6.1",
"git-doc": "2.26.2-lp152.2.6.1",
"git-cvs": "2.26.2-lp152.2.6.1",
"git-arch": "2.26.2-lp152.2.6.1",
"git-web": "2.26.2-lp152.2.6.1",
"git-p4": "2.26.2-lp152.2.6.1",
"git-credential-libsecret": "2.26.2-lp152.2.6.1",
"git-svn": "2.26.2-lp152.2.6.1",
"git-gui": "2.26.2-lp152.2.6.1"
}
]
}