Wind River Support Network

HomeDefectsLIN1025-2494
Fixed

LIN1025-2494 : Security Advisory - git - CVE-2025-46334

Created: Jul 8, 2025    Updated: Sep 21, 2025
Resolved Date: Aug 13, 2025
Found In Version: 10.25.33.1
Fix Version: 10.25.33.1
Severity: Standard
Applicable for: Wind River Linux LTS 25
Component/s: Userspace

Description

A malicious repository can ship versions of sh.exe or typical textconv filter programs such as astextplain. On Windows, path lookup can find such executables in the worktree. These programs are invoked when the user selects “Git Bash” or “Browse Files” from the menu.

CREATE(Triage):(User=admin) CVE-2025-46334 (https://nvd.nist.gov/vuln/detail/CVE-2025-46334)
  • Linkedin
  • Facebook
  • Twitter
  • Youtube