Wind River Support Network

HomeDefectsLIN10-4785
Not to be fixed

LIN10-4785 : Security Advisory - git - CVE-2018-17456

Created: Oct 14, 2018    Updated: Dec 22, 2022
Resolved Date: Dec 22, 2022
Found In Version: 10.17.41.1
Severity: Standard
Applicable for: Wind River Linux LTS 17
Component/s: Userspace

Description

Git before 2.14.5, 2.15.x before 2.15.3, 2.16.x before 2.16.5, 2.17.x before 2.17.2, 2.18.x before 2.18.1, and 2.19.x before 2.19.1 allows remote code execution during processing of a recursive git clone of a superproject if a .gitmodules file has a URL field beginning with a '-' character.

https://nvd.nist.gov/vuln/detail/CVE-2018-17456

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube