Wind River Support Network

HomeDefectsLIN1018-5454
Fixed

LIN1018-5454 : Security Advisory - git - CVE-2019-1348

Created: Dec 11, 2019    Updated: Apr 22, 2022
Resolved Date: May 12, 2020
Found In Version: 10.18.44.1
Fix Version: 10.18.44.17
Severity: Standard
Applicable for: Wind River Linux LTS 18
Component/s: Userspace

Description

The --export-marks option of git fast-import is exposed also via the in-stream command feature export-marks=... and it allows overwriting arbitrary paths.

References:

https://kernel.googlesource.com/pub/scm/git/git/+/refs/tags/v2.24.1/Documentation/RelNotes/2.14.6.txt


CREATE(Triage):(User=admin) CVE-2019-1348 (https://nvd.nist.gov/vuln/detail/CVE-2019-1348)

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube