Wind River Support Network

HomeDefectsLIN1019-3748
Fixed

LIN1019-3748 : Security Advisory - git - CVE-2019-19604

Created: Dec 10, 2019    Updated: Apr 22, 2022
Resolved Date: Mar 29, 2020
Found In Version: 10.19.45.1
Fix Version: 10.19.45.6
Severity: Standard
Applicable for: Wind River Linux LTS 19
Component/s: Userspace

Description

Arbitrary command execution is possible in Git before 2.20.2, 2.21.x before 2.21.1, 2.22.x before 2.22.2, 2.23.x before 2.23.1, and 2.24.x before 2.24.1 because a "git submodule update" operation can run commands found in the .gitmodules file of a malicious repository.

CREATE(Triage):(User=admin) CVE-2019-19604 (https://nvd.nist.gov/vuln/detail/CVE-2019-19604)

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube