Wind River Support Network

HomeDefectsLIN6-15040
Fixed

LIN6-15040 : Security Advisory - git - CVE-2018-17456

Created: Oct 14, 2018    Updated: Mar 8, 2020
Resolved Date: Mar 12, 2019
Found In Version: 6.0.0.38
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Userspace

Description

Git before 2.14.5, 2.15.x before 2.15.3, 2.16.x before 2.16.5, 2.17.x before 2.17.2, 2.18.x before 2.18.1, and 2.19.x before 2.19.1 allows remote code execution during processing of a recursive git clone of a superproject if a .gitmodules file has a URL field beginning with a '-' character.

https://nvd.nist.gov/vuln/detail/CVE-2018-17456
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube