Wind River Support Network

HomeDefectsLIN9-9442
Fixed

LIN9-9442 : Security Advisory - git - CVE-2019-1348

Created: Dec 11, 2019    Updated: Apr 22, 2022
Resolved Date: Jun 3, 2020
Found In Version: 9.0.0.1
Fix Version: 9.0.0.25
Severity: Standard
Applicable for: Wind River Linux 9
Component/s: Userspace

Description

The --export-marks option of git fast-import is exposed also via the in-stream command feature export-marks=... and it allows overwriting arbitrary paths.

References:

https://kernel.googlesource.com/pub/scm/git/git/+/refs/tags/v2.24.1/Documentation/RelNotes/2.14.6.txt


CREATE(Triage):(User=admin) CVE-2019-1348 (https://nvd.nist.gov/vuln/detail/CVE-2019-1348)

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube