ALT-PU-2016-1292-1
Closed vulnerabilities
Published: 2016-04-08
BDU:2016-02086
Уязвимость распределенной системы управления версиями Git, позволяющая нарушителю выполнить произвольный код
Severity: CRITICAL (10.0)
References:
Published: 2016-04-08
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2016-2324
Integer overflow in Git before 2.7.4 allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, which triggers a heap-based buffer overflow.
Severity: CRITICAL (9.8)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References:
- FEDORA-2016-8f164810c3
- FEDORA-2016-8f164810c3
- FEDORA-2016-6554eff611
- FEDORA-2016-6554eff611
- FEDORA-2016-cee7647200
- FEDORA-2016-cee7647200
- SUSE-SU-2016:0796
- SUSE-SU-2016:0796
- SUSE-SU-2016:0798
- SUSE-SU-2016:0798
- openSUSE-SU-2016:0802
- openSUSE-SU-2016:0802
- openSUSE-SU-2016:0803
- openSUSE-SU-2016:0803
- openSUSE-SU-2016:0826
- openSUSE-SU-2016:0826
- openSUSE-SU-2016:0829
- openSUSE-SU-2016:0829
- openSUSE-SU-2016:0831
- openSUSE-SU-2016:0831
- openSUSE-SU-2016:0832
- openSUSE-SU-2016:0832
- openSUSE-SU-2016:0958
- openSUSE-SU-2016:0958
- http://pastebin.com/UX2P2jjg
- http://pastebin.com/UX2P2jjg
- RHSA-2016:0496
- RHSA-2016:0496
- DSA-3521
- DSA-3521
- [oss-security] 20160315 server and client side remote code execution through a bu ffer overflow in all git versions before 2.7.1 (unpublished ᴄᴠᴇ-2016-2324 and ᴄᴠᴇ-2016-2315)
- [oss-security] 20160315 server and client side remote code execution through a bu ffer overflow in all git versions before 2.7.1 (unpublished ᴄᴠᴇ-2016-2324 and ᴄᴠᴇ-2016-2315)
- http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
- http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
- 84355
- 84355
- 1035290
- 1035290
- USN-2938-1
- USN-2938-1
- https://github.com/git/git/commit/de1e67d0703894cb6ea782e36abb63976ab07e60
- https://github.com/git/git/commit/de1e67d0703894cb6ea782e36abb63976ab07e60
- https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.7.4.txt
- https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.7.4.txt
- GLSA-201605-01
- GLSA-201605-01