CVE-2022-24975

2022-02-1120:15:00

Alpine Linux Development Team

security.alpinelinux.org

git

information disclosure

security risk

clone operation

documentation

cve-2022-24975

unix

EPSS

0.002

Percentile

53.9%

JSON

The --mirror documentation for Git through 2.35.1 does not mention the availability of deleted content, aka the “GitBleed” issue. This could present a security risk if information-disclosure auditing processes rely on a clone operation without the --mirror option.

OSVersionArchitecturePackageVersionFilename
Alpine3.12-mainnoarchgit= 2.26.3-r1UNKNOWN
Alpine3.15-mainnoarchgit= 2.34.4-r0UNKNOWN
Alpine3.14-mainnoarchgit= 2.32.3-r0UNKNOWN
Alpine3.13-mainnoarchgit= 2.30.5-r0UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Alpine	3.12-main	noarch	git	= 2.26.3-r1	UNKNOWN
Alpine	3.15-main	noarch	git	= 2.34.4-r0	UNKNOWN
Alpine	3.14-main	noarch	git	= 2.32.3-r0	UNKNOWN
Alpine	3.13-main	noarch	git	= 2.30.5-r0	UNKNOWN

EPSS

0.002

Percentile

53.9%

JSON

Related for ALPINE:CVE-2022-24975