Lucene search
GoogleOSV:GHSA-4G4P-42WC-9F3MHistoryFeb 11, 2022 - 11:39 p.m.
Git LFS can execute a Git binary from the current directory
2022-02-1123:39:18
Google
osv.dev
17
git lfs
windows
malicious repository
arbitrary code
patch
security advisory
EPSS
0.954
Percentile
99.4%
Impact
On Windows, if Git LFS operates on a malicious repository with a git.bat or git.exe file in the current directory, that program would be executed, permitting the attacker to execute arbitrary code. This does not affect Unix systems.
This occurs because on Windows, Go includes (and prefers) the current directory when the name of a command run does not contain a directory separator.
Patches
This version should be patched in v2.12.1, which will be released in coordination with this security advisory.
Workarounds
Other than avoiding untrusted repositories, there is no workaround.
For more information
If you have any questions or comments about this advisory:
- Start a discussion in the Git LFS discussion page.
- If you cannot open a discussion, please email the core team using their usernames at
github.com.
Related
githubexploit
githubexploit
ubuntucve
ubuntucve
CVE-2020-27955
2020-11-05 00:00:00
CVE-2021-21237
2021-01-15 00:00:00
zdt
zdt
Git git-lfs Remote Code Execution Exploit
2021-09-17 00:00:00
git-lfs Remote Code Execution Exploit
2020-11-08 00:00:00
cve
cve
CVE-2020-27955
2020-11-05 15:15:36
CVE-2021-21237
2021-01-15 18:15:15
nvd
nvd
CVE-2020-27955
2020-11-05 15:15:36
CVE-2021-21237
2021-01-15 18:15:15
packetstorm
packetstorm
git-lfs Remote Code Execution
2020-11-06 00:00:00
Git git-lfs Remote Code Execution
2021-09-16 00:00:00
atlassian
atlassian
Git LFS on Windows vulnerable to remote code execution (CVE-2020-27955)
2021-03-26 17:02:11
Git LFS on Windows vulnerable to remote code execution (CVE-2020-27955)
2021-03-26 17:02:11
RCE via git-lfs in Sourcetree for Windows - CVE-2020-27955
2021-01-07 17:07:10
cvelist
cvelist
CVE-2020-27955
2020-11-05 14:57:36
metasploit
metasploit
Git Remote Code Execution via git-lfs (CVE-2020-27955)
2021-09-03 21:15:38
debiancve
debiancve
CVE-2020-27955
2020-11-05 15:15:36
CVE-2021-21237
2021-01-15 18:15:15
alpinelinux
alpinelinux
CVE-2020-27955
2020-11-05 15:15:36
prion
prion
Remote code execution
2020-11-05 15:15:00
Directory traversal
2021-01-15 18:15:00
checkpoint_advisories
checkpoint_advisories
Git LFS Remote Code Execution (CVE-2020-27955)
2020-11-28 00:00:00
osv
osv
CVE-2020-27955
2020-11-05 15:15:36
BIT-git-lfs-2020-27955
2024-03-06 10:52:29
Git LFS can execute a Git binary from the current directory on Windows
2022-02-15 00:30:37
veracode
veracode
Remote Code Execution (RCE)
2022-02-14 09:57:20
github
github
Git LFS can execute a Git binary from the current directory
2022-02-11 23:39:18
Git LFS can execute a Git binary from the current directory on Windows
2022-02-15 00:30:37
nessus
nessus
Photon OS 4.0: Git PHSA-2023-4.0-0426
2024-07-24 00:00:00
rapid7blog
rapid7blog
Metasploit Wrap-Up
2021-09-17 19:59:18
photon
photon
Critical Photon OS Security Update - PHSA-2023-4.0-0426
2023-07-13 00:00:00