Lucene search
Redhat.comRH:CVE-2019-1348HistoryDec 11, 2019 - 12:21 a.m.
CVE-2019-1348
2019-12-1100:21:07
redhat.com
access.redhat.com
7
0.0005 Low
EPSS
Percentile
17.2%
A flaw was found in the git fast-import command where it provides the export-marks feature that may unexpectedly overwrite arbitrary paths. An attacker can abuse this flaw if they can control the input passed to the fast-import command by using the export-marks feature and overwrite arbitrary files, but would not have complete control on the content of the file.
Mitigation
Avoid running git fast-import on untrusted input.
Related
ubuntucve
ubuntucve
CVE-2019-1348
2019-12-10 00:00:00
veracode
veracode
Arbitrary Path Overwriting
2019-12-20 00:15:19
alpinelinux
alpinelinux
CVE-2019-1348
2020-01-24 22:15:19
nvd
nvd
CVE-2019-1348
2020-01-24 22:15:19
prion
prion
Command injection
2020-01-24 22:15:00
osv
osv
CVE-2019-1348
2020-01-24 22:15:19
git - security update
2019-12-10 00:00:00
git - security update
2020-01-06 00:00:00
debiancve
debiancve
CVE-2019-1348
2020-01-24 22:15:19
cvelist
cvelist
CVE-2019-1348
2020-01-24 21:14:21
cve
cve
CVE-2019-1348
2020-01-24 22:15:19
apple
apple
About the security content of Xcode 11.2
2019-10-31 00:00:00
About the security content of Xcode 11.2 - Apple Support
2020-02-03 09:54:35
mageia
mageia
Updated libgit2 packages fix security vulnerabilities
2019-12-15 21:03:05
Updated git packages fix security vulnerabilities
2019-12-15 21:03:05
nessus
nessus
GLSA-202003-42 : libgit2: Multiple vulnerabilities
2020-03-20 00:00:00
CentOS 8 : git (CESA-2019:4356)
2021-01-29 00:00:00
RHEL 8 : git (RHSA-2019:4356)
2019-12-20 00:00:00
gentoo
gentoo
libgit2: Multiple vulnerabilities
2020-03-19 00:00:00
Git: Multiple vulnerabilities
2020-03-15 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2019-0391)
2022-01-28 00:00:00
Mageia: Security Advisory (MGASA-2019-0393)
2022-01-28 00:00:00
Debian: Security Advisory (DLA-2059-1)
2020-01-24 00:00:00
archlinux
archlinux
[ASA-201912-5] libgit2: arbitrary code execution
2019-12-18 00:00:00
[ASA-201912-6] git: arbitrary code execution
2019-12-18 00:00:00
redhat
redhat
(RHSA-2020:0002) Important: rh-git218-git security update
2020-01-02 08:21:54
(RHSA-2019:4356) Important: git security update
2019-12-19 18:18:24
(RHSA-2020:0228) Important: git security update
2020-01-27 08:04:40
debian
debian
[SECURITY] [DLA 2059-1] git security update
2020-01-23 14:27:34
[SECURITY] [DSA 4581-1] git security update
2019-12-10 19:56:55
[SECURITY] [DSA 4581-1] git security update
2019-12-10 19:56:55
fedora
fedora
[SECURITY] Fedora 31 Update: libgit2-0.28.4-1.fc31
2019-12-17 01:46:03
[SECURITY] Fedora 30 Update: git-2.21.1-1.fc30
2020-01-04 22:16:13
[SECURITY] Fedora 31 Update: git-2.24.1-1.fc31
2019-12-18 01:56:26
oraclelinux
oraclelinux
git security update
2019-12-19 00:00:00
amazon
amazon
ubuntu
ubuntu
Git vulnerabilities
2019-12-10 00:00:00
cloudfoundry
cloudfoundry
USN-4220-1: Git vulnerabilities | Cloud Foundry
2019-12-18 00:00:00
suse
suse
Security update for git (important)
2020-01-29 00:00:00
Security update for git (moderate)
2020-05-02 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package git version 2.24.1-alt1
2019-12-08 00:00:00
Security fix for the ALT Linux 8 package git version 2.24.1-alt1
2019-12-12 00:00:00