Lucene search
UbuntuUSN-5686-2HistoryNov 17, 2022 - 12:00 a.m.
Git vulnerability
2022-11-1700:00:00
ubuntu.com
22
ubuntu
git
vulnerability
cve-2022-39260
esm
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.2 High
AI Score
Confidence
High
0.011 Low
EPSS
Percentile
84.4%
Releases
- Ubuntu 16.04 ESM
Packages
- git - fast, scalable, distributed revision control system
Details
USN-5686-1 fixed several vulnerabilities in Git. This update
provides the corresponding fix for CVE-2022-39260 on Ubuntu 16.04 ESM.
Original advisory details:
Kevin Backhouse discovered that Git incorrectly handled certain command
strings. An attacker could possibly use this issue to cause a crash or
arbitrary code execution.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 16.04 | noarch | git | < 1:2.7.4-0ubuntu1.10+esm3 | UNKNOWN |
| Ubuntu | 16.04 | noarch | git | < 1:2.7.4-0ubuntu1.10 | UNKNOWN |
| Ubuntu | 16.04 | noarch | git-all | < 1:2.7.4-0ubuntu1.10 | UNKNOWN |
| Ubuntu | 16.04 | noarch | git-arch | < 1:2.7.4-0ubuntu1.10 | UNKNOWN |
| Ubuntu | 16.04 | noarch | git-core | < 1:2.7.4-0ubuntu1.10 | UNKNOWN |
| Ubuntu | 16.04 | noarch | git-cvs | < 1:2.7.4-0ubuntu1.10 | UNKNOWN |
| Ubuntu | 16.04 | noarch | git-daemon-run | < 1:2.7.4-0ubuntu1.10 | UNKNOWN |
| Ubuntu | 16.04 | noarch | git-daemon-sysvinit | < 1:2.7.4-0ubuntu1.10 | UNKNOWN |
| Ubuntu | 16.04 | noarch | git-doc | < 1:2.7.4-0ubuntu1.10 | UNKNOWN |
| Ubuntu | 16.04 | noarch | git-el | < 1:2.7.4-0ubuntu1.10 | UNKNOWN |
References
Related
nessus
nessus
Ubuntu 16.04 ESM : Git vulnerability (USN-5686-2)
2022-11-18 00:00:00
EulerOS 2.0 SP8 : git (EulerOS-SA-2023-1314)
2023-02-08 00:00:00
EulerOS 2.0 SP11 : git (EulerOS-SA-2023-1034)
2023-01-05 00:00:00
osv
osv
git vulnerability
2022-11-17 19:36:53
CVE-2022-39260
2022-10-19 12:15:10
git vulnerabilities
2022-10-18 17:59:28
cvelist
cvelist
prion
prion
Heap overflow
2022-10-19 12:15:00
veracode
veracode
Heap-based Buffer Overflow
2022-10-20 19:48:22
nvd
nvd
CVE-2022-39260
2022-10-19 12:15:10
openvas
openvas
Huawei EulerOS: Security Advisory for git (EulerOS-SA-2023-1314)
2023-02-09 00:00:00
Ubuntu: Security Advisory (USN-5686-2)
2022-11-18 00:00:00
Ubuntu: Security Advisory (USN-5686-1)
2022-10-19 00:00:00
redhatcve
redhatcve
CVE-2022-39260
2022-10-24 21:18:58
cgr
cgr
CVE-2022-39260 vulnerabilities
2024-05-19 03:07:16
debiancve
debiancve
CVE-2022-39260
2022-10-19 12:15:10
wolfi
wolfi
CVE-2022-39260 vulnerabilities
2024-06-29 09:08:33
alpinelinux
alpinelinux
CVE-2022-39260
2022-10-19 12:15:10
ubuntucve
ubuntucve
CVE-2022-39260
2022-10-18 00:00:00
cve
cve
CVE-2022-39260
2022-10-19 12:15:10
ubuntu
ubuntu
Git vulnerabilities
2022-10-18 00:00:00
Git vulnerabilities
2022-11-21 00:00:00
freebsd
freebsd
git -- Multiple vulnerabilities
2022-06-09 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: git-2.38.1-1.fc36
2022-10-28 11:15:54
[SECURITY] Fedora 35 Update: git-2.38.1-1.fc35
2022-11-02 15:46:46
[SECURITY] Fedora 37 Update: git-2.38.1-1.fc37
2022-11-10 22:48:58
amazon
amazon
Important: git
2022-12-01 20:31:00
Important: git
2022-12-01 17:34:00
kaspersky
kaspersky
KLA20184 Multiple vulnerabilities in Git for Windows
2022-10-18 00:00:00
github
github
Git security vulnerabilities announced
2022-10-18 17:11:45
slackware
slackware
[slackware-security] git
2022-10-18 20:40:51
altlinux
altlinux
Security fix for the ALT Linux 10 package git version 2.33.5-alt1
2022-10-22 00:00:00
cloudfoundry
cloudfoundry
USN-5686-1: Git vulnerabilities | Cloud Foundry
2022-12-07 00:00:00
mageia
mageia
Updated git packages fix security vulnerability
2022-10-28 09:54:08
redhat
redhat
(RHSA-2023:2319) Moderate: git security and bug fix update
2023-05-09 05:07:19
(RHSA-2023:2859) Moderate: git security and bug fix update
2023-05-16 05:56:35
(RHSA-2024:0407) Moderate: git security update
2024-01-24 14:40:19
debian
debian
[SECURITY] [DLA 3239-1] git security update
2022-12-13 22:36:52
[SECURITY] [DLA 3239-2] git regression update
2022-12-14 18:36:03
[SECURITY] [DSA 5332-1] git security update
2023-01-29 16:59:53
apple
apple
About the security content of Xcode 14.1
2022-11-01 00:00:00
almalinux
almalinux
Moderate: git security and bug fix update
2023-05-16 00:00:00
Moderate: git security and bug fix update
2023-05-09 00:00:00
oraclelinux
oraclelinux
git security and bug fix update
2023-05-23 00:00:00
git security and bug fix update
2023-05-15 00:00:00
cloudlinux
cloudlinux
git: Fix of 4 CVEs
2023-02-24 09:34:40
photon
photon
Important Photon OS Security Update - PHSA-2022-0538
2022-11-09 00:00:00
Important Photon OS Security Update - PHSA-2022-3.0-0486
2022-11-11 00:00:00
Critical Photon OS Security Update - PHSA-2022-0271
2022-10-28 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2292
2023-11-14 13:25:27
Advisory ROSA-SA-2024-2398
2024-04-11 08:08:00
gentoo
gentoo
Git: Multiple Vulnerabilities
2023-12-27 00:00:00
ics
ics
Siemens SCALANCE XCM-/XRM-300
2024-02-15 12:00:00
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.2 High
AI Score
Confidence
High
0.011 Low
EPSS
Percentile
84.4%
Related for USN-5686-2