Описание
git-annex is vulnerable to a private data exposure and exfiltration attack. It could expose the content of files located outside the git-annex repository, or content from a private web server on localhost or the LAN.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| git-annex | fixed | 6.20180626-1 | package | |
| git-annex | fixed | 6.20170101-1+deb9u2 | stretch | package |
Примечания
https://www.openwall.com/lists/oss-security/2018/06/26/4
https://git-annex.branchable.com/security/CVE-2018-10857_and_CVE-2018-10859/
EPSS
Связанные уязвимости
git-annex is vulnerable to a private data exposure and exfiltration attack. It could expose the content of files located outside the git-annex repository, or content from a private web server on localhost or the LAN.
git-annex is vulnerable to a private data exposure and exfiltration attack. It could expose the content of files located outside the git-annex repository, or content from a private web server on localhost or the LAN.
git-annex is vulnerable to a private data exposure and exfiltration attack. It could expose the content of files located outside the git-annex repository, or content from a private web server on localhost or the LAN.
EPSS