Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2020-24614

Опубликовано: 25 авг. 2020
Источник: debian

Описание

Fossil before 2.10.2, 2.11.x before 2.11.2, and 2.12.x before 2.12.1 allows remote authenticated users to execute arbitrary code. An attacker must have check-in privileges on the repository.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
fossilfixed1:2.12.1-1package
fossilno-dsabusterpackage
fossilno-dsastretchpackage

Примечания

  • https://www.openwall.com/lists/oss-security/2020/08/20/1

  • https://fossil-scm.org/forum/info/a05ae3ce7760daf6

  • https://fossil-scm.org/fossil/vdiff?branch=sec2020-2.12-patch&diff=1&w

Связанные уязвимости

ubuntu логотип

CVE-2020-24614

CVSS3: 8.8
ubuntu
больше 5 лет назад

Fossil before 2.10.2, 2.11.x before 2.11.2, and 2.12.x before 2.12.1 allows remote authenticated users to execute arbitrary code. An attacker must have check-in privileges on the repository.

nvd логотип

CVE-2020-24614

CVSS3: 8.8
nvd
больше 5 лет назад

Fossil before 2.10.2, 2.11.x before 2.11.2, and 2.12.x before 2.12.1 allows remote authenticated users to execute arbitrary code. An attacker must have check-in privileges on the repository.

suse-cvrf логотип

openSUSE-SU-2020:1478-1

suse-cvrf
больше 5 лет назад

Security update for fossil

github логотип

GHSA-83fw-5hmv-mmqf

CVSS3: 8.8
github
больше 3 лет назад

Fossil before 2.10.2, 2.11.x before 2.11.2, and 2.12.x before 2.12.1 allows remote authenticated users to execute arbitrary code. An attacker must have check-in privileges on the repository.