ELSA-2024-7135

Опубликовано: 25 сент. 2024

Источник: oracle-oval

Платформа: Oracle Linux 8

Описание

ELSA-2024-7135: git-lfs security update (IMPORTANT)

[3.4.1-3]

Rebuild with new Golang
Resolves: RHEL-57900

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

git-lfs

3.4.1-3.el8_10

Oracle Linux x86_64

git-lfs

3.4.1-3.el8_10

Связанные CVE

CVE-2024-34156

Ссылки на источники

Связанные уязвимости

CVE-2024-34156

CVSS3: 7.5

ubuntu

10 месяцев назад

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

CVE-2024-34156

CVSS3: 7.5

redhat

10 месяцев назад

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

CVE-2024-34156

CVSS3: 7.5

nvd

10 месяцев назад

Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.

CVE-2024-34156

CVSS3: 7.5

debian

10 месяцев назад

Calling Decoder.Decode on a message which contains deeply nested struc ...

RLSA-2024:8111

rocky

8 месяцев назад

Important: skopeo security update