Описание
In Git before 2.13.7, 2.14.x before 2.14.4, 2.15.x before 2.15.2, 2.16.x before 2.16.4, and 2.17.x before 2.17.1, code to sanity-check pathnames on NTFS can result in reading out-of-bounds memory.
Отчет
This issue did not affect the versions of git as shipped with Red Hat Enterprise Linux 6 and 7 as they did not include the vulnerable code.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| JBoss Developer Studio 11 | jgit | Will not fix | ||
| Red Hat Enterprise Linux 6 | git | Not affected | ||
| Red Hat Enterprise Linux 7 | git | Not affected | ||
| Red Hat Enterprise Linux 8 | git | Not affected | ||
| Red Hat Fuse 7 | camel | Not affected | ||
| Red Hat JBoss A-MQ 6 | jgit | Not affected | ||
| Red Hat JBoss BRMS 6 | jgit | Not affected | ||
| Red Hat JBoss Data Virtualization 6 | jgit | Not affected | ||
| Red Hat JBoss Fuse 6 | camel | Not affected | ||
| Red Hat JBoss Fuse Integration Service 2 | camel | Not affected |
Показывать по
Дополнительная информация
Статус:
EPSS
5.3 Medium
CVSS3
Связанные уязвимости
In Git before 2.13.7, 2.14.x before 2.14.4, 2.15.x before 2.15.2, 2.16.x before 2.16.4, and 2.17.x before 2.17.1, code to sanity-check pathnames on NTFS can result in reading out-of-bounds memory.
In Git before 2.13.7, 2.14.x before 2.14.4, 2.15.x before 2.15.2, 2.16.x before 2.16.4, and 2.17.x before 2.17.1, code to sanity-check pathnames on NTFS can result in reading out-of-bounds memory.
In Git before 2.13.7, 2.14.x before 2.14.4, 2.15.x before 2.15.2, 2.16 ...
In Git before 2.13.7, 2.14.x before 2.14.4, 2.15.x before 2.15.2, 2.16.x before 2.16.4, and 2.17.x before 2.17.1, code to sanity-check pathnames on NTFS can result in reading out-of-bounds memory.
EPSS
5.3 Medium
CVSS3