Описание
revision.c in git before 2.7.4 uses an incorrect integer data type, which allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, leading to a heap-based buffer overflow.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1:2.7.3-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1:1.9.1-1ubuntu0.3]] |
| precise | released | 1:1.7.9.5-1ubuntu0.3 |
| trusty | released | 1:1.9.1-1ubuntu0.3 |
| trusty/esm | DNE | trusty was released [1:1.9.1-1ubuntu0.3] |
| upstream | released | 2.7.0 |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| wily | released | 1:2.5.0-1ubuntu0.2 |
Показывать по
10 Critical
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
revision.c in git before 2.7.4 uses an incorrect integer data type, which allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, leading to a heap-based buffer overflow.
revision.c in git before 2.7.4 uses an incorrect integer data type, which allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, leading to a heap-based buffer overflow.
revision.c in git before 2.7.4 uses an incorrect integer data type, wh ...
revision.c in git before 2.7.4 uses an incorrect integer data type, which allows remote attackers to execute arbitrary code via a (1) long filename or (2) many nested trees, leading to a heap-based buffer overflow.
Уязвимость распределенной системы управления версиями Git, позволяющая нарушителю выполнить произвольный код
10 Critical
CVSS2
9.8 Critical
CVSS3