Описание
webcheckout in myrepos through 1.20171231 does not sanitize URLs that are passed to git clone, allowing a malicious website operator or a MitM attacker to take advantage of it for arbitrary code execution, as demonstrated by an "ext::sh -c" attack or an option injection attack.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | DNE | |
| bionic | DNE | |
| cosmic | DNE | |
| devel | DNE | |
| disco | DNE | |
| eoan | DNE | |
| esm-apps/xenial | not-affected | 1.16 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was needs-triage] |
| esm-infra/focal | DNE | |
| focal | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | ignored | end of standard support, was needs-triage |
| cosmic | ignored | end of life |
| devel | not-affected | 1.20180726 |
| disco | not-affected | 1.20180726 |
| eoan | not-affected | 1.20180726 |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | not-affected | 1.20180726 |
| esm-apps/jammy | not-affected | 1.20180726 |
| esm-apps/noble | not-affected | 1.20180726 |
Показывать по
Ссылки на источники
5.1 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
webcheckout in myrepos through 1.20171231 does not sanitize URLs that are passed to git clone, allowing a malicious website operator or a MitM attacker to take advantage of it for arbitrary code execution, as demonstrated by an "ext::sh -c" attack or an option injection attack.
webcheckout in myrepos through 1.20171231 does not sanitize URLs that ...
webcheckout in myrepos through 1.20171231 does not sanitize URLs that are passed to git clone, allowing a malicious website operator or a MitM attacker to take advantage of it for arbitrary code execution, as demonstrated by an "ext::sh -c" attack or an option injection attack.
5.1 Medium
CVSS2
7.5 High
CVSS3