Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 541
Alerts This Week
Warning Icon 1 541

Ubuntu 22.04: USN-5511-1 Critical: Git Command Execution Risk

ubuntu
Calendar Grey July 13, 2022
Dist Ubuntu Esm H88
Ubuntu Security Notice USN-5512-1 addresses vulnerabilities in Samba that could lead to unauthorized access and data leakage through manipulated requests.
Git could be made to run arbitrary commands as an administrator if it received specially crafted inputs.

Summary

Git could be made to run arbitrary commands as an administrator

if it received specially crafted inputs.

Software Description:

- git: fast, scalable, distributed revision control system

Details:

Carlo Marcelo Arenas Belón discovered that an issue related to CVE-2022-24765

still affected Git. An attacker could possibly use this issue to

run arbitrary commands as administrator. (CVE-2022-29187)

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 22.04 LTS:
  git                             1:2.34.1-1ubuntu1.4

Ubuntu 21.10:
  git                             1:2.32.0-1ubuntu1.3

Ubuntu 20.04 LTS:
  git                             1:2.25.1-1ubuntu3.5

Ubuntu 18.04 LTS:
  git                             1:2.17.1-1ubuntu0.12

In general, a standard system update will make all the necessary changes.

References

CVE-2022-29187

Severity
critical
Lowest
Low
Medium
High
Critical

July 13, 2022

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.