Download
| Alert*
|
oval:org.secpod.oval:def:503665
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work ... oval:org.secpod.oval:def:503669 Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work ... oval:org.secpod.oval:def:504894 Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work ... oval:org.secpod.oval:def:62803 The host is missing a security update according to the Apple advisory and is prone to an improper input validation. A flaw is present in the application, which fails to properly handle handle newline character. Successful exploitation allows an attacker disclose credential information to be provided ... oval:org.secpod.oval:def:62964 git: fast, scalable, distributed revision control system Git could be made to expose sensitive information. oval:org.secpod.oval:def:66545 Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work ... oval:org.secpod.oval:def:70863 The host is installed with Git before 2.17.4, 2.26.0 before 2.26.1, 2.25.0 before 2.25.3, 2.24.0 before 2.24.2, 2.23.0 before 2.23.2, 2.22.0 before 2.22.3, 2.21.0 before 2.21.2, 2.20.0 before 2.20.3, 2.19.0 before 2.19.4 or 2.18.0 before 2.18.3 and is prone to an improper input validation vulnerabil ... oval:org.secpod.oval:def:62955 Felix Wilhelm of Google Project Zero discovered a flaw in git, a fast, scalable, distributed revision control system. With a crafted URL that contains a newline, the credential helper machinery can be fooled to return credential information for a wrong host. oval:org.secpod.oval:def:118141 Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The git rpm installs common set of tools which are usually using with small amount of dependencies. To install all git packages, incl ... oval:org.secpod.oval:def:1601121 With a crafted URL that contains a newline in it, the credential helper machinery can be fooled to give credential information for a wrong host. The attack has been made impossible by forbidding a newline character in any value passed via the credential protocol. oval:org.secpod.oval:def:1601169 Affected versions of Git have a vulnerability whereby Git can be tricked into sending private credentials to a host controlled by an attacker. This bug is similar to CVE-2020-5260 . The fix for that bug still left the door open for an exploit where _some_ credential is leaked . Git uses external "cr ... oval:org.secpod.oval:def:1801742 git: Crafted URL containing new lines, empty host or lacks a scheme can cause credential leak oval:org.secpod.oval:def:62802 The host is installed with Xcode before 11.4.1 on Apple Mac OS X 10.15.2 or later or Git before 2.17.4, 2.26.0 before 2.26.1, 2.25.0 before 2.25.3, 2.24.0 before 2.24.2, 2.23.0 before 2.23.2, 2.22.0 before 2.22.3, 2.21.0 before 2.21.2, 2.20.0 before 2.20.3, 2.19.0 before 2.19.4 or 2.18.0 before 2.18 ... oval:org.secpod.oval:def:705435 git: fast, scalable, distributed revision control system Git could be made to expose sensitive information. oval:org.secpod.oval:def:89000456 This update for git fixes the following issues: - CVE-2020-5260: With a crafted URL that contains a newline in it, the credential helper machinery can be fooled to give credential information for a wrong host . oval:org.secpod.oval:def:205560 Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work ... oval:org.secpod.oval:def:1502882 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:89000608 This update for git fixes the following issues: Security issue fixed: - CVE-2020-5260: With a crafted URL that contains a newline in it, the credential helper machinery can be fooled to give credential information for a wrong host . Non-security issue fixed: git was updated to 2.26.0 for SHA256 supp ... oval:org.secpod.oval:def:1502887 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:1700319 With a crafted URL that contains a newline in it, the credential helper machinery can be fooled to give credential information for a wrong host. The attack has been made impossible by forbidding a newline character in any value passed via the credential protocol oval:org.secpod.oval:def:2106059 Oracle Solaris 11 - ( CVE-2020-11008 ) oval:org.secpod.oval:def:604807 Felix Wilhelm of Google Project Zero discovered a flaw in git, a fast, scalable, distributed revision control system. With a crafted URL that contains a newline, the credential helper machinery can be fooled to return credential information for a wrong host. oval:org.secpod.oval:def:89000402 This update for git to 2.26.2 fixes the following issues: Security issue fixed: - CVE-2020-11008: Specially crafted URLs may have tricked the credentials helper to providing credential information that is not appropriate for the protocol in use and host being contacted . Non-security issue fixed: - ... oval:org.secpod.oval:def:89050466 This update for git fixes the following issues: Security issues fixed: * CVE-2020-11008: Specially crafted URLs may have tricked the credentials helper to providing credential information that is not appropriate for the protocol in use and host being contacted git was updated to 2.26.1 - Fix git-d ... |
