SUSE-SU-2023:0418-1 -- SLES gitID: oval:org.secpod.oval:def:89048268 | Date: (C)2023-03-01 (M)2024-02-07 |
Class: PATCH | Family: unix |
This update for git fixes the following issues: - CVE-2023-22490: Fixed incorrectly usable local clone optimization even when using a non-local transport . - CVE-2023-23946: Fixed issue where a path outside the working tree can be overwritten as the user who is running "git apply" . - CVE-2022-39260: Fixed overflow in `split_cmdline`, leading to arbitrary heap writes and remote code execution . - CVE-2022-39253: Fixed dereference issue with symbolic links via the `--local` clone mechanism .
Platform: |
SUSE Linux Enterprise Server 15 SP2 |
SUSE Linux Enterprise Server 15 SP1 |