all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Critical RCE vulnerabilities found in git (CVE-2022-41903, CVE-2022-23251)

Add to bookmarks

Web: https://www.helpnetsecurity.com/2023/01/19/git-critical-vulnerabilities/

Jan. 19, 2023, 12:04 p.m. | Zeljka Zorz

Help Net Security helpnetsecurity.com

A source code audit has revealed two critical vulnerabilities affecting git, the popular distributed version control system for collaborative software development. The latest git vulnerabilities CVE-2022-41903 is an out-of-bounds memory write flaw in log formatting and CVE-2022-23251 is a truncated allocation leading to out-of-bounds write via large number of attributes. Both may result in remote code execution. More technical info about each of the flaws can be found in this post by X41 D-Sec researchers … More →


The post …

code audit critical cve don't miss git github gitlab hot stuff open source rce security update ubuntu vulnerabilities vulnerability x41 d-sec

Visit resource

More from helpnetsecurity.com / Help Net Security

Patch your Jira Service Management Server and Data Center and check for compromise! (CVE-2023-22501) 10 hours ago | helpnetsecurity.com
atlassian center check compromise +17
New infosec products of the week: February 3, 2023 15 hours ago | helpnetsecurity.com
arkose labs february hornetsecurity hycu +4
We can’t rely on goodwill to protect our critical infrastructure 15 hours ago | helpnetsecurity.com
critical critical infrastructure don't miss expert analysis +7
Short-staffed SOCs struggle to gain visibility into cloud activities 16 hours ago | helpnetsecurity.com
ciso cloud cloud adoption compliance +8
Inability to prevent bad things from happening seen as the worst part of a security … 16 hours ago | helpnetsecurity.com
bad cyberattacks cybercrime data breach +6
Netwrix 1Secure empowers MSPs to secure clients from a single console 17 hours ago | helpnetsecurity.com
clients console industry news msps +2
HYCU R-Cloud protects all business-critical apps from on-premises to SaaS 17 hours ago | helpnetsecurity.com
apps business cloud critical +3
Keepit introduces backup and recovery solution for Power BI users 17 hours ago | helpnetsecurity.com
backup backup and recovery industry news keepit +4
Pixalate iCloud Private Relay helps users measure their exposure to iCPR traffic 17 hours ago | helpnetsecurity.com
exposure icloud industry news measure +4

Latest InfoSec / Cybersecurity Jobs

View more jobs Post a job on infosec-jobs.com

Chief Information Security Officer

@ Los Angeles Unified School District | Los Angeles
View on infosec-jobs.com

Cybersecurity Engineer

@ Apercen Partners LLC | Folsom, CA
View on infosec-jobs.com

IDM Sr. Security Developer

@ The Ohio State University | Columbus, OH, United States
View on infosec-jobs.com

IT Security Engineer

@ Stylitics | New York City
View on infosec-jobs.com

Information Security Engineer

@ VDA Labs | Remote
View on infosec-jobs.com

Enterprise Security Engineer

@ Greenlight | Bengaluru, Karnataka
View on infosec-jobs.com

Security Solution Administrator - Antivirus Operation (REF565Y)

@ Deutsche Telekom IT Solutions | Budapest, Pécs, Debrecen, Szeged, Hungary
View on infosec-jobs.com

IT Infrastructure Engineer - Cloud Security Administration and Consulting

@ Bosch Group | Warszawa, Poland
View on infosec-jobs.com

Embedded Software Development und Cyber Security Experte (m/w/div)

@ Bosch Group | Leinfelden-Echterdingen, Germany
View on infosec-jobs.com

Senior Cybersecurity Architect

@ McDonald's Corporation | Chicago, IL, United States
View on infosec-jobs.com

Security Engineering Student Worker

@ Mozilla | Remote
View on infosec-jobs.com

Cybersecurity Masters Intern

@ Visa | Ashburn, VA, United States
View on infosec-jobs.com