Web: https://ubuntu.com/security/notices/USN-5686-3

u
Nov. 21, 2022, 12:57 p.m. |

Ubuntu security notices ubuntu.com

USN-5686-1 fixed vulnerabilities in Git. This update provides the corresponding
updates for Ubuntu 22.10.

Original advisory details:

Cory Snider discovered that Git incorrectly handled certain symbolic links.
An attacker could possibly use this issue to cause an unexpected behaviour.
(CVE-2022-39253)

Kevin Backhouse discovered that Git incorrectly handled certain command strings.
An attacker could possibly use this issue to arbitrary code execution.
(CVE-2022-39260)

git usn vulnerabilities

Senior Cloud Security Engineer

@ HelloFresh | Berlin, Germany

Senior Security Engineer

@ Reverb | Remote, US

I.S. Security Analyst

@ YVFWC | Yakima, WA

Secure Key Infrastructure Development Security Engineer

@ Block | San Francisco, CA, United States

DevSecOps Engineer - TOP SECRET Clearance Required - Colorado Springs/Denver/Pueblo

@ Spry Squared, Inc. | Colorado Springs, CO, United States

C002548 Cyber Security Technical Support (NS) - FRI 9 Dec

@ EMW, Inc. | Mons, Wallonia, Belgium

Staff Information Security Engineer – Vulnerability Management

@ ServiceNow | Kirkland, Washington, United States

Staff Security Developer - FEDERAL Experience - PYTHON or JavaScript

@ ServiceNow | Kirkland, Washington, United States

Information Security Analyst

@ The Very Group | Liverpool, England, United Kingdom

PKI Engineer (Venafi)

@ NBCUniversal | Universal City, CALIFORNIA, United States

Governance Risk & Compliance (GRC) Analyst II (Entry Level)

@ Vericast | San Antonio, TX, United States

Hybrid Security Operations Networks Engineer

@ NECSWS | Nottingham, United Kingdom