all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

USN-5810-2: Git regression

Add to bookmarks
Jan. 19, 2023, 4:04 p.m. |

Ubuntu security notices ubuntu.com

USN-5810-1 fixed vulnerabilities in Git. This update introduced a regression as it
was missing some commit lines. This update fixes the problem.

Original advisory details:

Markus Vervier and Eric Sesterhenn discovered that Git incorrectly handled certain
gitattributes. An attacker could possibly use this issue to cause a crash
or execute arbitrary code. (CVE-2022-23521)

Joern Schneeweisz discovered that Git incorrectly handled certain commands.
An attacker could possibly use this issue to cause a crash or execute
arbitrary code. (CVE-2022-41903)

advisory code crash cve fixes git issue markus missing problem update usn vulnerabilities

Visit resource

More from ubuntu.com / Ubuntu security notices

USN-6767-1: Linux kernel vulnerabilities 8 hours ago | ubuntu.com
attacker compromise crash cve +19
USN-6766-1: Linux kernel vulnerabilities 8 hours ago | ubuntu.com
action attacker conditions crash +19
USN-6765-1: Linux kernel (OEM) vulnerabilities 12 hours ago | ubuntu.com
attacker crash cve data +15
USN-6764-1: libde265 vulnerability 13 hours ago | ubuntu.com
attacker automated denial of service file +7
USN-6754-2: nghttp2 vulnerability 13 hours ago | ubuntu.com
advisory attacker denial of service http +11
USN-6763-1: libvirt vulnerability 16 hours ago | ubuntu.com
access attacker authorization issue +6
USN-6757-2: PHP vulnerabilities 5 days, 12 hours ago | ubuntu.com
advisory arbitrary code attacker code +15
USN-6762-1: GNU C Library vulnerabilities 5 days, 15 hours ago | ubuntu.com
arbitrary code attacker attackers code +14
USN-6747-2: Firefox regressions 6 days ago | ubuntu.com
advisory attacker denial of service domains +14

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Cyber Security Engineer I

@ Fortress Security Risk Management | Cleveland, OH, United States
View on infosec-jobs.com

Senior DevSecOps Engineer

@ Wisk Aero | Remote United States
View on infosec-jobs.com

Vulnerable Adult Investigator - Vice President

@ JPMorgan Chase & Co. | Chicago, IL, United States
View on infosec-jobs.com

Consultant Réseaux IT Digital Impulse - H/F

@ Talan | Paris, France
View on infosec-jobs.com

DevSecOps Engineer (Onsite)

@ Accenture Federal Services | Arlington, VA
View on infosec-jobs.com

Senior Security Engineer

@ Minitab | State College, Pennsylvania, United States
View on infosec-jobs.com
View more jobs