rpm package
suse/git&distro=SUSE Linux Micro 6.1
pkg:rpm/suse/git&distro=SUSE%20Linux%20Micro%206.1
Vulnerabilities (8)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-46835 | Hig | 8.5 | < 2.51.0-slfo.1.1_1.1 | 2.51.0-slfo.1.1_1.1 | Jul 10, 2025 | Git GUI allows you to use the Git source control management tools via a GUI. When a user clones an untrusted repository and is tricked into editing a file located in a maliciously named directory in the repository, then Git GUI can create and overwrite files for which the user ha | |
| CVE-2025-27614 | Hig | 8.6 | < 2.51.0-slfo.1.1_1.1 | 2.51.0-slfo.1.1_1.1 | Jul 10, 2025 | Gitk is a Tcl/Tk based Git history browser. Starting with 2.41.0, a Git repository can be crafted in such a way that with some social engineering a user who has cloned the repository can be tricked into running any script (e.g., Bourne shell, Perl, Python, ...) supplied by the at | |
| CVE-2025-27613 | Low | 3.6 | < 2.51.0-slfo.1.1_1.1 | 2.51.0-slfo.1.1_1.1 | Jul 10, 2025 | Gitk is a Tcl/Tk based Git history browser. Starting with 1.7.0, when a user clones an untrusted repository and runs gitk without additional command arguments, files for which the user has write permission can be created and truncated. The option Support per-file encoding must ha | |
| CVE-2025-48386 | Med | 6.3 | < 2.51.0-slfo.1.1_1.1 | 2.51.0-slfo.1.1_1.1 | Jul 8, 2025 | Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The wincred credential helper uses a static buffer (target) as a unique key for storing and comparing against int | |
| CVE-2025-48385 | Hig | — | < 2.51.0-slfo.1.1_1.1 | 2.51.0-slfo.1.1_1.1 | Jul 8, 2025 | Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When cloning a repository Git knows to optionally fetch a bundle advertised by the remote server, which allows th | |
| CVE-2025-48384 | — | KEV | < 2.51.0-slfo.1.1_1.1 | 2.51.0-slfo.1.1_1.1 | Jul 8, 2025 | Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config | |
| CVE-2024-50349 | — | < 2.46.0-slfo.1.1_2.1 | 2.46.0-slfo.1.1_2.1 | Jan 14, 2025 | Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When Git asks for credentials via a terminal prompt (i.e. without using any credential helper), it prints out the | ||
| CVE-2024-52006 | — | < 2.46.0-slfo.1.1_2.1 | 2.46.0-slfo.1.1_2.1 | Jan 14, 2025 | Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. Git defines a line-based protocol that is used to exchange information between Git and Git credential helpers. So |
- affected < 2.51.0-slfo.1.1_1.1fixed 2.51.0-slfo.1.1_1.1
Git GUI allows you to use the Git source control management tools via a GUI. When a user clones an untrusted repository and is tricked into editing a file located in a maliciously named directory in the repository, then Git GUI can create and overwrite files for which the user ha
- affected < 2.51.0-slfo.1.1_1.1fixed 2.51.0-slfo.1.1_1.1
Gitk is a Tcl/Tk based Git history browser. Starting with 2.41.0, a Git repository can be crafted in such a way that with some social engineering a user who has cloned the repository can be tricked into running any script (e.g., Bourne shell, Perl, Python, ...) supplied by the at
- affected < 2.51.0-slfo.1.1_1.1fixed 2.51.0-slfo.1.1_1.1
Gitk is a Tcl/Tk based Git history browser. Starting with 1.7.0, when a user clones an untrusted repository and runs gitk without additional command arguments, files for which the user has write permission can be created and truncated. The option Support per-file encoding must ha
- affected < 2.51.0-slfo.1.1_1.1fixed 2.51.0-slfo.1.1_1.1
Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The wincred credential helper uses a static buffer (target) as a unique key for storing and comparing against int
- affected < 2.51.0-slfo.1.1_1.1fixed 2.51.0-slfo.1.1_1.1
Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When cloning a repository Git knows to optionally fetch a bundle advertised by the remote server, which allows th
- affected < 2.51.0-slfo.1.1_1.1fixed 2.51.0-slfo.1.1_1.1
Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config
- CVE-2024-50349Jan 14, 2025affected < 2.46.0-slfo.1.1_2.1fixed 2.46.0-slfo.1.1_2.1
Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When Git asks for credentials via a terminal prompt (i.e. without using any credential helper), it prints out the
- CVE-2024-52006Jan 14, 2025affected < 2.46.0-slfo.1.1_2.1fixed 2.46.0-slfo.1.1_2.1
Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. Git defines a line-based protocol that is used to exchange information between Git and Git credential helpers. So