rpm package
suse/git&distro=SUSE Manager Proxy LTS 4.3
pkg:rpm/suse/git&distro=SUSE%20Manager%20Proxy%20LTS%204.3
Vulnerabilities (5)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-46835 | Hig | 8.5 | < 2.43.7-150300.10.51.1 | 2.43.7-150300.10.51.1 | Jul 10, 2025 | Git GUI allows you to use the Git source control management tools via a GUI. When a user clones an untrusted repository and is tricked into editing a file located in a maliciously named directory in the repository, then Git GUI can create and overwrite files for which the user ha | |
| CVE-2025-27614 | Hig | 8.6 | < 2.43.7-150300.10.51.1 | 2.43.7-150300.10.51.1 | Jul 10, 2025 | Gitk is a Tcl/Tk based Git history browser. Starting with 2.41.0, a Git repository can be crafted in such a way that with some social engineering a user who has cloned the repository can be tricked into running any script (e.g., Bourne shell, Perl, Python, ...) supplied by the at | |
| CVE-2025-27613 | Low | 3.6 | < 2.43.7-150300.10.51.1 | 2.43.7-150300.10.51.1 | Jul 10, 2025 | Gitk is a Tcl/Tk based Git history browser. Starting with 1.7.0, when a user clones an untrusted repository and runs gitk without additional command arguments, files for which the user has write permission can be created and truncated. The option Support per-file encoding must ha | |
| CVE-2025-48385 | Hig | — | < 2.43.7-150300.10.51.1 | 2.43.7-150300.10.51.1 | Jul 8, 2025 | Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When cloning a repository Git knows to optionally fetch a bundle advertised by the remote server, which allows th | |
| CVE-2025-48384 | — | KEV | < 2.43.7-150300.10.51.1 | 2.43.7-150300.10.51.1 | Jul 8, 2025 | Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config |
- affected < 2.43.7-150300.10.51.1fixed 2.43.7-150300.10.51.1
Git GUI allows you to use the Git source control management tools via a GUI. When a user clones an untrusted repository and is tricked into editing a file located in a maliciously named directory in the repository, then Git GUI can create and overwrite files for which the user ha
- affected < 2.43.7-150300.10.51.1fixed 2.43.7-150300.10.51.1
Gitk is a Tcl/Tk based Git history browser. Starting with 2.41.0, a Git repository can be crafted in such a way that with some social engineering a user who has cloned the repository can be tricked into running any script (e.g., Bourne shell, Perl, Python, ...) supplied by the at
- affected < 2.43.7-150300.10.51.1fixed 2.43.7-150300.10.51.1
Gitk is a Tcl/Tk based Git history browser. Starting with 1.7.0, when a user clones an untrusted repository and runs gitk without additional command arguments, files for which the user has write permission can be created and truncated. The option Support per-file encoding must ha
- affected < 2.43.7-150300.10.51.1fixed 2.43.7-150300.10.51.1
Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When cloning a repository Git knows to optionally fetch a bundle advertised by the remote server, which allows th
- affected < 2.43.7-150300.10.51.1fixed 2.43.7-150300.10.51.1
Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config