mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-31 10:41:19 +00:00
218 lines
7.9 KiB
JSON
218 lines
7.9 KiB
JSON
{
|
|
"id": "CVE-2023-29007",
|
|
"sourceIdentifier": "security-advisories@github.com",
|
|
"published": "2023-04-25T21:15:10.403",
|
|
"lastModified": "2023-05-12T05:15:18.117",
|
|
"vulnStatus": "Modified",
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "Git is a revision control system. Prior to versions 2.30.9, 2.31.8, 2.32.7, 2.33.8, 2.34.8, 2.35.8, 2.36.6, 2.37.7, 2.38.5, 2.39.3, and 2.40.1, a specially crafted `.gitmodules` file with submodule URLs that are longer than 1024 characters can used to exploit a bug in `config.c::git_config_copy_or_rename_section_in_file()`. This bug can be used to inject arbitrary configuration into a user's `$GIT_DIR/config` when attempting to remove the configuration section associated with that submodule. When the attacker injects configuration values which specify executables to run (such as `core.pager`, `core.editor`, `core.sshCommand`, etc.) this can lead to a remote code execution. A fix A fix is available in versions 2.30.9, 2.31.8, 2.32.7, 2.33.8, 2.34.8, 2.35.8, 2.36.6, 2.37.7, 2.38.5, 2.39.3, and 2.40.1. As a workaround, avoid running `git submodule deinit` on untrusted repositories or without prior inspection of any submodule sections in `$GIT_DIR/config`."
|
|
}
|
|
],
|
|
"metrics": {
|
|
"cvssMetricV31": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"cvssData": {
|
|
"version": "3.1",
|
|
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
|
|
"attackVector": "LOCAL",
|
|
"attackComplexity": "LOW",
|
|
"privilegesRequired": "NONE",
|
|
"userInteraction": "REQUIRED",
|
|
"scope": "UNCHANGED",
|
|
"confidentialityImpact": "HIGH",
|
|
"integrityImpact": "HIGH",
|
|
"availabilityImpact": "HIGH",
|
|
"baseScore": 7.8,
|
|
"baseSeverity": "HIGH"
|
|
},
|
|
"exploitabilityScore": 1.8,
|
|
"impactScore": 5.9
|
|
},
|
|
{
|
|
"source": "security-advisories@github.com",
|
|
"type": "Secondary",
|
|
"cvssData": {
|
|
"version": "3.1",
|
|
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
|
|
"attackVector": "LOCAL",
|
|
"attackComplexity": "HIGH",
|
|
"privilegesRequired": "NONE",
|
|
"userInteraction": "REQUIRED",
|
|
"scope": "UNCHANGED",
|
|
"confidentialityImpact": "HIGH",
|
|
"integrityImpact": "HIGH",
|
|
"availabilityImpact": "HIGH",
|
|
"baseScore": 7.0,
|
|
"baseSeverity": "HIGH"
|
|
},
|
|
"exploitabilityScore": 1.0,
|
|
"impactScore": 5.9
|
|
}
|
|
]
|
|
},
|
|
"weaknesses": [
|
|
{
|
|
"source": "security-advisories@github.com",
|
|
"type": "Primary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "CWE-74"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"configurations": [
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*",
|
|
"versionEndExcluding": "2.30.9",
|
|
"matchCriteriaId": "A2E4BF99-17B8-4424-B97E-DDB8A4793DAF"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "2.31.0",
|
|
"versionEndExcluding": "2.31.8",
|
|
"matchCriteriaId": "2A1D7F29-E06F-4277-8713-1C19DE714300"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "2.32.0",
|
|
"versionEndExcluding": "2.32.7",
|
|
"matchCriteriaId": "0B69F022-B29E-4D9A-B4FC-78430AFF0C9C"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "2.33.0",
|
|
"versionEndExcluding": "2.33.8",
|
|
"matchCriteriaId": "8A2B603F-B8E2-4123-80A4-64E983FF1F86"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "2.34.0",
|
|
"versionEndExcluding": "2.34.8",
|
|
"matchCriteriaId": "26D3ED4E-246E-4D4D-9E2D-7890E93ECED8"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "2.35.0",
|
|
"versionEndExcluding": "2.35.8",
|
|
"matchCriteriaId": "D3988013-1332-49F8-85E7-7EB59BE36A63"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "2.36.0",
|
|
"versionEndExcluding": "2.36.5",
|
|
"matchCriteriaId": "0588D372-41D2-442E-976E-6B24DB1A1EC6"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "2.37.0",
|
|
"versionEndExcluding": "2.37.7",
|
|
"matchCriteriaId": "030542CA-76BF-4252-9E03-D7E44D3DEE19"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "2.38.0",
|
|
"versionEndExcluding": "2.38.5",
|
|
"matchCriteriaId": "6EAEE109-8AD8-4383-AAC3-E9D2A4794F8B"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "2.39.0",
|
|
"versionEndExcluding": "2.39.3",
|
|
"matchCriteriaId": "BE329F8E-076F-4895-A2A2-A1C0330C1F6F"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:git-scm:git:2.40.0:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "89633B46-319A-499C-9848-2EA60AC030EB"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "E30D0E6F-4AE8-4284-8716-991DFA48CC5D"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "CC559B26-5DFC-4B7A-A27C-B77DE755DFF9"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"references": [
|
|
{
|
|
"url": "https://github.com/git/git/blob/9ce9dea4e1c2419cca126d29fa7730baa078a11b/Documentation/RelNotes/2.30.9.txt",
|
|
"source": "security-advisories@github.com",
|
|
"tags": [
|
|
"Vendor Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "https://github.com/git/git/commit/528290f8c61222433a8cf02fb7cfffa8438432b4",
|
|
"source": "security-advisories@github.com",
|
|
"tags": [
|
|
"Patch"
|
|
]
|
|
},
|
|
{
|
|
"url": "https://github.com/git/git/security/advisories/GHSA-v48j-4xgg-4844",
|
|
"source": "security-advisories@github.com",
|
|
"tags": [
|
|
"Vendor Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PI7FZ4NNR5S5J5K6AMVQBH2JFP6NE4L7/",
|
|
"source": "security-advisories@github.com",
|
|
"tags": [
|
|
"Mailing List",
|
|
"Third Party Advisory"
|
|
]
|
|
},
|
|
{
|
|
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RKOXOAZ42HLXHXTW6JZI4L5DAIYDTYCU/",
|
|
"source": "security-advisories@github.com"
|
|
},
|
|
{
|
|
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YFZWGQKB6MM5MNF2DLFTD7KS2KWPICKL/",
|
|
"source": "security-advisories@github.com",
|
|
"tags": [
|
|
"Mailing List",
|
|
"Third Party Advisory"
|
|
]
|
|
}
|
|
]
|
|
} |