CVE-2018-11233

Source
Severity Medium
Remote Yes
Type Information disclosure
Description
A security issue has been found in git before 2.17.1, where the code that sanify-check paths in is_ntfs_dotgit() could have been tricked into reading random pieces of memory.
Group Package Affected Fixed Severity Status Ticket
AVG-711 git 2.17.0-1 2.17.1-1 Critical Fixed
Date Advisory Group Package Severity Description
01 Jun 2018 ASA-201806-1 AVG-711 git Critical multiple issues
References
https://lkml.org/lkml/2018/5/29/889
https://github.com/gitster/git/commit/11a9f4d807a0d71dc6eff51bb87baf4ca2cccf1d