CVE-2019-1348 - log back

CVE-2019-1348 edited at 11 Dec 2019 08:53:31
Description
- A security issue has been found in git before 2.41.1 where the --export-marks option of git fast-import is exposed also via the in-stream command feature export-marks=... and it allows overwriting arbitrary paths.
+ A security issue has been found in git before 2.24.1 where the --export-marks option of git fast-import is exposed also via the in-stream command feature export-marks=... and it allows overwriting arbitrary paths.
CVE-2019-1348 edited at 10 Dec 2019 21:54:44
Description
- The --export-marks option of git fast-import is exposed also via the in-stream command feature export-marks=... and it allows overwriting arbitrary paths.
+ A security issue has been found in git before 2.41.1 where the --export-marks option of git fast-import is exposed also via the in-stream command feature export-marks=... and it allows overwriting arbitrary paths.
CVE-2019-1348 edited at 10 Dec 2019 21:33:02
Type
- Arbitrary file overwrite
+ Arbitrary code execution
CVE-2019-1348 edited at 10 Dec 2019 21:15:46
Remote
- Unknown
+ Remote
CVE-2019-1348 edited at 10 Dec 2019 21:15:40
Severity
- Unknown
+ High
Type
- Unknown
+ Arbitrary file overwrite
References
- https://github.com/git/git/commit/a7b1ad3b05fd1dc03c3de12ea4f2d8118ad24e2c
+ https://github.com/git/git/commit/68061e3470210703cb15594194718d35094afdc0
https://lkml.org/lkml/2019/12/10/905
CVE-2019-1348 edited at 10 Dec 2019 21:13:20
Description
+ The --export-marks option of git fast-import is exposed also via the in-stream command feature export-marks=... and it allows overwriting arbitrary paths.
References
+ https://github.com/git/git/commit/a7b1ad3b05fd1dc03c3de12ea4f2d8118ad24e2c
+ https://lkml.org/lkml/2019/12/10/905
Notes
CVE-2019-1348 created at 10 Dec 2019 21:09:06