---

CVE-2019-1351 - log back

CVE-2019-1351 edited at 10 Dec 2019 21:31:34
Notes	+ Only applicable to Windows

CVE-2019-1351 edited at 10 Dec 2019 21:31:28
Severity	- Unknown + Medium
Remote	- Unknown + Remote
Type	- Unknown + Arbitrary code execution

CVE-2019-1351 edited at 10 Dec 2019 21:22:27
Description	+ While the only permitted drive letters for physical drives on Windows are letters of the US-English alphabet, this restriction does not apply to virtual drives assigned via subst <letter>: <path>. Git mistook such paths for relative paths, allowing writing outside of the worktree while cloning.
References	+ https://github.com/git/git/commit/f82a97eb9197c1e3768e72648f37ce0ca3233734 + https://lkml.org/lkml/2019/12/10/905
Notes

CVE-2019-1351 created at 10 Dec 2019 21:09:06