{"dataType": "CVE_RECORD", "containers": {"adp": [{"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.0, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "redhat", "product": "emacs-git", "platforms": ["cpe:/o:redhat:enterprise_linux:6"], "defaultStatus": "affected"}, {"vendor": "redhat", "product": "emacs-git-el", "platforms": ["cpe:/o:redhat:enterprise_linux:6"], "defaultStatus": "affected"}, {"vendor": "redhat", "product": "git", "platforms": ["cpe:/o:redhat:enterprise_linux:6"], "defaultStatus": "affected"}, {"vendor": "redhat", "product": "git-all", "platforms": ["cpe:/o:redhat:enterprise_linux:6"], "defaultStatus": "affected"}, {"vendor": "redhat", "product": "git-cvs", "platforms": ["cpe:/o:redhat:enterprise_linux:6"], "defaultStatus": "affected"}, {"vendor": "redhat", "product": "git-daemon", "platforms": ["cpe:/o:redhat:enterprise_linux:6"], "defaultStatus": "affected"}, {"vendor": "redhat", "product": "git-email", "platforms": ["cpe:/o:redhat:enterprise_linux:6"], "defaultStatus": "affected"}, {"vendor": "redhat", "product": "git-gui", "platforms": ["cpe:/o:redhat:enterprise_linux:6"], "defaultStatus": "affected"}, {"vendor": "redhat", "product": "git-svn", "platforms": ["cpe:/o:redhat:enterprise_linux:6"], "defaultStatus": "affected"}, {"vendor": "redhat", "product": "gitk", "platforms": ["cpe:/o:redhat:enterprise_linux:6"], "defaultStatus": "affected"}, {"vendor": "redhat", "product": "gitweb", "platforms": ["cpe:/o:redhat:enterprise_linux:6"], "defaultStatus": "affected"}, {"vendor": "redhat", "product": "perl-Git", "platforms": ["cpe:/o:redhat:enterprise_linux:6"], "defaultStatus": "affected"}], "references": [{"url": "https://access.redhat.com/security/cve/CVE-2025-48384"}], "descriptions": [{"lang": "en", "value": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location. \n            This vulnerability marked as Important and not Moderate flaw because it undermines Git’s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/<submodule>/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.\n            To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them."}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2025-07-08T18:23:00Z", "x_subShortName": "redhat_6"}}, {"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.0, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"high\"}"}}}], "affected": [{"vendor": "canonical", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.17.1-1ubuntu0.18+esm2", "versionType": "custom"}], "platforms": ["bionic"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.17.1-1ubuntu0.18+esm2", "versionType": "custom"}], "platforms": ["bionic"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-cvs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.17.1-1ubuntu0.18+esm2", "versionType": "custom"}], "platforms": ["bionic"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-daemon-run", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.17.1-1ubuntu0.18+esm2", "versionType": "custom"}], "platforms": ["bionic"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-daemon-sysvinit", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.17.1-1ubuntu0.18+esm2", "versionType": "custom"}], "platforms": ["bionic"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-el", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.17.1-1ubuntu0.18+esm2", "versionType": "custom"}], "platforms": ["bionic"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.17.1-1ubuntu0.18+esm2", "versionType": "custom"}], "platforms": ["bionic"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.17.1-1ubuntu0.18+esm2", "versionType": "custom"}], "platforms": ["bionic"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-man", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.17.1-1ubuntu0.18+esm2", "versionType": "custom"}], "platforms": ["bionic"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-mediawiki", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.17.1-1ubuntu0.18+esm2", "versionType": "custom"}], "platforms": ["bionic"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.17.1-1ubuntu0.18+esm2", "versionType": "custom"}], "platforms": ["bionic"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.17.1-1ubuntu0.18+esm2", "versionType": "custom"}], "platforms": ["bionic"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.17.1-1ubuntu0.18+esm2", "versionType": "custom"}], "platforms": ["bionic"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.25.1-1ubuntu3.14+esm1", "versionType": "custom"}], "platforms": ["focal"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.25.1-1ubuntu3.14+esm1", "versionType": "custom"}], "platforms": ["focal"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-cvs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.25.1-1ubuntu3.14+esm1", "versionType": "custom"}], "platforms": ["focal"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-daemon-run", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.25.1-1ubuntu3.14+esm1", "versionType": "custom"}], "platforms": ["focal"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-daemon-sysvinit", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.25.1-1ubuntu3.14+esm1", "versionType": "custom"}], "platforms": ["focal"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-el", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.25.1-1ubuntu3.14+esm1", "versionType": "custom"}], "platforms": ["focal"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.25.1-1ubuntu3.14+esm1", "versionType": "custom"}], "platforms": ["focal"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.25.1-1ubuntu3.14+esm1", "versionType": "custom"}], "platforms": ["focal"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-man", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.25.1-1ubuntu3.14+esm1", "versionType": "custom"}], "platforms": ["focal"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-mediawiki", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.25.1-1ubuntu3.14+esm1", "versionType": "custom"}], "platforms": ["focal"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.25.1-1ubuntu3.14+esm1", "versionType": "custom"}], "platforms": ["focal"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.25.1-1ubuntu3.14+esm1", "versionType": "custom"}], "platforms": ["focal"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.25.1-1ubuntu3.14+esm1", "versionType": "custom"}], "platforms": ["focal"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.34.1-1ubuntu1.13", "versionType": "custom"}], "platforms": ["jammy"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.34.1-1ubuntu1.13", "versionType": "custom"}], "platforms": ["jammy"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-cvs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.34.1-1ubuntu1.13", "versionType": "custom"}], "platforms": ["jammy"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-daemon-run", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.34.1-1ubuntu1.13", "versionType": "custom"}], "platforms": ["jammy"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-daemon-sysvinit", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.34.1-1ubuntu1.13", "versionType": "custom"}], "platforms": ["jammy"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.34.1-1ubuntu1.13", "versionType": "custom"}], "platforms": ["jammy"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.34.1-1ubuntu1.13", "versionType": "custom"}], "platforms": ["jammy"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-man", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.34.1-1ubuntu1.13", "versionType": "custom"}], "platforms": ["jammy"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-mediawiki", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.34.1-1ubuntu1.13", "versionType": "custom"}], "platforms": ["jammy"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.34.1-1ubuntu1.13", "versionType": "custom"}], "platforms": ["jammy"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.34.1-1ubuntu1.13", "versionType": "custom"}], "platforms": ["jammy"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.34.1-1ubuntu1.13", "versionType": "custom"}], "platforms": ["jammy"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.43.0-1ubuntu7.3", "versionType": "custom"}], "platforms": ["noble"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.43.0-1ubuntu7.3", "versionType": "custom"}], "platforms": ["noble"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-cvs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.43.0-1ubuntu7.3", "versionType": "custom"}], "platforms": ["noble"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-daemon-run", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.43.0-1ubuntu7.3", "versionType": "custom"}], "platforms": ["noble"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-daemon-sysvinit", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.43.0-1ubuntu7.3", "versionType": "custom"}], "platforms": ["noble"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.43.0-1ubuntu7.3", "versionType": "custom"}], "platforms": ["noble"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.43.0-1ubuntu7.3", "versionType": "custom"}], "platforms": ["noble"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-man", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.43.0-1ubuntu7.3", "versionType": "custom"}], "platforms": ["noble"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-mediawiki", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.43.0-1ubuntu7.3", "versionType": "custom"}], "platforms": ["noble"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.43.0-1ubuntu7.3", "versionType": "custom"}], "platforms": ["noble"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.43.0-1ubuntu7.3", "versionType": "custom"}], "platforms": ["noble"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.43.0-1ubuntu7.3", "versionType": "custom"}], "platforms": ["noble"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.7.4-0ubuntu1.10+esm9", "versionType": "custom"}], "platforms": ["xenial"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.7.4-0ubuntu1.10+esm9", "versionType": "custom"}], "platforms": ["xenial"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-arch", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.7.4-0ubuntu1.10+esm9", "versionType": "custom"}], "platforms": ["xenial"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-core", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.7.4-0ubuntu1.10+esm9", "versionType": "custom"}], "platforms": ["xenial"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-cvs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.7.4-0ubuntu1.10+esm9", "versionType": "custom"}], "platforms": ["xenial"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-daemon-run", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.7.4-0ubuntu1.10+esm9", "versionType": "custom"}], "platforms": ["xenial"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-daemon-sysvinit", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.7.4-0ubuntu1.10+esm9", "versionType": "custom"}], "platforms": ["xenial"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-el", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.7.4-0ubuntu1.10+esm9", "versionType": "custom"}], "platforms": ["xenial"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.7.4-0ubuntu1.10+esm9", "versionType": "custom"}], "platforms": ["xenial"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.7.4-0ubuntu1.10+esm9", "versionType": "custom"}], "platforms": ["xenial"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-man", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.7.4-0ubuntu1.10+esm9", "versionType": "custom"}], "platforms": ["xenial"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-mediawiki", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.7.4-0ubuntu1.10+esm9", "versionType": "custom"}], "platforms": ["xenial"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.7.4-0ubuntu1.10+esm9", "versionType": "custom"}], "platforms": ["xenial"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.7.4-0ubuntu1.10+esm9", "versionType": "custom"}], "platforms": ["xenial"], "defaultStatus": "unaffected"}, {"vendor": "canonical", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.7.4-0ubuntu1.10+esm9", "versionType": "custom"}], "platforms": ["xenial"], "defaultStatus": "unaffected"}], "references": [{"url": "https://ubuntu.com/security/CVE-2025-48384"}, {"url": "https://ubuntu.com/security/notices/USN-7626-1"}, {"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"}], "descriptions": [{"lang": "en", "value": "Git is a fast, scalable, distributed revision control system with anunusually rich command set that provides both high-level operations andfull access to internals. When reading a config value, Git strips anytrailing carriage return and line feed (CRLF). When writing a config entry,values with a trailing CR are not quoted, causing the CR to be lost whenthe config is later read. When initializing a submodule, if the submodulepath contains a trailing CR, the altered path is read resulting in thesubmodule being checked out to an incorrect location. If a symlink existsthat points the altered path to the submodule hooks directory, and thesubmodule contains an executable post-checkout hook, the script may beunintentionally executed after checkout. This vulnerability is fixed inv2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1."}], "providerMetadata": {"orgId": "cc1ad9ee-3454-478d-9317-d3e869d708bc", "shortName": "canonical", "dateUpdated": "2025-07-08T17:00:00Z", "x_subShortName": "canonical"}}, {"metrics": [{"other": {"type": "Unknown", "content": {"data": "{\"description\":\"not yet assigned\"}"}}}], "affected": [{"vendor": "debian", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.39.5-0+deb12u3", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.39.5-0+deb12u3", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-cvs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.39.5-0+deb12u3", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-daemon-run", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.39.5-0+deb12u3", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-daemon-sysvinit", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.39.5-0+deb12u3", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.39.5-0+deb12u3", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.39.5-0+deb12u3", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.39.5-0+deb12u3", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.39.5-0+deb12u3", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-man", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.39.5-0+deb12u3", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-mediawiki", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.39.5-0+deb12u3", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.39.5-0+deb12u3", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.39.5-0+deb12u3", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.39.5-0+deb12u3", "versionType": "deb"}], "platforms": ["bookworm"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.30.2-1+deb11u5", "versionType": "deb"}], "platforms": ["bullseye"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.30.2-1+deb11u5", "versionType": "deb"}], "platforms": ["bullseye"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-cvs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.30.2-1+deb11u5", "versionType": "deb"}], "platforms": ["bullseye"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-daemon-run", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.30.2-1+deb11u5", "versionType": "deb"}], "platforms": ["bullseye"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-daemon-sysvinit", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.30.2-1+deb11u5", "versionType": "deb"}], "platforms": ["bullseye"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.30.2-1+deb11u5", "versionType": "deb"}], "platforms": ["bullseye"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.30.2-1+deb11u5", "versionType": "deb"}], "platforms": ["bullseye"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-el", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.30.2-1+deb11u5", "versionType": "deb"}], "platforms": ["bullseye"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.30.2-1+deb11u5", "versionType": "deb"}], "platforms": ["bullseye"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.30.2-1+deb11u5", "versionType": "deb"}], "platforms": ["bullseye"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-man", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.30.2-1+deb11u5", "versionType": "deb"}], "platforms": ["bullseye"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-mediawiki", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.30.2-1+deb11u5", "versionType": "deb"}], "platforms": ["bullseye"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.30.2-1+deb11u5", "versionType": "deb"}], "platforms": ["bullseye"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.30.2-1+deb11u5", "versionType": "deb"}], "platforms": ["bullseye"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.30.2-1+deb11u5", "versionType": "deb"}], "platforms": ["bullseye"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.50.1-0.1", "versionType": "deb"}], "platforms": ["forky", "sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.50.1-0.1", "versionType": "deb"}], "platforms": ["forky", "sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-cvs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.50.1-0.1", "versionType": "deb"}], "platforms": ["forky", "sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.50.1-0.1", "versionType": "deb"}], "platforms": ["forky", "sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.50.1-0.1", "versionType": "deb"}], "platforms": ["forky", "sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.50.1-0.1", "versionType": "deb"}], "platforms": ["forky", "sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.50.1-0.1", "versionType": "deb"}], "platforms": ["forky", "sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-man", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.50.1-0.1", "versionType": "deb"}], "platforms": ["forky", "sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-mediawiki", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.50.1-0.1", "versionType": "deb"}], "platforms": ["forky", "sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.50.1-0.1", "versionType": "deb"}], "platforms": ["forky", "sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.50.1-0.1", "versionType": "deb"}], "platforms": ["forky", "sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.50.1-0.1", "versionType": "deb"}], "platforms": ["forky", "sid"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.47.3-0+deb13u1", "versionType": "deb"}], "platforms": ["trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.47.3-0+deb13u1", "versionType": "deb"}], "platforms": ["trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-cvs", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.47.3-0+deb13u1", "versionType": "deb"}], "platforms": ["trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-dbgsym", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.47.3-0+deb13u1", "versionType": "deb"}], "platforms": ["trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.47.3-0+deb13u1", "versionType": "deb"}], "platforms": ["trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.47.3-0+deb13u1", "versionType": "deb"}], "platforms": ["trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.47.3-0+deb13u1", "versionType": "deb"}], "platforms": ["trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-man", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.47.3-0+deb13u1", "versionType": "deb"}], "platforms": ["trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-mediawiki", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.47.3-0+deb13u1", "versionType": "deb"}], "platforms": ["trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.47.3-0+deb13u1", "versionType": "deb"}], "platforms": ["trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.47.3-0+deb13u1", "versionType": "deb"}], "platforms": ["trixie"], "defaultStatus": "unaffected"}, {"vendor": "debian", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "1:2.47.3-0+deb13u1", "versionType": "deb"}], "platforms": ["trixie"], "defaultStatus": "unaffected"}], "references": [{"url": "https://security-tracker.debian.org/tracker/CVE-2025-48384"}], "descriptions": [{"lang": "en", "value": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1."}], "providerMetadata": {"orgId": "79363d38-fa19-49d1-9214-5f28da3f3ac5", "shortName": "debian", "dateUpdated": "2025-10-06T00:00:00.000Z", "x_subShortName": "debian"}}, {"credits": [{"lang": "en", "value": "packager@almalinux.org"}], "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.0, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "almalinux", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:10"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:10"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-core", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:10"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-core-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:10"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-credential-libsecret", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:10"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-daemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:10"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:10"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:10"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-instaweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:10"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-subtree", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:10"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:10"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:10"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:10"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "perl-Git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:10"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "perl-Git-SVN", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:10"], "defaultStatus": "unaffected"}], "references": [{"url": "https://access.redhat.com/security/cve/CVE-2025-48384", "name": "CVE-2025-48384"}], "descriptions": [{"lang": "en", "value": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.  \n\nSecurity Fix(es):  \n\n  * git: Git does not sanitize URLs when asking for credentials interactively (CVE-2024-50349)\n  * git: Newline confusion in credential helpers can lead to credential exfiltration in git (CVE-2024-52006)\n  * git: Git arbitrary code execution (CVE-2025-48384)\n  * git: Git arbitrary file writes (CVE-2025-48385)\n  * gitk: Git file creation flaw (CVE-2025-27613)\n  * gitk: git script execution flaw (CVE-2025-27614)\n  * git: Git GUI can create and overwrite files for which the user has write permission (CVE-2025-46835)\n\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n"}], "providerMetadata": {"orgId": "00000000-0000-4000-A000-000000000001", "shortName": "almalinux", "dateUpdated": "2025-07-22T00:00:00Z", "x_subShortName": "alma_10"}}, {"credits": [{"lang": "en", "value": "packager@almalinux.org"}], "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.0, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "almalinux", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-core", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-core-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-credential-libsecret", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-daemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-instaweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-subtree", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "perl-Git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "perl-Git-SVN", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:8"], "defaultStatus": "unaffected"}], "references": [{"url": "https://access.redhat.com/security/cve/CVE-2025-48384", "name": "CVE-2025-48384"}], "descriptions": [{"lang": "en", "value": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.  \n\nSecurity Fix(es):  \n\n  * git: Git does not sanitize URLs when asking for credentials interactively (CVE-2024-50349)\n  * git: Newline confusion in credential helpers can lead to credential exfiltration in git (CVE-2024-52006)\n  * git: Git arbitrary code execution (CVE-2025-48384)\n  * git: Git arbitrary file writes (CVE-2025-48385)\n  * gitk: Git file creation flaw (CVE-2025-27613)\n  * gitk: git script execution flaw (CVE-2025-27614)\n  * git: Git GUI can create and overwrite files for which the user has write permission (CVE-2025-46835)\n\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n"}], "providerMetadata": {"orgId": "00000000-0000-4000-A000-000000000001", "shortName": "almalinux", "dateUpdated": "2025-07-22T00:00:00Z", "x_subShortName": "alma_8"}}, {"credits": [{"lang": "en", "value": "packager@almalinux.org"}], "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.0, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "almalinux", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:9"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:9"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-core", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:9"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-core-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:9"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-credential-libsecret", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:9"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-daemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:9"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:9"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:9"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-instaweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:9"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-subtree", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:9"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:9"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:9"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:9"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "perl-Git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:9"], "defaultStatus": "unaffected"}, {"vendor": "almalinux", "product": "perl-Git-SVN", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:almalinux:almalinux:9"], "defaultStatus": "unaffected"}], "references": [{"url": "https://access.redhat.com/security/cve/CVE-2025-48384", "name": "CVE-2025-48384"}], "descriptions": [{"lang": "en", "value": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.  \n\nSecurity Fix(es):  \n\n  * git: Git does not sanitize URLs when asking for credentials interactively (CVE-2024-50349)\n  * git: Newline confusion in credential helpers can lead to credential exfiltration in git (CVE-2024-52006)\n  * git: Git arbitrary code execution (CVE-2025-48384)\n  * git: Git arbitrary file writes (CVE-2025-48385)\n  * gitk: Git file creation flaw (CVE-2025-27613)\n  * gitk: git script execution flaw (CVE-2025-27614)\n  * git: Git GUI can create and overwrite files for which the user has write permission (CVE-2025-46835)\n\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n"}], "providerMetadata": {"orgId": "00000000-0000-4000-A000-000000000001", "shortName": "almalinux", "dateUpdated": "2025-07-21T00:00:00Z", "x_subShortName": "alma_9"}}, {"metrics": [{"other": {"type": "Unknown", "content": {"data": "{\"description\":\"high\"}"}}}], "affected": [{"vendor": "fedora", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.50.1-1.fc41", "versionType": "rpm"}], "platforms": ["cpe:/o:fedoraproject:fedora:41"], "defaultStatus": "unaffected"}, {"vendor": "fedora", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.50.1-1.fc42", "versionType": "rpm"}], "platforms": ["cpe:/o:fedoraproject:fedora:42"], "defaultStatus": "unaffected"}], "references": [{"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2025-0b7e43532e"}, {"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2025-b5fe483928"}], "descriptions": [{"lang": "en", "value": "git: Git arbitrary code execution"}], "providerMetadata": {"orgId": "92fb86c3-55a5-4fb5-9c3f-4757b9e96dc5", "shortName": "fedora", "dateUpdated": "2025-07-11T00:48:32Z", "x_subShortName": "fedora"}}, {"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.0, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"IMPORTANT\"}"}}}], "affected": [{"vendor": "oraclelinux", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:10"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:10"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-core", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:10"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-core-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:10"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-credential-libsecret", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:10"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-daemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:10"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:10"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:10"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-instaweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:10"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-subtree", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:10"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:10"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:10"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:10"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "perl-Git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:10"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "perl-Git-SVN", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:10"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "emacs-git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:1.8.3.1-25.0.1.el7_9", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "emacs-git-el", "versions": [{"status": "affected", "version": "0", "lessThan": "0:1.8.3.1-25.0.1.el7_9", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:1.8.3.1-25.0.1.el7_9", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "0:1.8.3.1-25.0.1.el7_9", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-bzr", "versions": [{"status": "affected", "version": "0", "lessThan": "0:1.8.3.1-25.0.1.el7_9", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-cvs", "versions": [{"status": "affected", "version": "0", "lessThan": "0:1.8.3.1-25.0.1.el7_9", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-daemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:1.8.3.1-25.0.1.el7_9", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "0:1.8.3.1-25.0.1.el7_9", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-gnome-keyring", "versions": [{"status": "affected", "version": "0", "lessThan": "0:1.8.3.1-25.0.1.el7_9", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "0:1.8.3.1-25.0.1.el7_9", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-hg", "versions": [{"status": "affected", "version": "0", "lessThan": "0:1.8.3.1-25.0.1.el7_9", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-instaweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:1.8.3.1-25.0.1.el7_9", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-p4", "versions": [{"status": "affected", "version": "0", "lessThan": "0:1.8.3.1-25.0.1.el7_9", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "0:1.8.3.1-25.0.1.el7_9", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "0:1.8.3.1-25.0.1.el7_9", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:1.8.3.1-25.0.1.el7_9", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "perl-Git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:1.8.3.1-25.0.1.el7_9", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "perl-Git-SVN", "versions": [{"status": "affected", "version": "0", "lessThan": "0:1.8.3.1-25.0.1.el7_9", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:7"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-core", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-core-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-credential-libsecret", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-daemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-instaweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-subtree", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "perl-Git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "perl-Git-SVN", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:8"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-core", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-core-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-credential-libsecret", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-daemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-instaweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-subtree", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "perl-Git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}, {"vendor": "oraclelinux", "product": "perl-Git-SVN", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:oracle:linux:9"], "defaultStatus": "unaffected"}], "references": [{"url": "https://linux.oracle.com/cve/CVE-2025-48384.html"}], "descriptions": [{"lang": "en", "value": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1."}], "providerMetadata": {"orgId": "00000000-0000-4000-A000-000000000006", "shortName": "oraclelinux", "dateUpdated": "2025-07-21T00:00:00Z", "x_subShortName": "oraclelinux"}}, {"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.0, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "redhat", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-core", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-core-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-core-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-credential-libsecret", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-credential-libsecret-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-daemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-daemon-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-debugsource", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-instaweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-subtree", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "perl-Git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "perl-Git-SVN", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el10_0", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:10"], "defaultStatus": "unaffected"}], "references": [{"url": "https://access.redhat.com/security/cve/CVE-2025-48384"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"}, {"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"}, {"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"}, {"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"}, {"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"}, {"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"}, {"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"}], "descriptions": [{"lang": "en", "value": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location."}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2025-07-08T18:23:48Z", "x_subShortName": "redhat_10"}}, {"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.0, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "redhat", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-core", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-core-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-credential-libsecret", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-daemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-instaweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-subtree", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "perl-Git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "perl-Git-SVN", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:8"], "defaultStatus": "unaffected"}], "references": [{"url": "https://access.redhat.com/errata/RHSA-2025:11534"}, {"url": "https://access.redhat.com/security/cve/CVE-2025-48384"}], "descriptions": [{"lang": "en", "value": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.\n\nSecurity Fix(es):\n\n* git: Git does not sanitize URLs when asking for credentials interactively (CVE-2024-50349)\n\n* git: Newline confusion in credential helpers can lead to credential exfiltration in git (CVE-2024-52006)\n\n* git: Git arbitrary code execution (CVE-2025-48384)\n\n* git: Git arbitrary file writes (CVE-2025-48385)\n\n* gitk: Git file creation flaw (CVE-2025-27613)\n\n* gitk: git script execution flaw (CVE-2025-27614)\n\n* git: Git GUI can create and overwrite files for which the user has write permission (CVE-2025-46835)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section."}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2025-07-08T18:23:00Z", "x_subShortName": "redhat_8"}}, {"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.0, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "redhat", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-core", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-core-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-credential-libsecret", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-daemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-instaweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-subtree", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "perl-Git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}, {"vendor": "redhat", "product": "perl-Git-SVN", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:redhat:enterprise_linux:9"], "defaultStatus": "unaffected"}], "references": [{"url": "https://access.redhat.com/errata/RHSA-2025:11462"}, {"url": "https://access.redhat.com/security/cve/CVE-2025-48384"}], "descriptions": [{"lang": "en", "value": "Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.\n\nSecurity Fix(es):\n\n* git: Git does not sanitize URLs when asking for credentials interactively (CVE-2024-50349)\n\n* git: Newline confusion in credential helpers can lead to credential exfiltration in git (CVE-2024-52006)\n\n* git: Git arbitrary code execution (CVE-2025-48384)\n\n* git: Git arbitrary file writes (CVE-2025-48385)\n\n* gitk: Git file creation flaw (CVE-2025-27613)\n\n* gitk: git script execution flaw (CVE-2025-27614)\n\n* git: Git GUI can create and overwrite files for which the user has write permission (CVE-2025-46835)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section."}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2025-07-08T18:23:00Z", "x_subShortName": "redhat_9"}}, {"metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.0, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "rocky", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-core", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-core-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-core-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-credential-libsecret", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-credential-libsecret-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-daemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-daemon-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-debugsource", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-instaweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-subtree", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "perl-Git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "perl-Git-SVN", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-1.el8_10", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:8"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-core", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-core-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-core-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-credential-libsecret", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-credential-libsecret-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-daemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-daemon-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-debugsource", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-instaweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-subtree", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "perl-Git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}, {"vendor": "rocky", "product": "perl-Git-SVN", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.47.3-1.el9_6", "versionType": "rpm"}], "platforms": ["cpe:/o:rocky:rocky:9"], "defaultStatus": "unaffected"}], "references": [{"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337824"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2337956"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379124"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379125"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379326"}], "descriptions": [{"lang": "en", "value": "git: Git arbitrary code execution (CVE-2025-48384)"}], "providerMetadata": {"orgId": "00000000-0000-4000-A000-000000000004", "shortName": "rocky", "dateUpdated": "2025-07-29T13:38:41Z", "x_subShortName": "rocky"}}, {"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "suse", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-150300.10.51.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:23.4", "cpe:/o:suse:oes-release:24.4", "cpe:/o:suse:sles-ltss:15:sp3", "cpe:/o:suse:sles-ltss:15:sp4", "cpe:/o:suse:sles-ltss:15:sp5", "cpe:/o:suse:sles:15:sp3", "cpe:/o:suse:sles:15:sp4", "cpe:/o:suse:sles:15:sp5", "cpe:/o:suse:sles_sap:15:sp3", "cpe:/o:suse:sles_sap:15:sp4", "cpe:/o:suse:sles_sap:15:sp5", "cpe:/o:suse:sles_teradata:15:sp4"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-arch", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-150300.10.51.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:23.4", "cpe:/o:suse:oes-release:24.4", "cpe:/o:suse:sles-ltss:15:sp3", "cpe:/o:suse:sles-ltss:15:sp4", "cpe:/o:suse:sles-ltss:15:sp5", "cpe:/o:suse:sles:15:sp3", "cpe:/o:suse:sles:15:sp4", "cpe:/o:suse:sles:15:sp5", "cpe:/o:suse:sles_sap:15:sp3", "cpe:/o:suse:sles_sap:15:sp4", "cpe:/o:suse:sles_sap:15:sp5", "cpe:/o:suse:sles_teradata:15:sp4"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-core", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-150300.10.51.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:23.4", "cpe:/o:suse:oes-release:24.4", "cpe:/o:suse:sles-ltss:15:sp3", "cpe:/o:suse:sles-ltss:15:sp4", "cpe:/o:suse:sles-ltss:15:sp5", "cpe:/o:suse:sles:15:sp3", "cpe:/o:suse:sles:15:sp4", "cpe:/o:suse:sles:15:sp5", "cpe:/o:suse:sles_sap:15:sp3", "cpe:/o:suse:sles_sap:15:sp4", "cpe:/o:suse:sles_sap:15:sp5", "cpe:/o:suse:sles_teradata:15:sp4"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-cvs", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-150300.10.51.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:23.4", "cpe:/o:suse:oes-release:24.4", "cpe:/o:suse:sles-ltss:15:sp3", "cpe:/o:suse:sles-ltss:15:sp4", "cpe:/o:suse:sles-ltss:15:sp5", "cpe:/o:suse:sles:15:sp3", "cpe:/o:suse:sles:15:sp4", "cpe:/o:suse:sles:15:sp5", "cpe:/o:suse:sles_sap:15:sp3", "cpe:/o:suse:sles_sap:15:sp4", "cpe:/o:suse:sles_sap:15:sp5", "cpe:/o:suse:sles_teradata:15:sp4"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-daemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-150300.10.51.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:23.4", "cpe:/o:suse:oes-release:24.4", "cpe:/o:suse:sles-ltss:15:sp3", "cpe:/o:suse:sles-ltss:15:sp4", "cpe:/o:suse:sles-ltss:15:sp5", "cpe:/o:suse:sles:15:sp3", "cpe:/o:suse:sles:15:sp4", "cpe:/o:suse:sles:15:sp5", "cpe:/o:suse:sles_sap:15:sp3", "cpe:/o:suse:sles_sap:15:sp4", "cpe:/o:suse:sles_sap:15:sp5", "cpe:/o:suse:sles_teradata:15:sp4"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-150300.10.51.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:23.4", "cpe:/o:suse:oes-release:24.4", "cpe:/o:suse:sles-ltss:15:sp3", "cpe:/o:suse:sles-ltss:15:sp4", "cpe:/o:suse:sles-ltss:15:sp5", "cpe:/o:suse:sles:15:sp3", "cpe:/o:suse:sles:15:sp4", "cpe:/o:suse:sles:15:sp5", "cpe:/o:suse:sles_sap:15:sp3", "cpe:/o:suse:sles_sap:15:sp4", "cpe:/o:suse:sles_sap:15:sp5", "cpe:/o:suse:sles_teradata:15:sp4"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-150300.10.51.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:23.4", "cpe:/o:suse:oes-release:24.4", "cpe:/o:suse:sles-ltss:15:sp3", "cpe:/o:suse:sles-ltss:15:sp4", "cpe:/o:suse:sles-ltss:15:sp5", "cpe:/o:suse:sles:15:sp3", "cpe:/o:suse:sles:15:sp4", "cpe:/o:suse:sles:15:sp5", "cpe:/o:suse:sles_sap:15:sp3", "cpe:/o:suse:sles_sap:15:sp4", "cpe:/o:suse:sles_sap:15:sp5", "cpe:/o:suse:sles_teradata:15:sp4"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-150300.10.51.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:23.4", "cpe:/o:suse:oes-release:24.4", "cpe:/o:suse:sles-ltss:15:sp3", "cpe:/o:suse:sles-ltss:15:sp4", "cpe:/o:suse:sles-ltss:15:sp5", "cpe:/o:suse:sles:15:sp3", "cpe:/o:suse:sles:15:sp4", "cpe:/o:suse:sles:15:sp5", "cpe:/o:suse:sles_sap:15:sp3", "cpe:/o:suse:sles_sap:15:sp4", "cpe:/o:suse:sles_sap:15:sp5", "cpe:/o:suse:sles_teradata:15:sp4"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-150300.10.51.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:23.4", "cpe:/o:suse:oes-release:24.4", "cpe:/o:suse:sles-ltss:15:sp3", "cpe:/o:suse:sles-ltss:15:sp4", "cpe:/o:suse:sles-ltss:15:sp5", "cpe:/o:suse:sles:15:sp3", "cpe:/o:suse:sles:15:sp4", "cpe:/o:suse:sles:15:sp5", "cpe:/o:suse:sles_sap:15:sp3", "cpe:/o:suse:sles_sap:15:sp4", "cpe:/o:suse:sles_sap:15:sp5", "cpe:/o:suse:sles_teradata:15:sp4"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-web", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-150300.10.51.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:23.4", "cpe:/o:suse:oes-release:24.4", "cpe:/o:suse:sles-ltss:15:sp3", "cpe:/o:suse:sles-ltss:15:sp4", "cpe:/o:suse:sles-ltss:15:sp5", "cpe:/o:suse:sles:15:sp3", "cpe:/o:suse:sles:15:sp4", "cpe:/o:suse:sles:15:sp5", "cpe:/o:suse:sles_sap:15:sp3", "cpe:/o:suse:sles_sap:15:sp4", "cpe:/o:suse:sles_sap:15:sp5", "cpe:/o:suse:sles_teradata:15:sp4"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-150300.10.51.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:23.4", "cpe:/o:suse:oes-release:24.4", "cpe:/o:suse:sles-ltss:15:sp3", "cpe:/o:suse:sles-ltss:15:sp4", "cpe:/o:suse:sles-ltss:15:sp5", "cpe:/o:suse:sles:15:sp3", "cpe:/o:suse:sles:15:sp4", "cpe:/o:suse:sles:15:sp5", "cpe:/o:suse:sles_sap:15:sp3", "cpe:/o:suse:sles_sap:15:sp4", "cpe:/o:suse:sles_sap:15:sp5", "cpe:/o:suse:sles_teradata:15:sp4"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "perl-Git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.43.7-150300.10.51.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:23.4", "cpe:/o:suse:oes-release:24.4", "cpe:/o:suse:sles-ltss:15:sp3", "cpe:/o:suse:sles-ltss:15:sp4", "cpe:/o:suse:sles-ltss:15:sp5", "cpe:/o:suse:sles:15:sp3", "cpe:/o:suse:sles:15:sp4", "cpe:/o:suse:sles:15:sp5", "cpe:/o:suse:sles_sap:15:sp3", "cpe:/o:suse:sles_sap:15:sp4", "cpe:/o:suse:sles_sap:15:sp5", "cpe:/o:suse:sles_teradata:15:sp4"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-core", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-basesystem:15:sp6", "cpe:/o:suse:sle-module-basesystem:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-arch", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-cvs", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-daemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-lfs", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.7.0-150600.13.3.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-web", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "perl-Git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.26.2-150000.64.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles-ltss:15:sp2"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-arch", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.26.2-150000.64.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles-ltss:15:sp2"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-core", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.26.2-150000.64.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles-ltss:15:sp2"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-cvs", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.26.2-150000.64.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles-ltss:15:sp2"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-daemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.26.2-150000.64.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles-ltss:15:sp2"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.26.2-150000.64.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles-ltss:15:sp2"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.26.2-150000.64.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles-ltss:15:sp2"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.26.2-150000.64.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles-ltss:15:sp2"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.26.2-150000.64.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles-ltss:15:sp2"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-web", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.26.2-150000.64.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles-ltss:15:sp2"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.26.2-150000.64.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles-ltss:15:sp2"], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "SUSE bug 1245943"}], "references": [{"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48384", "name": "Mitre CVE-2025-48384"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001821.html", "name": "RHSA-2025:11462"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001832.html", "name": "RHSA-2025:11534"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-August/001920.html", "name": "RHSA-2025:11688"}, {"url": "https://www.suse.com/security/cve/CVE-2025-48384", "name": "SUSE CVE-2025-48384"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-August/041415.html", "name": "SUSE-SU-2025:03012-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-August/041417.html", "name": "SUSE-SU-2025:03022-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-September/041483.html", "name": "SUSE-SU-2025:03037-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-September/041929.html", "name": "SUSE-SU-2025:20721-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-October/042323.html", "name": "SUSE-SU-2025:20855-1"}], "descriptions": [{"lang": "en", "value": "\n    Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.\n    "}], "providerMetadata": {"orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb", "shortName": "suse", "dateUpdated": "2025-08-29T00:00:00Z", "x_subShortName": "suse_server_15"}}, {"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "suse", "product": "git-core", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-basesystem:15:sp6", "cpe:/o:suse:sle-module-basesystem:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-arch", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-cvs", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-daemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-lfs", "versions": [{"status": "affected", "version": "0", "lessThan": "0:3.7.0-150600.13.3.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-web", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "perl-Git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-150600.3.12.1", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:oes-release:25.4", "cpe:/o:suse:sle-module-development-tools:15:sp6", "cpe:/o:suse:sle-module-development-tools:15:sp7", "cpe:/o:suse:sle_hpc:15:sp6", "cpe:/o:suse:sle_hpc:15:sp7", "cpe:/o:suse:sled:15:sp6", "cpe:/o:suse:sled:15:sp7", "cpe:/o:suse:sles:15:sp6", "cpe:/o:suse:sles:15:sp7", "cpe:/o:suse:sles_sap:15:sp6", "cpe:/o:suse:sles_sap:15:sp7"], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "SUSE bug 1245943"}], "references": [{"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48384", "name": "Mitre CVE-2025-48384"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001821.html", "name": "RHSA-2025:11462"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001832.html", "name": "RHSA-2025:11534"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-August/001920.html", "name": "RHSA-2025:11688"}, {"url": "https://www.suse.com/security/cve/CVE-2025-48384", "name": "SUSE CVE-2025-48384"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-August/041415.html", "name": "SUSE-SU-2025:03012-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-August/041417.html", "name": "SUSE-SU-2025:03022-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-September/041483.html", "name": "SUSE-SU-2025:03037-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-September/041929.html", "name": "SUSE-SU-2025:20721-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-October/042323.html", "name": "SUSE-SU-2025:20855-1"}], "descriptions": [{"lang": "en", "value": "\n    Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.\n    "}], "providerMetadata": {"orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb", "shortName": "suse", "dateUpdated": "2025-08-29T00:00:00Z", "x_subShortName": "suse_desktop_15"}}, {"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "suse", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-160000.1.2", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles:16.0"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-arch", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-160000.1.2", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles:16.0"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-core", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-160000.1.2", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles:16.0"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-credential-libsecret", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-160000.1.2", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles:16.0"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-daemon", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-160000.1.2", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles:16.0"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-160000.1.2", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles:16.0"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-160000.1.2", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles:16.0"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-160000.1.2", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles:16.0"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-p4", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-160000.1.2", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles:16.0"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "git-web", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-160000.1.2", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles:16.0"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-160000.1.2", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles:16.0"], "defaultStatus": "unaffected"}, {"vendor": "suse", "product": "perl-Git", "versions": [{"status": "affected", "version": "0", "lessThan": "0:2.51.0-160000.1.2", "versionType": "rpm"}], "platforms": ["cpe:/o:suse:sles:16.0"], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "SUSE bug 1245943"}], "references": [{"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48384", "name": "Mitre CVE-2025-48384"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001821.html", "name": "RHSA-2025:11462"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001832.html", "name": "RHSA-2025:11534"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-August/001920.html", "name": "RHSA-2025:11688"}, {"url": "https://www.suse.com/security/cve/CVE-2025-48384", "name": "SUSE CVE-2025-48384"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-August/041415.html", "name": "SUSE-SU-2025:03012-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-August/041417.html", "name": "SUSE-SU-2025:03022-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-September/041483.html", "name": "SUSE-SU-2025:03037-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-September/041929.html", "name": "SUSE-SU-2025:20721-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-October/042323.html", "name": "SUSE-SU-2025:20855-1"}], "descriptions": [{"lang": "en", "value": "\n    Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.\n    "}], "providerMetadata": {"orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb", "shortName": "suse", "dateUpdated": "2025-11-14T00:00:00Z", "x_subShortName": "suse_server_16"}}, {"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.3, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "amazon", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "2.47.3-1.amzn2.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "2.47.3-1.amzn2.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-core", "versions": [{"status": "affected", "version": "0", "lessThan": "2.47.3-1.amzn2.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-core-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "2.47.3-1.amzn2.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-credential-libsecret", "versions": [{"status": "affected", "version": "0", "lessThan": "2.47.3-1.amzn2.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-cvs", "versions": [{"status": "affected", "version": "0", "lessThan": "2.47.3-1.amzn2.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-daemon", "versions": [{"status": "affected", "version": "0", "lessThan": "2.47.3-1.amzn2.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "2.47.3-1.amzn2.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "2.47.3-1.amzn2.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "2.47.3-1.amzn2.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-instaweb", "versions": [{"status": "affected", "version": "0", "lessThan": "2.47.3-1.amzn2.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-p4", "versions": [{"status": "affected", "version": "0", "lessThan": "2.47.3-1.amzn2.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-subtree", "versions": [{"status": "affected", "version": "0", "lessThan": "2.47.3-1.amzn2.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "2.47.3-1.amzn2.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "2.47.3-1.amzn2.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "2.47.3-1.amzn2.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "perl-Git", "versions": [{"status": "affected", "version": "0", "lessThan": "2.47.3-1.amzn2.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "perl-Git-SVN", "versions": [{"status": "affected", "version": "0", "lessThan": "2.47.3-1.amzn2.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}], "references": [{"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48384"}], "descriptions": [{"lang": "en", "value": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1."}], "providerMetadata": {"orgId": "00000000-0000-4000-A000-000000000000", "shortName": "alas", "dateUpdated": "2025-07-17T23:14:00Z", "x_subShortName": "alas_2"}}, {"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.3, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "amazon", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-all", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-core", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-core-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-core-doc", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-credential-libsecret", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-credential-libsecret-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-cvs", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-daemon", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-daemon-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-debuginfo", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-debugsource", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-email", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-gui", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-instaweb", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-p4", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-subtree", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "git-svn", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "gitk", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "gitweb", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "perl-Git", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}, {"vendor": "amazon", "product": "perl-Git-SVN", "versions": [{"status": "affected", "version": "0", "lessThan": "2.50.1-1.amzn2023.0.1", "versionType": "rpm"}], "defaultStatus": "unaffected"}], "references": [{"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48384"}], "descriptions": [{"lang": "en", "value": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1."}], "providerMetadata": {"orgId": "00000000-0000-4000-A000-000000000000", "shortName": "alas", "dateUpdated": "2025-07-21T23:13:00Z", "x_subShortName": "alas_2023"}}, {"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "Unknown", "content": {"data": "{\"description\":\"Important\"}"}}}], "affected": [{"vendor": "unknown", "product": "unknown", "defaultStatus": "unknown"}], "solutions": [{"lang": "en", "value": "SUSE bug 1245943"}], "references": [{"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48384", "name": "Mitre CVE-2025-48384"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001821.html", "name": "RHSA-2025:11462"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-July/001832.html", "name": "RHSA-2025:11534"}, {"url": "https://lists.suse.com/pipermail/suse-liberty-linux-updates/2025-August/001920.html", "name": "RHSA-2025:11688"}, {"url": "https://www.suse.com/security/cve/CVE-2025-48384", "name": "SUSE CVE-2025-48384"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-August/041415.html", "name": "SUSE-SU-2025:03012-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-August/041417.html", "name": "SUSE-SU-2025:03022-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-September/041483.html", "name": "SUSE-SU-2025:03037-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-September/041929.html", "name": "SUSE-SU-2025:20721-1"}, {"url": "https://lists.suse.com/pipermail/sle-updates/2025-October/042323.html", "name": "SUSE-SU-2025:20855-1"}], "descriptions": [{"lang": "en", "value": "\n    Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.\n    "}], "providerMetadata": {"orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb", "shortName": "suse", "dateUpdated": "2025-08-30T00:00:00Z", "x_subShortName": "suse_server_12"}}, {"affected": [{"vendor": "unknown", "product": "unknown", "defaultStatus": "unknown"}], "references": [{"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"}], "descriptions": [{"lang": "en", "value": "not defined"}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2000-01-01T00:00:00Z", "x_subShortName": "redhat_7"}}], "cna": {"metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}], "affected": [{"cpes": ["cpe:2.3:a:apple:xcode:*:*:*:*:*:*:*:*"], "vendor": "apple", "product": "xcode", "versions": [{"status": "affected", "version": "0", "lessThan": "26.0", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:a:git-scm:git:*:*:*:*:*:*:*:*"], "vendor": "git-scm", "product": "git", "versions": [{"status": "affected", "version": "0", "lessThan": "2.43.7", "versionType": "custom"}, {"status": "affected", "version": "2.44.0", "lessThan": "2.44.4", "versionType": "custom"}, {"status": "affected", "version": "2.45.0", "lessThan": "2.45.4", "versionType": "custom"}, {"status": "affected", "version": "2.46.0", "lessThan": "2.46.4", "versionType": "custom"}, {"status": "affected", "version": "2.47.0", "lessThan": "2.47.3", "versionType": "custom"}, {"status": "affected", "version": "2.48.0", "lessThan": "2.48.2", "versionType": "custom"}, {"status": "affected", "version": "2.49.0", "lessThan": "2.49.1", "versionType": "custom"}, {"status": "affected", "version": "2.50.0", "lessThan": "2.50.1", "versionType": "custom"}], "defaultStatus": "unaffected"}, {"cpes": ["cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*"], "vendor": "debian", "product": "debian_linux", "versions": [{"status": "affected", "version": "11.0"}], "defaultStatus": "unaffected"}], "references": [{"url": "http://www.openwall.com/lists/oss-security/2025/07/08/4", "tags": ["mailing-list"]}, {"url": "http://seclists.org/fulldisclosure/2025/Sep/60", "tags": ["mailing-list", "third-party-advisory"]}, {"url": "https://lists.debian.org/debian-lts-announce/2025/10/msg00003.html", "tags": ["mailing-list", "third-party-advisory"]}, {"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9", "tags": ["vendor-advisory"]}, {"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-48384", "tags": ["x_us-government-resource"]}], "descriptions": [{"lang": "en", "value": "Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When reading a config value, Git strips any trailing carriage return and line feed (CRLF). When writing a config entry, values with a trailing CR are not quoted, causing the CR to be lost when the config is later read. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read resulting in the submodule being checked out to an incorrect location. If a symlink exists that points the altered path to the submodule hooks directory, and the submodule contains an executable post-checkout hook, the script may be unintentionally executed after checkout. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1."}, {"lang": "es", "value": "Git es un sistema de control de versiones distribuido, rápido y escalable, con un conjunto de comandos excepcionalmente completo que proporciona operaciones de alto nivel y acceso completo a su funcionamiento interno. Al leer un valor de configuración, Git elimina cualquier retorno de carro y avance de línea (CRLF) final. Al escribir una entrada de configuración, los valores con un CR final no se entrecomillan, lo que provoca que el CR se pierda al leer la configuración posteriormente. Al inicializar un submódulo, si la ruta del submódulo contiene un CR final, se lee la ruta modificada, lo que provoca que el submódulo se extraiga a una ubicación incorrecta. Si existe un enlace simbólico que apunta la ruta modificada al directorio de ganchos del submódulo, y este contiene un gancho ejecutable posterior a la extracción, el script podría ejecutarse accidentalmente después de la extracción. Esta vulnerabilidad se ha corregido en v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1 y v2.50.1."}], "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-436", "description": "CWE-436"}, {"lang": "en", "cweId": "CWE-59", "description": "CWE-59"}]}], "providerMetadata": {"orgId": "00000000-0000-4000-A000-000000000003", "shortName": "nvd", "dateUpdated": "2025-07-08T19:15:42Z", "x_subShortName": "nvd"}}}, "cveMetadata": {"cveId": "CVE-2025-48384", "state": "PUBLISHED", "dateUpdated": "2025-11-06T14:52:47Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2025-07-08T19:15:42Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.0"}